Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-05.2019 Exécuté par Flo (26-05-2019 21:08:23) Exécuté depuis C:\Users\Flo\Desktop Windows 10 Pro (X64) (2018-06-17 15:58:24) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2475744654-940344618-606811070-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2475744654-940344618-606811070-503 - Limited - Disabled) Flo (S-1-5-21-2475744654-940344618-606811070-1000 - Administrator - Enabled) => C:\Users\Flo HomeGroupUser$ (S-1-5-21-2475744654-940344618-606811070-1004 - Limited - Enabled) Invité (S-1-5-21-2475744654-940344618-606811070-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2475744654-940344618-606811070-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1725, 17.06.2016 - AIMP DevTeam) ApowerPDF V4.1.0.124 (HKLM-x32\...\{8691C793-7B2C-46C5-9AB2-AB80D129A5EC}_is1) (Version: 4.1.0.124 - Apowersoft LIMITED) Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden Assassin's Creed Odyssey (HKLM-x32\...\{B7EC622B-1979-450E-8281-C5648506DB83}_is1) (Version: - Ubisoft) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.43.4 - Bethesda Softworks) Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation) Broforce (HKLM-x32\...\{4EB1FFC1-A9A8-417B-B867-D83E07A6DFC8}) (Version: - Devolver Digital) CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd) DiagnosticsHub_CollectionService (HKLM\...\{A4636BDE-B12D-4187-A939-11F6BFE8491B}) (Version: 16.0.28829 - Microsoft Corporation) Hidden Discord (HKU\S-1-5-21-2475744654-940344618-606811070-1000\...\Discord) (Version: 0.0.305 - Discord Inc.) Disk Unlocker (HKLM-x32\...\{AE4DB5AB-CD91-4D63-8AD5-33EBADCCC4F2}) (Version: 2.1.3 - ASUSTek Computer Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.01 - NVIDIA Corporation) Hidden Easy Drive Data Recovery (HKLM-x32\...\Easy Drive Data Recovery) (Version: 3.0 - MunSoft) Epic Games Launcher (HKLM-x32\...\{38E13F79-CE21-42EA-A749-C49FB573F12F}) (Version: 1.1.206.0 - Epic Games, Inc.) FileZilla Client 3.41.1 (HKLM-x32\...\FileZilla Client) (Version: 3.41.1 - Tim Kosse) GIF Viewer 3.3 (HKLM-x32\...\GIF Viewer) (Version: 3.3 - Stefan Wobbe) Glary Utilities 5.106 (HKLM-x32\...\Glary Utilities 5) (Version: 5.106.0.130 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) Hotline Miami (HKLM-x32\...\{5CB459D0-69B1-41EB-94BF-7D3C4EDC74CE}) (Version: - Devolver Digital) icecap_collection_neutral (HKLM-x32\...\{6764C62A-6131-4B7A-BA82-0DA658B86718}) (Version: 16.0.28622 - Microsoft Corporation) Hidden icecap_collection_x64 (HKLM\...\{416506DB-700F-418D-9604-45A261FB14BB}) (Version: 16.0.28622 - Microsoft Corporation) Hidden icecap_collectionresources (HKLM-x32\...\{E3DFC046-EED3-462B-BC75-68094E28D0BB}) (Version: 16.0.28622 - Microsoft Corporation) Hidden icecap_collectionresourcesx64 (HKLM-x32\...\{23CD72DD-A9E9-471D-A1A6-C83B1AE232B6}) (Version: 16.0.28622 - Microsoft Corporation) Hidden Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden K-Lite Codec Pack 13.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel de base du périphérique HP Photosmart 5520 series (HKLM\...\{97104D7C-FAC1-40A2-A34D-7950424FAEDE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{f3e3c5dd-edd0-406b-8aa2-ce5acb93660e}) (Version: 10.0.14 - Intel(R) Corporation) Hidden Madden NFL 19 (HKLM-x32\...\Madden NFL 19_is1) (Version: - ) Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2475744654-940344618-606811070-1000\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (en-US) (HKLM-x32\...\{66D57636-BD4B-402F-9E7D-5E89C28C8136}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (fr-FR) (HKLM-x32\...\{4D2DDB98-1FE6-4CFE-BCFD-EFE27FF24FAE}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Text to Speech Voice (en-US, Helen) (HKLM-x32\...\{8466EAED-7024-4AEE-9D13-F3A55B98D114}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Text to Speech Voice (fr-FR, Hortense) (HKLM-x32\...\{9B9D928F-97D5-4D95-9A71-EE9B1805BADE}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft System CLR Types pour SQL Server 2019 CTP2.2 (HKLM\...\{0F6F9B07-B28F-41FD-B214-CFF672D1A37B}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft System CLR Types pour SQL Server 2019 CTP2.2 (HKLM-x32\...\{9335D184-95A5-4131-B4F7-C91244DF79D4}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.0.3297.403 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) MiniTool Power Data Recovery 8.1 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 8.1 - MiniTool Software Limited) Mises à jour NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Mozilla Firefox 67.0 (x64 fr) (HKLM\...