Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10.11.2018 Exécuté par Atmoz (10-11-2018 16:18:44) Exécuté depuis C:\Users\Atmoz\Desktop Windows 10 Home Version 1809 17763.55 (X64) (2018-10-03 16:54:11) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-561860741-2486264049-150863185-500 - Administrator - Disabled) Atmoz (S-1-5-21-561860741-2486264049-150863185-1000 - Administrator - Enabled) => C:\Users\Atmoz DefaultAccount (S-1-5-21-561860741-2486264049-150863185-503 - Limited - Disabled) Geneviève_2 (S-1-5-21-561860741-2486264049-150863185-1072 - Limited - Enabled) => C:\Users\Geneviève_2 HomeGroupUser$ (S-1-5-21-561860741-2486264049-150863185-1002 - Limited - Enabled) Invité (S-1-5-21-561860741-2486264049-150863185-501 - Limited - Disabled) Mcx1-ATMOZ-PC (S-1-5-21-561860741-2486264049-150863185-1006 - Limited - Enabled) => C:\Users\Mcx1-ATMOZ-PC Mcx2-ATMOZ-PC (S-1-5-21-561860741-2486264049-150863185-1074 - Limited - Enabled) => C:\Users\Mcx2-ATMOZ-PC WDAGUtilityAccount (S-1-5-21-561860741-2486264049-150863185-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 4K YouTube to MP3 3.3 (HKLM\...\{834C5FE2-DCBF-42AD-BD53-947D390F6D5A}) (Version: 3.3.9.1844 - Open Media LLC) AutoHotkey 1.1.30.00 (HKLM\...\AutoHotkey) (Version: 1.1.30.00 - Lexikos) Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government) Cinema 4D 19.024 (HKLM\...\MAXONB1A7BB62) (Version: 19.024 - MAXON Computer GmbH) Cinema 4D 20.030 (HKLM\...\MAXONE3565005) (Version: 20.030 - MAXON Computer GmbH) Cities Skylines (HKLM-x32\...\{69FB44D4-98BC-44DF-A303-DF726B2403B8}_is1) (Version: 1.11.0.3 - Paradox Interactive) Core Temp 1.12.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.12.1 - ALCPU) CPUID CPU-Z 1.85 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.85 - CPUID, Inc.) CPUID HWMonitor 1.35 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.35 - CPUID, Inc.) Discord (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\Discord) (Version: 0.0.301 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.81 - NVIDIA Corporation) Hidden DisplayFusion 9.3 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 9.3.0.0 - Binary Fortress Software) Dropbox (HKLM-x32\...\Dropbox) (Version: 61.4.95 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden Epic Games Launcher (HKLM-x32\...\{A98163A6-4350-4195-AB3B-8A5BA4B6C7D8}) (Version: 1.1.163.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden ESL Wire 1.20.0 (HKLM\...\ESL Wire_is1) (Version: - Turtle Entertainment GmbH) FACEIT (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\FACEITApp) (Version: 1.19.0 - FACEIT Ltd.) FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time) Forza Horizon 3 [FULL REMOVAL] (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\{2BF89276-C6E6-4E56-AF93-633A36F02D58}_is1) (Version: 1.0.119.1002 - Microsoft Studios) Fottbal Manager 2019 (HKLM-x32\...\Fottbal Manager 2019_is1) (Version: 0.0.0 - THE KNIGHT) Gamers Window Relocator (HKLM\...\{0E1669A2-1B12-48C5-B5CE-41B425667045}) (Version: 3.5.64 - Orekaria) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games) Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot) Her Story version 1.0 (HKLM-x32\...\{A2459187-33A7-4945-BB2D-BF1AEA9C645C}_is1) (Version: 1.0 - Sam Barlow) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{3DAC4F8C-80E6-4204-8A58-747FA4CBAA03}) (Version: 16.0.246 - Intel Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft OneDrive (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 63.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 63.0.1 (x64 fr)) (Version: 63.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0 - Mozilla) MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team) MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.81 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.81 - NVIDIA Corporation) OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation) Panneau de configuration NVIDIA 416.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.81 - NVIDIA Corporation) Hidden Plex Media Server (HKLM-x32\...\{6d7fe5a0-cecb-4bb9-88f0-fef90aa02f9a}) (Version: 1.13.9.5456 - Plex, Inc.) Plex Media Server (HKLM-x32\...\{D3D8D681-AF07-4212-BA66-AA70B7999E8C}) (Version: 1.13.9456 - Plex, Inc.) Hidden Revo Uninstaller Pro 4.0.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.1 - VS Revo Group, Ltd.) RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder) ROCCAT KoneXTD Driver (HKLM\...\{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.20.000 - Roccat GmbH) Hidden ROCCAT KoneXTD Driver (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.20.000 - Roccat GmbH) ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version: - Roccat GmbH) ROCCAT IskuFX Driver (HKLM\...