\Mozilla Firefox 67.0 (x64 fr)) (Version: 67.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 67.0.0.7075 - Mozilla) MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.6 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.45 - MSI) MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.18.0.102 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.102 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 417.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 417.01 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 417.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 417.01 - NVIDIA Corporation) Oculus (HKLM\...\Oculus) (Version: <3 - Facebook Technologies, LLC) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 10.5.38.25027 - Electronic Arts, Inc.) Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) ownCloud (HKLM-x32\...\{9D585997-32BE-4150-B43F-166F1CBB84F4}) (Version: 2.5.1.10807 - ownCloud GmbH) Panneau de configuration NVIDIA 417.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 417.01 - NVIDIA Corporation) Hidden PDF Creator (HKLM-x32\...\PDF Creator) (Version: 10.6.1.2353 - PDF Pro Ltd.) PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.3.1 - Nikon Corporation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7233 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0230 - REALTEK Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.) SD Card Formatter (HKLM-x32\...\{10C16E01-F739-4093-89A7-E570589FA0F6}) (Version: 5.0.0 - SD Association) SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.111 - Skype Technologies S.A.) Space Engineers (HKLM-x32\...\Space Engineers_is1) (Version: - ) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.7.36423 - Electronic Arts) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellar Data Recovery Professional (HKLM-x32\...\Stellar Data Recovery Professional_is1) (Version: 8.0.0.0 - Stellar Information Technology Pvt Ltd.) Stereo Tool 8.00 (HKLM-x32\...\Stereo Tool) (Version: - ) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.8352 - TeamViewer) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) Transmission Remote GUI 5.0.1 (HKLM-x32\...\transgui_is1) (Version: - Yury Sidorov) Twitch (HKU\S-1-5-21-2475744654-940344618-606811070-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Update for Skype for Business 2015 (KB4464547) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{9D5BB171-BCE3-4C47-96AC-F062BD5BB7F6}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4464547) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9D5BB171-BCE3-4C47-96AC-F062BD5BB7F6}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4464547) 32-Bit Edition (HKLM-x32\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{9D5BB171-BCE3-4C47-96AC-F062BD5BB7F6}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 17.1 - Ubisoft) vcpp_crt.redist.clickonce (HKLM-x32\...\{3AE97A6D-8C51-40FA-80DB-762560787909}) (Version: 14.20.27508 - Microsoft Corporation) Hidden ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.2.11 - Nikon Corporation) Virtual Desktop Service (HKLM\...\{A1048959-E908-4A99-8529-0E9EA6E911A0}) (Version: 1.12.1 - Virtual Desktop, Inc.) Visual Studio Community 2019 (HKLM-x32\...\dfda243b) (Version: 16.0.28803.452 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) VS Immersive Activate Helper (HKLM-x32\...\{54FBC9A9-CCA1-417E-ACA6-203A32A39F37}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden VS JIT Debugger (HKLM\...\{4B816AD0-D12B-498A-8148-7CBE3ED328DE}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden VS Script Debugging Common (HKLM\...\{8B657335-3813-4CF4-A6FE-2AA44BE23F94}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden vs_communitymsi (HKLM-x32\...\{9F0E32BE-3119-4871-AD86-383A021B0124}) (Version: 16.0.28711 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{93FC8506-79DC-4078-A473-D21A80F04C1C}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{37D994EA-A13D-48B0-9948-062E0C350270}) (Version: 16.0.28707 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{FFE3CC65-76D3-4D54-A22E-6BDF4C21CB6E}) (Version: 16.0.28707 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{F08DA172-0777-40C6-A8BA-D0F314560BEE}) (Version: 16.0.28518 - Microsoft Corporation) Hidden vs_Graphics_Singletonx64 (HKLM\...