\{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.12.0000 - Roccat GmbH) Hidden ROCCAT IskuFX Driver (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.12.0000 - Roccat GmbH) ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version: - Roccat GmbH) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 12.2.0 - ShareX Team) Sims 4 Studio (HKLM-x32\...\{870AA913-0774-4ED0-B144-BC2C0CBE4BA0}_is1) (Version: 3.1.2.1 - Sims 4 Studio) SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stopping Plex (HKLM-x32\...\{379E74EF-C9E3-4524-8DD8-11DB443FB6F0}) (Version: 1.13.9456 - Plex, Inc.) Hidden Sublime Text Build 3176 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) The Sims 4 (HKLM-x32\...\{9B613B56-E7B5-40C3-864B-8C6172C3A76D}_is1) (Version: 1.46.18.1020 - Electronic Arts) TSR CC Manager 1.0.5 (only current user) (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\a49330da-1613-561d-8ac8-0b807a98141c) (Version: 1.0.5 - ) TSR Workshop (HKLM-x32\...\{946B68C4-01C7-4C4D-9E13-2B184C469758}) (Version: 2.2.65 - The Sims Resource) Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft) VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN) WinDirStat 1.1.2 (HKU\S-1-5-21-561860741-2486264049-150863185-1000\...\WinDirStat) (Version: - ) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-11-06] (Dropbox, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-11-02] (NVIDIA Corporation) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02E75AE9-903A-4AFD-9DA7-D93B8075F22D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-07-01] (Dropbox, Inc.) Task: {0B251DBC-DECA-4F49-B543-54C6EBA4AED7} - System32\Tasks\Core Temp Autostart Atmoz => C:\Program Files\Core Temp\Core Temp.exe [2018-05-20] (ALCPU) Task: {1193F89C-8BFA-4AE4-9FB0-38FFEA9839DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation) Task: {1C94E659-FF98-48E0-89B3-6FB07C4B043B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation) Task: {23743CC8-780C-4DC1-AB91-B13F30613C9B} - System32\Tasks\Atmoz => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Atmoz /t REG_SZ /d "cmd.exe /c start www.exinariuminix.info" Task: {262C8280-1D6F-482C-8106-6035298104B2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-07-01] (Dropbox, Inc.) Task: {29208288-13CA-4FC3-9115-150A7854E92E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {3A23E85A-0524-4778-84E6-981C38DBFDFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation) Task: {3BD6DEE8-9E08-4806-85EA-7164CA5F90F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-01] (Google Inc.) Task: {49F247B9-94C1-4AAF-A88D-D5C0154B38A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-01] (Google Inc.) Task: {5501CE73-4A96-4248-A7CC-9795A7CD3554} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {55B57806-926B-43C0-9D4B-C84C2DE28C99} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation) Task: {55FC4937-1FC8-414B-B755-9D6C81DB63C9} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {56387D1C-2FDE-473C-8251-5A11608247DD} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2018-04-23] () Task: {59A87C48-E4E7-40D8-89EF-897E68C53D16} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache Task: {80368ABB-A383-424A-A667-6F339F0E9F52} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe Task: {98C1BC51-09C6-4BEE-83A8-DD804AABC78F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync Task: {B3F6DB37-42A7-41F2-8B4F-4064F0666BBF} - System32\Tasks\S-1-5-21-561860741-2486264049-150863185-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-09-15] (Microsoft Corporation) Task: {B6EF34D0-0D80-4787-811F-33CEFEB87C4B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {B7FF254E-FC8D-426B-9237-BEAC344014BA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives Task: {C632A8A5-1141-43F5-ABAC-D629F3382B6F} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {CC4ABD53-4283-43D8-BCC6-F0E035E3B4B5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation) Task: {D57AD6C2-A482-477F-B266-26C76A9284B9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation) Task: {D80EF24F-3375-4DFF-BD35-B82C8222FC01} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] () Task: {FC155955-D092-46B7-80CD-F3C12E156FDD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Atmoz\Desktop\MIGRATION BUREAU\OVERCLOCK & MONITORING\Valley Benchmark 1.0.lnk -> C:\Program Files (x86)\Unigine\Valley Benchmark 1.0\valley.bat (Pas de fichier) Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Boeing 777-300ER\www.freeskyproject.com.lnk -> hxxp://www.freeskyproject.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Boeing 777-300\www.freeskyproject.com.lnk -> hxxp://www.freeskyproject.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Boeing 777-200LR\www.freeskyproject.com.lnk -> hxxp://www.freeskyproject.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Boeing 777-200ER\www.freeskyproject.com.lnk -> hxxp://www.freeskyproject.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Boeing 747-8F Cargo\www.freeskyproject.com.lnk -> hxxp://www.freeskyproject.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Flotte Emirates FSX\Airbus A80-861\www.pairbus.com.lnk -> hxxp://www.pairbus.com Shortcut: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Media Browser 3\MB Dashboard.lnk -> hxxp://localhost:8096/mediabrowser/dashboard/dashboard.htm ShortcutWithArgument: C:\Users\Atmoz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\TSR CC Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=klllmnhkmfbagjmjnlcoffjkeklnkoko ShortcutWithArgument: C:\Users\Atmoz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> -restore-last-session ==================== Modules chargés (Avec liste blanche) ============== 2018-09-15 08:28 - 2018-09-15 08:28 - 000449536 _____ () c:\windows\system32\SSDM.dll 2018-08-20 16:53 - 2017-07-25 16:08 - 000692544 _____ () C:\Program Files\EslWire\service\WireHelperSvc.exe 2018-08-20 16:53 - 2017-07-25 16:47 - 000214016 _____ () C:\Program Files\EslWire\service\NocIPC64.dll 2018-07-01 07:46 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-04-23 16:16 - 2018-04-23 16:16 - 000739624 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe 2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-07-01 07:46 - 2018-10-10 21:03 - 101252136 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-07-01 07:46 - 2018-10-10 21:03 - 004619816 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll 2018-07-01 07:46 - 2018-10-10 21:03 - 000108584 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-10-23 23:59 - 2018-10-23 23:59 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll 2018-09-15 17:41 - 2018-09-15 17:41 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-10-23 23:59 - 2018-10-23 23:59 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll 2018-04-12 17:25 - 2018-04-12 17:25 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-10-23 23:59 - 2018-10-23 23:59 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll 2018-09-02 16:25 - 2018-09-02 16:25 - 098275328 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll 2018-09-02 16:25 - 2018-09-02 16:25 - 003922432 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll 2018-09-02 16:25 - 2018-09-02 16:25 - 000092672 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll 2018-09-06 20:49 - 2018-05-14 08:32 - 000703088 _____ () C:\Program Files\Sublime Text 3\plugin_host.exe 2018-11-06 18:50 - 2018-11-06 18:50 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll 2018-11-06 18:50 - 2018-11-06 18:50 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-11-09 01:40 - 2018-11-09 01:40 - 001434384 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11001.20083.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll 2018-10-31 00:44 - 2018-10-23 22:24 - 002669400 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\swiftshader\libglesv2.dll 2018-10-31 00:44 - 2018-10-23 22:24 - 000151384 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\swiftshader\libegl.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2018-10-03 18:14 - 2018-10-03 18:14 - 069128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 014171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 002866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-10-03 18:14 - 2018-10-03 18:14 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-09-15 17:44 - 2018-09-15 17:44 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll 2018-04-23 16:13 - 2018-04-23 16:13 - 000057344 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2018-04-23 16:13 - 2018-04-23 16:13 - 000232448 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2018-04-23 16:13 - 2018-04-23 16:13 - 000357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2018-04-23 16:13 - 2018-04-23 16:13 - 000072704 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2018-04-23 16:13 - 2018-04-23 16:13 - 000567808 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2018-07-01 07:46 - 2018-10-10 21:04 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-07-01 10:29 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\Atmoz\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-07-01 10:29 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\Atmoz\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-07-01 10:29 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\Atmoz\AppData\Local\Discord\app-0.0.301\libegl.dll 2018-07-01 10:30 - 2018-11-06 20:25 - 011283288 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-07-01 10:30 - 2018-11-09 23:35 - 001639256 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-07-01 10:30 - 2018-07-01 10:30 - 001910104 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-07-01 10:30 - 2018-07-01 10:30 - 000422744 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-07-01 10:30 - 2018-07-01 10:30 - 000145240 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-07-01 10:30 - 2018-07-01 