\{414FA594-3AD9-4093-BFE3-91ABF25410BF}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_Graphics_Singletonx86 (HKLM-x32\...\{814ABD58-E503-4A7F-8C53-0F1A2E4686EE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{57F29F55-7B37-45AF-B554-45D8C1A1FD03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{2DB4A4FB-3DDD-4924-AF39-3FC5EDEC335A}) (Version: 16.0.28711 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{6F2E4A5C-4C2C-439B-A8A0-07DAB7A788B4}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation) WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinZip 23.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411D}) (Version: 23.0.13300 - Corel Corporation) Wise Registry Cleaner 10.21 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.21 - WiseCleaner.com, Inc.) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.0.0_x64__tf1gferkr813w [2019-05-07] (Autodesk Inc.) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.4.520.0_x64__rz1tebttyb220 [2019-03-13] (Dolby Laboratories) Dolby Atmos for Headphones -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforHeadphones_2.3.303.0_x64__rz1tebttyb220 [2018-10-21] (Dolby Laboratories) EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2018-08-15] (Microsoft Corporation) Gears of War 4 -> C:\Program Files\WindowsApps\Microsoft.SpartaUWP_14.2.1.2_x64__8wekyb3d8bbwe [2019-04-27] (Microsoft Studios) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_95.1.531.0_x64__v10z8vjag6ke6 [2019-03-19] (HP Inc.) Kauna -> C:\Program Files\WindowsApps\13545x2.Kauna_1.33.5.0_x64__s6p2eat6f0r4t [2019-02-28] (x2) Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.11.402.0_x64__8wekyb3d8bbwe [2019-05-24] (Microsoft Studios) Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.83.5499.2_x64__8wekyb3d8bbwe [2019-05-23] (ms-resource:PublisherDisplayName) State of Decay 2 -> C:\Program Files\WindowsApps\Microsoft.Dayton_1.3478.51.2_x64__8wekyb3d8bbwe [2019-04-30] (Microsoft Studios) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2475744654-940344618-606811070-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> ) CustomCLSID: HKU\S-1-5-21-2475744654-940344618-606811070-1000_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll () [Fichier non signé] ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ShellIconOverlayIdentifiers: [0TheftProtectionDll] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => -> Pas de fichier ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2016-07-08] (Artem Izmaylov -> AIMP DevTeam) [Fichier non signé] ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) [Fichier non signé] ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [Fichier non signé] ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-01-30] (Corel Corporation -> WinZip Computing) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files (x86)\ownCloud\shellext_x64\OCContextMenu.dll [2018-11-07] (ownCloud GmbH) [Fichier non signé] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2016-07-08] (Artem Izmaylov -> AIMP DevTeam) [Fichier non signé] ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-01-30] (Corel Corporation -> WinZip Computing) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) [Fichier non signé] ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [Fichier non signé] ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2019-01-30] (Corel Corporation -> WinZip Computing) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Modules chargés (Avec liste blanche) ============== 2018-06-17 17:59 - 2019-05-26 19:12 - 000032768 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll 2018-01-15 17:15 - 2016-06-14 17:35 - 000187392 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll 2018-01-15 17:15 - 2016-06-14 17:35 - 000163328 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll 2018-01-15 17:15 - 2016-04-20 15:12 - 000772608 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\Lib\USB_DLL.dll 2015-04-13 15:56 - 2015-04-13 15:56 - 000070675 _____ () [Fichier non signé] C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll 2017-09-22 22:08 - 2015-06-23 17:41 - 000082432 _____ (Fintek) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll 2018-11-07 20:31 - 2018-11-07 20:31 - 001803776 _____ (ownCloud GmbH) [Fichier non signé] C:\Program Files (x86)\ownCloud\shellext_x64\OCOverlays.dll 2015-12-07 01:16 - 2012-05-10 11:38 - 000036864 _____ (Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Flo\AppData\Local\Temp:$DATA​ [16] AlternateDataStreams: C:\Users\Public\AppData:CSM [470] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2475744654-940344618-606811070-1000\...