10:30 - 000512856 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-07-01 10:30 - 2018-11-07 19:40 - 001630040 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-10-02 15:39 - 2018-10-10 16:55 - 009621848 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node 2018-07-01 10:30 - 2018-11-09 23:35 - 001718104 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node 2018-07-01 10:30 - 2018-07-01 10:30 - 002722648 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-08-11 08:37 - 2018-11-09 23:36 - 001261400 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node 2018-08-11 08:37 - 2018-11-06 20:25 - 024896856 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node 2018-07-01 10:30 - 2018-07-01 10:30 - 002760536 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-07-01 10:30 - 2018-07-01 10:30 - 001249112 _____ () \\?\C:\Users\Atmoz\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node 2018-10-30 09:36 - 2018-10-30 09:36 - 001031656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll 2018-11-07 23:45 - 2018-11-06 14:06 - 001141064 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll 2018-11-07 23:45 - 2018-11-06 14:06 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll 2018-07-01 07:34 - 2018-11-06 14:09 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000142312 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 001953640 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:06 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll 2018-07-01 07:34 - 2018-11-06 14:06 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:06 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll 2018-11-07 23:45 - 2018-11-06 14:08 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000061792 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:06 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd 2018-08-05 15:26 - 2018-11-06 14:09 - 000092488 _____ () C:\Program Files (x86)\Dropbox\Client\sip.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd 2018-08-05 15:26 - 2018-11-06 14:09 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:06 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 011144016 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:06 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2018-11-07 23:45 - 2018-11-06 14:08 - 000036712 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000272208 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll 2018-07-01 07:34 - 2018-11-06 14:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2018-07-01 07:34 - 2018-11-06 14:09 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL 2018-11-07 23:45 - 2018-11-06 14:08 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll 2018-07-01 07:34 - 2018-11-06 14:09 - 000095592 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shcore.compiled._winffi_shcore.cp35-win32.pyd 2018-10-26 21:31 - 2018-11-06 14:09 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd 2018-09-12 00:03 - 2018-11-06 14:09 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd 2018-07-01 07:34 - 2018-11-06 14:09 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd 2018-11-07 23:45 - 2018-11-06 14:08 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000075240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000200168 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll 2018-10-30 09:36 - 2018-10-30 09:36 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd 2018-10-30 09:36 - 2018-10-30 09:36 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll 2018-07-01 09:32 - 2012-06-17 10:20 - 000061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll 2018-07-01 09:44 - 2012-07-08 15:31 - 000061440 _____ () C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\hiddriver.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [470] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-561860741-2486264049-150863185-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Atmoz\AppData\Local\DisplayFusion\Wallpaper_2.png DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe FirewallRules: [UDP Query User{766A1DE1-746E-4E2D-95D3-D5ABBC355253}E:4\the sims 4\game\bin\ts4.exe] => (Block) E:4\the sims 4\game\bin\ts4.exe FirewallRules: [TCP Query User{E2D03DFA-A203-468E-A760-1DAC5B00DEB6}E:4\the sims 4\game\bin\ts4.exe] => (Block) E:4\the sims 4\game\bin\ts4.exe FirewallRules: [{4CB68455-2EB6-4F3D-A8DE-3D18BCAC0EEF}] => (Block) L:\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{EE0AE0D8-25BA-48C2-9A90-5EDCB16C33BE}] => (Block) L:\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{D3DCF5BA-D874-4221-983A-129B35857230}] => (Block) L:\Jurassic World Evolution\JWE.exe FirewallRules: [{F89E2035-19CF-4120-898B-E2765D419D6E}] => (Block) L:\Jurassic World Evolution\JWE.exe FirewallRules: [{351FBDCA-1406-4398-953A-F66FB51FD4A0}] => (Block) L:\Jurassic World Evolution\JWE.exe FirewallRules: [{51CA8E69-F3E8-4858-AB1D-952705FCD8FD}] => (Block) L:\Jurassic World Evolution\JWE.exe FirewallRules: [{B2F9288B-CE78-4BFA-B9D2-55C1BB16B724}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{3E5BB87D-1A16-4F10-A7A5-CAD97AFD845A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{FAB07755-3EDD-4A81-B3AA-E752EA5AE9BE}] => (Block) L:\Phantom Doctrine\IWTB.exe FirewallRules: [{48D05830-A0DD-4291-8365-DD22346FE648}] => (Block) L:\Phantom Doctrine\IWTB.exe FirewallRules: [{04D7F99D-CD41-49E4-9053-DB8571B35512}] => (Block) L:\Megaquarium\Megaquarium\Megaquarium.exe FirewallRules: [{69300D2D-5ECF-4522-B1B8-FAE961F25332}] => (Block) L:\Megaquarium\Megaquarium\Megaquarium.exe FirewallRules: [{6750FF95-BE81-48C2-B994-B5EC2456DFEA}] => (Block) D:\ISO GAMEZ\Realpolitiks v1.4\realpolitiks.exe FirewallRules: [{F661DD80-54AE-41CB-923D-68D1788E8571}] => (Block) D:\ISO GAMEZ\Realpolitiks v1.4\realpolitiks.exe FirewallRules: [{F465D905-E373-4058-AC27-95E9B5EA9056}] => (Block) L:\Light Fall\Light Fall v1.0.1 RIP\LightFall.exe FirewallRules: [{D25216D0-F6E7-49B7-BDFA-8BF1108EAD5F}] => (Block) L:\Light Fall\Light Fall v1.0.1 RIP\LightFall.exe FirewallRules: [{47CF5F5F-F2C4-4E0B-89B1-BFB1FF8B66EA}] => (Block) L:\HER STORY\HerStory.exe FirewallRules: [{41AF6A28-9E26-416B-A94C-9B98C829976C}] => (Block) L:\HER STORY\HerStory.exe FirewallRules: [{BFFD464F-49BC-4A3E-84BD-AFCBF3076350}] => (Block) L:\Unravel Two\UnravelTwo.exe FirewallRules: [{1571D8EF-382C-457D-80F4-EB5B4B40BEF8}] => (Block) L:\Unravel Two\UnravelTwo.exe FirewallRules: [{DA1F9183-3A06-4127-A04A-8E8F7BCFBEEE}] => (Block) L:\Train Sim World\WindowsNoEditor\TS2Prototype\Binaries\Win64\TS2Prototype-Win64-Shipping.exe FirewallRules: [{0E85D847-CE7D-41FC-B03F-78A51AF02601}] => (Block) L:\Train Sim World\WindowsNoEditor\TS2Prototype.exe FirewallRules: [{AD3962C3-F429-4FB1-956F-491C10741005}] => (Block) L:\Train Sim World\WindowsNoEditor\TS2Prototype.exe FirewallRules: [{B8B25310-7AC0-4357-9235-DA139045E017}] => (Block) L:\Train Sim World\WindowsNoEditor\TS2Prototype\Binaries\Win64\TS2Prototype-Win64-Shipping.exe FirewallRules: [UDP Query User{20CEEB41-DAA2-451F-8D79-5471507DE85C}C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe FirewallRules: [TCP Query User{C678F887-F0A0-4C73-B6C9-E7964585768C}C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe FirewallRules: [UDP Query User{CC078BBC-33F5-4ED8-A5FF-66A1AFF3F22B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{1F61488D-A11D-4617-A755-04AF7A8738A8}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{2576B734-86F1-40FD-B78A-9999C05B18BC}C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{92D88212-C0C6-4D80-8DB1-A5FD60A96390}C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{E16DCA21-EBAA-4C1B-A213-B770793F0E63}E:4\epicgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) E:4\epicgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{9D703BA2-2066-47CB-80FA-2F773367BBA3}E:4\epicgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) E:4\epicgames\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{E95C8D3B-1640-4B2D-9459-1DBBFD12F608}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{7E6F03EF-2541-4E2E-8F85-B8289E205561}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{344D4DC8-4CD9-4A3C-97B5-F721FF27102F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{99F17623-2852-47BD-AA7B-2368251DAD73}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{B9F91515-350A-4F5D-81BE-FFD1DB767FA1}] => (Block) R:\GAMEZ\Two Point Hospital\TPH.exe FirewallRules: [{C551B657-0819-4ED1-B5AC-487C5F82D02B}] => (Block) R:\GAMEZ\Two Point Hospital\TPH.exe FirewallRules: [{E8B855C5-9A9C-4A58-81EB-33696B038C6D}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{97AC81F4-CD09-48A3-8C63-EA28C80AA031}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{66DA9B37-3859-4C0A-92E8-41F5789BC943}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{5865851E-4503-4739-8B4F-C182F2EED98F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{0CF2B477-FA55-47E3-8D6E-D7650ED63EA2}] => (Block) L:\Conan Exiles\ConanSandbox.exe FirewallRules: [{CE05A4DB-2770-426A-AA2F-0C7359266BF3}] => (Block) L:\Conan Exiles\ConanSandbox.exe FirewallRules: [{F474407A-15FC-46B4-95C4-27B2A82A0F05}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe FirewallRules: [{B510DF7B-EA1A-494D-B841-8DB8B4FFDA05}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe FirewallRules: [{7BBD9F38-1FA1-4AD7-A9B9-67B26CFEC317}] => (Allow) C:\Program Files\EslWire\wire.exe FirewallRules: [{CD8859CB-114F-42B2-ACB9-02B663D412F4}] => (Allow) C:\Program Files\EslWire\wire.exe FirewallRules: [{E840A032-6334-4E60-BF69-037017851594}] => (Block) %ProgramFiles%\MAXON\Cinema 4D R19\CINEMA 4D.exe FirewallRules: [{50373444-FD46-4A39-A4A1-771DAF329712}] => (Block) %ProgramFiles%\MAXON\Cinema 4D R19\CINEMA 4D.exe FirewallRules: [UDP Query