\localhost -> localhost ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2017-12-19 11:06 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-2475744654-940344618-606811070-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Flo\Tracing\Downloads\Images\902096.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: AppHostSvc => 2 MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: cFosSpeedS => 2 MSCONFIG\Services: EasyAntiCheat => 3 MSCONFIG\Services: GamingApp_Service => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: Origin Web Helper Service => 2 MSCONFIG\Services: RunSwUSB => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: sshd => 3 MSCONFIG\Services: SwitchBoard => 3 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\startupfolder: C:^Users^Flo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupfolder: C:^Users^Flo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Envoyer à OneNote.lnk => C:\Windows\pss\Envoyer à OneNote.lnk.Startup MSCONFIG\startupfolder: C:^Users^Flo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk => C:\Windows\pss\Facebook Gameroom.lnk.Startup MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: Chromium => "c:\users\flo\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory=Default --restore-last-session MSCONFIG\startupreg: CyberGhost => "C:\Program Files\CyberGhost 5\CyberGhost.exe" /autostart /min MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: Discord => C:\Users\Flo\AppData\Local\Discord\app-0.0.298\Discord.exe MSCONFIG\startupreg: Google Update => "C:\Users\Flo\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: HP Photosmart 5520 series (NET) => "C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN46H722780602:NW" -scfn "HP Photosmart 5520 series (NET)" -AutoStart 1 MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" MSCONFIG\startupreg: StartCN => "C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: Turbo LAN => C:\Program Files\ASUS\Turbo LAN\cFosSpeed.exe MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKU\S-1-5-21-2475744654-940344618-606811070-1000\...\StartupApproved\Run: => "GUDelayStartup" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{E4BC0CF9-B362-41DF-A3D2-D0ACA8A439F7}] => (Allow) D:\Jeux installes\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{D0ACFDE5-3E0C-4A5A-8D93-1929C986F5FE}] => (Allow) D:\Jeux installes\GTA V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{1A782A06-1078-4EDC-AE9A-66614F09D46D}] => (Allow) C:\Windows\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{5D692DFA-8B40-4347-B941-FA41AAA14DA3}] => (Allow) C:\Windows\explorer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [UDP Query User{5954E143-CD6D-4166-8B9F-2FB05584A474}C:\users\public\facebook games\1651335698493341\4\col.exe] => (Allow) C:\users\public\facebook games\1651335698493341\4\col.exe (NetEase(Hangzhou) Network Co. Ltd. -> ) FirewallRules: [TCP Query User{0F7A370E-547E-48BA-9584-CD21F5D364E1}C:\users\public\facebook games\1651335698493341\4\col.exe] => (Allow) C:\users\public\facebook games\1651335698493341\4\col.exe (NetEase(Hangzhou) Network Co. Ltd. -> ) FirewallRules: [{7761AA91-7C9E-4529-AB3E-911BC3AD7AF7}] => (Allow) D:\Jeux installes\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{8DDE3B6B-BEBA-41E2-B56E-7A424DAE1994}] => (Allow) D:\Jeux installes\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{C591D95B-67EC-416A-BB09-7F8C5A5DCD02}] => (Allow) D:\Jeux installes\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{99C964EF-A61E-4A0D-86B1-7AE690A4D5A6}] => (Allow) D:\Jeux installes\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{A9794412-5FB0-4528-A658-AA0D3E6D4185}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1BCD6285-48BB-4745-B4BE-3B99DA45FC9B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{10486CEA-A49E-47F3-A60F-11F0EE1B3EE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{EF631F5B-DD44-4C79-810F-5AD5C99125CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BA9A0C9E-9E2B-4538-B910-FB00D9B6F421}] => (Allow) C:\Users\Flo\AppData\Local\FiveM\FiveM.exe (cfx-collective) [Fichier non signé] FirewallRules: [{7ED21B39-56CE-450F-B3C4-2240D51841D5}] => (Allow) C:\Users\Flo\AppData\Local\FiveM\FiveM.exe (cfx-collective) [Fichier non signé] FirewallRules: [UDP Query User{A545B89C-03A0-4429-976B-E4AC8F277791}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{2006D7E5-5D90-4936-9E3C-71D9FBD46060}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F5724357-BEF9-40B5-933E-F49FE7894475}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{A9B57737-EC3B-4A6C-89FD-BA07A92660A0}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{6DF71672-B0F6-418B-A618-8444F0E6F9C6}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\Rtldhcp.exe (Realtek) [Fichier non signé] FirewallRules: [{0AA0FB19-2FC6-4AC8-839C-47FAA4220008}] => (Allow) LPort=53 FirewallRules: [{FB37D9D9-6856-4E7A-8091-732BF6C2C749}] => (Allow) LPort=53 FirewallRules: [{F698601B-126B-401E-93C1-DCF47B416CEF}] => (Allow) LPort=68 FirewallRules: [{A014927A-0040-44D2-8CD9-60851CBEA638}] => (Allow) LPort=67 FirewallRules: [{A7A91884-3618-4F97-BFCA-BEC7B0348F65}] => (Allow) LPort=53 FirewallRules: [{91F2455C-8709-4C3A-9C04-C54D226DA820}] => (Allow) LPort=1542 FirewallRules: [{0FF251FA-4D23-40F7-9078-72784C63D768}] => (Allow) LPort=1542 FirewallRules: [{79CCFE03-F831-439F-9DAC-266B62565DF0}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\RtWlan.exe (Realtek Semiconductor Corp.) [Fichier non signé] FirewallRules: [UDP Query User{21AA2C9B-9476-40B7-9B5D-8D0C9BDBEB01}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{CEB7F3F3-0B99-4B2E-BB6D-C2ABD00532CC}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{31826D03-8900-457C-AE68-89C56CF98058}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{1CF8EF22-0352-473E-8975-7C4DB87CCB87}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{53A533E9-A97B-4B8F-B52C-E100D0CBF347}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{F8AEF16B-F086-40C5-9660-4E4CE744A85E}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{D9EDB952-E7BF-461F-98DA-F52CA60B5290}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{D62C7808-F171-4C6C-B37E-B4218C137F8D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{AC7921EC-5393-4D10-A964-133E13FBD802}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CBF54A53-2D1A-4923-A7C6-46DCBCCD5ECF}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{96B77677-8CF6-4BFC-9EF5-22B2095642D2}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{250AD60D-4C9B-4651-94E0-C35B54AC2356}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DE1CFB27-2681-4D58-8052-065357EA2BC1}] => (Allow) LPort=1487 FirewallRules: [{913A28E0-4AFA-414B-BE1E-93FE12811417}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B0184B78-55B0-4B39-8005-B79DF67D692E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe (Microsoft Windows -> ) FirewallRules: [TCP Query User{6E426D44-3C2D-496B-995A-D0749031C0F8}D:\jeux installes\nidhogg.2.beta\nidhogg_2.exe] => (Allow) D:\jeux installes\nidhogg.2.beta\nidhogg_2.exe ( ) [Fichier non signé] FirewallRules: [UDP Query User{06CE2C73-C1AA-4D66-B6F6-148FDBDD9076}D:\jeux installes\nidhogg.2.beta\nidhogg_2.exe] => (Allow) D:\jeux installes\nidhogg.2.beta\nidhogg_2.exe ( ) [Fichier non signé] FirewallRules: [{62DA0424-6697-438D-A577-6C2E0E1D152B}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{D21492DB-C6BC-4A45-9E59-CFEAE6CD938C}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{51B5356B-4364-483C-8DC8-DF196C14F749}D:\games\madden nfl 19\madden19.exe] => (Allow) D:\games\madden nfl 19\madden19.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) [Fichier non signé] FirewallRules: [UDP Query User{B442B370-49BA-4B54-A913-F4A2012467C1}D:\games\madden nfl 19\madden19.exe] => (Allow) D:\games\madden nfl 19\madden19.