User{7EDD7DA2-4BE8-418A-947C-C74775BACD37}C:\program files\maxon\cinema 4d r19\cinema 4d.exe] => (Allow) C:\program files\maxon\cinema 4d r19\cinema 4d.exe FirewallRules: [TCP Query User{0E1C9E39-7782-4056-B568-D54D44B5BC99}C:\program files\maxon\cinema 4d r19\cinema 4d.exe] => (Allow) C:\program files\maxon\cinema 4d r19\cinema 4d.exe FirewallRules: [{6C2A8C14-1A9C-4E23-B0A9-1B3604702870}] => (Block) N:\JEUX\Forza Horizon 3\AppFiles\forza_x64_release_final.exe FirewallRules: [{D2C2F095-7AC3-4E10-986C-0E1653145C5B}] => (Block) N:\JEUX\Forza Horizon 3\AppFiles\forza_x64_release_final.exe FirewallRules: [{2847FC61-8CAF-4496-B8A6-6A9760AE0B7A}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{18BA5B68-83D4-4CF1-BF17-9F922A3CA6E0}] => (Allow) R:\GAMEZ\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{5FCB0158-A981-4D22-9583-29A7F94640E2}] => (Block) L:\State of Decay 2\AppFiles\StateOfDecay2\Binaries\UWP64\StateOfDecay2-UWP64-Shipping.exe FirewallRules: [{7B16C219-0747-4813-8F50-DFEA8090C97B}] => (Block) L:\State of Decay 2\AppFiles\StateOfDecay2\Binaries\UWP64\StateOfDecay2-UWP64-Shipping.exe FirewallRules: [{E700FE84-F8DF-4B6D-ABA3-4C21CF53CFA1}] => (Block) L:\Surviving Mars Curiosity\MarsSteam.exe FirewallRules: [{D965AE29-D283-4BB7-9B4F-C88F8A9C05E6}] => (Block) L:\Surviving Mars Curiosity\MarsSteam.exe FirewallRules: [{99BFC7FC-AF56-4F40-BC2C-84345A582016}] => (Block) L:\Surviving Mars Da Vinci\MarsSteam.exe FirewallRules: [{5C0F95C1-A0AA-41D0-898E-970A9A32C43F}] => (Block) L:\Surviving Mars Da Vinci\MarsSteam.exe FirewallRules: [{E2D59780-5CB3-43D3-9439-B60FF5912FD2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{185F4122-3F6D-4DB1-9924-17F6014148E7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{F1BF421F-E5CC-4C97-8FE2-5AC33C067EF5}E:3\jeux\gtav\gta5.exe] => (Allow) E:3\jeux\gtav\gta5.exe FirewallRules: [TCP Query User{0FAE97D1-0D9A-4A61-BE5B-71A0DD09FDE6}E:3\jeux\gtav\gta5.exe] => (Allow) E:3\jeux\gtav\gta5.exe FirewallRules: [UDP Query User{9C3C5B93-3BB0-4009-8E01-5F5893F7EF59}N:\jeux\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) N:\jeux\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{B02483DB-51BA-4F50-9F18-ED352E7F1579}N:\jeux\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) N:\jeux\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{67D133F5-3E84-4BA6-B343-E94B56C52113}C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe FirewallRules: [TCP Query User{49A3A0A8-F743-4002-81D0-BA88AD5BBCFC}C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.87.491.0_x86__zpdnekdrzrea0\spotify.exe FirewallRules: [UDP Query User{F98DC307-57A0-4935-BE1C-7EE6646A3CA5}C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{B9816240-C353-4B16-8EB7-ACB1BE9FBD53}C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\atmoz\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{89D5DE15-7FCA-476E-89F1-A908B871729F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{32AA9DCC-D4EE-4725-B84E-476A165C69C8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{839EDD12-6119-4F45-95D1-26253C9C958C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{CCBA87D1-554D-4D09-B095-706CC2D4C5B5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{565C868D-9FE6-4C2C-890E-D652D3851B6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{EFA90DFF-E8B0-44EE-BC84-65F5748B3F1B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{FF35B1C6-006C-4A9A-9F5F-267965829C85}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{910A7E56-C8EE-4674-B7F4-0AA694EDDB68}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{EB61F1B7-3486-4953-9EAB-0C764C0A4146}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{3A33FBFB-84BE-497F-B41D-5930DADD9D19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{C13EDF8E-83F2-4B9E-B597-B3BCF4074F9E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{A3B380E0-FD2E-428E-BFBF-F324441E28A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [TCP Query User{D4F6D9DE-66DA-4A59-940C-7C5406310F98}C:\program files (x86)\plex\plex media server\plex media server.exe] => (Allow) C:\program files (x86)\plex\plex media server\plex media server.exe FirewallRules: [TCP Query User{48E8C9F1-D609-4C01-8330-9F8787297EF3}C:\program files (x86)\plex\plex media server\plex media server.exe] => (Allow) C:\program files (x86)\plex\plex media server\plex media server.exe FirewallRules: [{01F196F8-423D-49A8-A58F-A9B62D731DA2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{964DFCA4-2DF8-42A3-97D4-F1881D9E3994}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe FirewallRules: [{9994102D-DB17-4776-A81B-83A86DBAA2F0}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe FirewallRules: [{30060572-2068-4359-AA49-54EE218C624A}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe FirewallRules: [{0A2E0F60-EA7C-432D-B2B8-6A972EC4D31E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{156A6F90-A5A7-4B55-A4CD-BB3222AABD57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{5DA7CA03-D211-40F5-AAD2-DCA638384F8C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C6480B0A-0D6D-4E8B-BC49-4F9AF8450DBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6114D5AA-4696-4BCF-8522-4F6CEBEEC088}] => (Block) %ProgramFiles%\MAXON\Cinema 4D R20\CINEMA 4D.exe FirewallRules: [{23E5CC11-3139-4407-B82E-FD737120C077}] => (Block) %ProgramFiles%\MAXON\Cinema 4D R20\CINEMA 4D.exe FirewallRules: [{7D94C275-6E44-4547-B003-8D4E81723D71}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{118B91AE-827B-45F3-8AFC-2820FA5E379E}] => (Block) L:\Cities Skylines\Cities.exe FirewallRules: [{17AC414E-D826-4910-9ED4-A14D0B0F30E4}] => (Block) L:\Cities Skylines\Cities.exe FirewallRules: [TCP Query User{B91B93AD-AF36-408E-A4DA-512FD9214371}C:\program files (x86)\corepack\fm2019\fm.exe] => (Block) C:\program files (x86)\corepack\fm2019\fm.exe FirewallRules: [UDP Query User{EF2FE4C5-8FFA-47B9-81E3-12EA5EC7E3D7}C:\program files (x86)\corepack\fm2019\fm.exe] => (Block) C:\program files (x86)\corepack\fm2019\fm.exe FirewallRules: [{7350236D-92BD-4417-8B1A-25EAB0BD491A}] => (Block) %ProgramFiles% (x86)\CorePack\FM2019\fm.exe FirewallRules: [{A45E6B50-0C12-4FAA-BBAE-5290B4E56A02}] => (Block) %ProgramFiles% (x86)\CorePack\FM2019\fm.exe ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: {4d36e979-e325-11ce-bfc1-08002be10318} Manufacturer: Service: Problem: : Reinstall the drivers for this device. (Code 18) Resolution: The drivers for this device must be reinstalled. Click "Update Driver", which starts the Hardware Update wizard. Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/10/2018 03:19:39 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Nom du module défaillant : FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000029bcd70 ID du processus défaillant : 0x3018 Heure de début de l’application défaillante : 0x01d47900682ec6b1 Chemin d’accès de l’application défaillante : C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe Chemin d’accès du module défaillant: C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe ID de rapport : dc3bd98a-c211-43ab-b1d5-4a528f4e2607 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/10/2018 09:00:19 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/10/2018 08:59:06 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/10/2018 08:55:32 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Nom du module défaillant : FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000029bcd70 ID du processus défaillant : 0x31b8 Heure de début de l’application défaillante : 0x01d478cac025c1ce Chemin d’accès de l’application défaillante : C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe Chemin d’accès du module défaillant: C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe ID de rapport : f141918c-8a6d-4837-bd20-8e42f07fa159 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/10/2018 08:53:28 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/10/2018 08:50:20 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/10/2018 08:29:58 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/09/2018 11:43:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Nom du module défaillant : FACEIT.exe, version : 1.19.0.0, horodatage : 0x5b046f54 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000029bcd70 ID du processus défaillant : 0x3f90 Heure de début de l’application défaillante : 0x01d4787d92f64167 Chemin d’accès de l’application défaillante : C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe Chemin d’accès du module défaillant: C:\Users\Atmoz\AppData\Local\FACEITApp\app-1.19.0\FACEIT.exe ID de rapport : 0fd28609-1cf4-4a73-be27-a621f1293dbc Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (11/10/2018 03:58:51 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:58:51 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:46:58 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:46:58 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:28:36 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:28:36 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:25:30 PM) (Source: DCOM) (EventID: 10016) (User: Atmoz-PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID Atmoz-PC\Atmoz de l’utilisateur (S-1-5-21-561860741-2486264049-150863185-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/10/2018 03:21:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID Windows.SecurityCenter.WscDataProtection et l’APPID Non disponible au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2018-11-04 09:56:13.959 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!ac&threatid=2147684005&enterprise=0 Nom : Trojan:Win32/Dynamer!ac ID : 2147684005 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchFinal.exe; file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchOpus.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Atmoz-PC\Atmoz Nom du processus : N:\JEUX\Forza Horizon 3\AppFiles\auto_fh3.V7.exe Version de la signature : AV: 1.279.1115.0, AS: 1.279.1115.0, NIS: 1.279.1115.0 Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4 Date: 2018-11-04 09:56:13.819 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!ac&threatid=2147684005&enterprise=0 Nom : Trojan:Win32/Dynamer!ac ID : 2147684005 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchFinal.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Atmoz-PC\Atmoz Nom du processus : N:\JEUX\Forza Horizon 3\AppFiles\auto_fh3.V7.exe Version de la signature : AV: 1.279.1115.0, AS: 1.279.1115.0, NIS: 1.279.1115.0 Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4 Date: 2018-11-03 21:47:01.019 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!ac&threatid=2147684005&enterprise=0 Nom : Trojan:Win32/Dynamer!ac ID : 2147684005 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchFinal.exe; file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchOpus.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Atmoz-PC\Atmoz Nom du processus : N:\JEUX\Forza Horizon 3\AppFiles\auto_fh3.V7.exe Version de la signature : AV: 1.279.1104.0, AS: 1.279.1104.0, NIS: 1.279.1104.0 Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4 Date: 2018-11-03 21:47:00.795 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!ac&threatid=2147684005&enterprise=0 Nom : Trojan:Win32/Dynamer!ac ID : 2147684005 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Atmoz\AppData\Local\Temp\afolder\LaunchFinal.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Atmoz-PC\Atmoz Nom du processus : N:\JEUX\Forza Horizon 3\AppFiles\auto_fh3.V7.exe Version de la signature : AV: 1.279.1104.0, AS: 1.279.1104.0, NIS: 1.279.1104.0 Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4 Date: 2018-11-03 20:17:26.503 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0 Nom : Trojan:Win32/Bluteal.B!rfn ID : 2147727314 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_N:\Backups\Forza\InstallApp.exe; file:_N:\Backups\Forza\WinStore.Love.Auth.dll Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Atmoz-PC\Atmoz Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.279.1104.0, AS: 1.279.1104.0, NIS: 1.279.1104.0 Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4 CodeIntegrity: =================================== Date: 2018-10-28 09:09:28.560 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-10-28 09:09:28.550 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-10-28 09:09:28.395 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz Pourcentage de mémoire utilisée: 46% Mémoire physique - RAM - totale: 16367.11 MB Mémoire physique - RAM - disponible: 8787.33 MB Mémoire virtuelle totale: 22511.11 MB Mémoire virtuelle disponible: 11274.53 MB ==================== Lecteurs ================================ Drive c: (OS SSD DISK) (Fixed) (Total:119.14 GB) (Free:46.92 GB) NTFS Drive d: (DATA DISK 2T) (Fixed) (Total:1863.01 GB) (Free:0.5 GB) NTFS Drive e: (TRASH DISK) (Fixed) (Total:146.48 GB) (Free:87.66 GB) NTFS Drive f: (MUSIC DISK) (Fixed) (Total:48.83 GB) (Free:2.07 GB) NTFS Drive g: (GAMES DISK) (Fixed) (Total:97.65 GB) (Free:17.45 GB) NTFS Drive h: (OLD OS DISK) (Fixed) (Total:146.48 GB) (Free:2.28 GB) NTFS Drive i: (ISO DISK) (Fixed) (Total:97.65 GB) (Free:8.95 GB) NTFS Drive j: (TEMP DISK) (Fixed) (Total:75.13 GB) (Free:8.79 GB) NTFS Drive k: (WARNING DISK) (Fixed) (Total:48.83 GB) (Free:2.1 GB) NTFS Drive l: (GAMES II DISK) (Fixed) (Total:200.43 GB) (Free:37.61 GB) NTFS Drive m: (CREATIONS DISK) (Fixed) (Total:55.01 GB) (Free:13.55 GB) NTFS Drive n: (MES FICHIERS) (Fixed) (Total:488.28 GB) (Free:24.83 GB) NTFS Drive o: (DOWNLOADZ) (Fixed) (Total:244.14 GB) (Free:21.13 GB) NTFS Drive r: (TEMPORARY DISK) (Fixed) (Total:199.09 GB) (Free:23.85 GB) NTFS Drive z: (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 34DD34DC) Partition 1: (Active) - (Size=146.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=319.3 GB) - (Type=0F Extended) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 29FA71D1) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 9BC9EF95) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=0F Extended) ======================================================== Disk: 3 (Size: 152.7 GB) (Disk ID: 0F7E0F7D) Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=48.8 GB) - (Type=0F Extended) Partition 3: (Not Active) - (Size=55 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 298.1 GB) (Disk ID: 00000001) Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=200.4 GB) - (Type=0F Extended) ======================================================== Disk: 5 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: CB49DB46) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================