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) [Fichier non signé] FirewallRules: [TCP Query User{556BD822-7914-4B7B-8800-452B6ACC7CF0}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{192A72FF-FCFC-483F-9561-5300C3A54043}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{059BB8E5-ADB7-4EE3-9EC9-A90A61CEA11F}D:\jeux installés\overwatch\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\jeux installés\overwatch\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{0891A593-9340-4A7B-86AC-D504DCE18A23}D:\jeux installés\overwatch\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\jeux installés\overwatch\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{7BC3DC90-4ABA-453D-8E52-F126135A68D2}C:\program files (x86)\twitch\games library\4eb1ffc1-a9a8-417b-b867-d83e07a6dfc8\broforce-798.exe] => (Allow) C:\program files (x86)\twitch\games library\4eb1ffc1-a9a8-417b-b867-d83e07a6dfc8\broforce-798.exe () [Fichier non signé] FirewallRules: [UDP Query User{E268C5AF-5041-481C-B70D-61C39BAD15DB}C:\program files (x86)\twitch\games library\4eb1ffc1-a9a8-417b-b867-d83e07a6dfc8\broforce-798.exe] => (Allow) C:\program files (x86)\twitch\games library\4eb1ffc1-a9a8-417b-b867-d83e07a6dfc8\broforce-798.exe () [Fichier non signé] FirewallRules: [{D387C639-C5F8-47E5-9E2F-314774E56CA6}] => (Allow) D:\Steam\steamapps\common\Broforce\Broforce_beta.exe () [Fichier non signé] FirewallRules: [{32C47060-E3E5-418F-B3B0-900FA84739A9}] => (Allow) D:\Steam\steamapps\common\Broforce\Broforce_beta.exe () [Fichier non signé] FirewallRules: [{68D2EC6C-C7D9-4F4A-8C52-AABFDAE84110}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{6ED6035B-ABE1-431E-9ACB-F62EDDAF6E31}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{3C6FCAEF-09B1-4A02-B235-144BEF530CD9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{B347B735-1182-4576-B061-F6CDB414700F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{A61444ED-9266-4B12-A342-8AEE844F60C2}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{81632275-A5DC-4F07-A7CE-0A428EF9AF2E}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{8529EA3C-24B8-4771-AF97-C1D522ADDD78}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{1FEE5045-F797-4863-8484-E251CD96FFE2}] => (Allow) D:\Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [TCP Query User{3CCA0709-F75F-4251-8ED9-D3404DF3AD3D}C:\program files (x86)\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{2E01F1CC-3AD1-49AB-8ED9-D7292D7DB86D}C:\program files (x86)\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{2A67D504-BABF-42B7-B195-1F850739828A}D:\unreal engine\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\unreal engine\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{61697E94-2F9E-4914-BF6A-E0B0FFA49BC6}D:\unreal engine\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\unreal engine\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{01DF56D1-A661-4EDC-9E28-6281BEAA02AA}D:\unreal engine\ue_4.22\engine\binaries\win64\ue4editor.exe] => (Allow) D:\unreal engine\ue_4.22\engine\binaries\win64\ue4editor.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{2473BBDA-D06A-4763-993D-D331A0128428}D:\unreal engine\ue_4.22\engine\binaries\win64\ue4editor.exe] => (Allow) D:\unreal engine\ue_4.22\engine\binaries\win64\ue4editor.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{CCF240BE-21CF-42CC-8705-C15E7EE05F11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{51A792BA-3E9C-412A-903B-9D23CCD2F10D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B2E5D796-60F5-4B23-9BC1-7766C9BE7989}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{5C3CD8C7-1278-4ED1-9287-D1523C467492}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{20FA97C9-683E-459B-ADF2-D77C87C210FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{AEFD2CFA-5044-426F-B3FE-A59C6F9DE9F0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{9BA86BF8-E0E9-4191-8B04-2017A8E81AF4}D:\unreal engine\ue_4.22\engine\binaries\dotnet\swarmagent.exe] => (Allow) D:\unreal engine\ue_4.22\engine\binaries\dotnet\swarmagent.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{340F8174-9095-42CC-B2C2-C16683742FD7}D:\unreal engine\ue_4.22\engine\binaries\dotnet\swarmagent.exe] => (Allow) D:\unreal engine\ue_4.22\engine\binaries\dotnet\swarmagent.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{F6425F3F-FADA-4E25-84A1-0B7029EDECED}] => (Allow) D:\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> ) FirewallRules: [{E173BCA7-59A1-4D19-9619-0483BD1297DA}] => (Allow) D:\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve -> ) FirewallRules: [{2F6FB7BC-0A21-44D0-ABB4-D3C9CA18EAEC}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> ) FirewallRules: [{D674AF74-4661-4C9B-95AF-63BA23D6845A}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> ) FirewallRules: [{D3CC2B1B-A43E-4AF1-BBB9-D7E41C0A1AC6}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{A9E23D1B-DE92-4D88-B60E-A4FD4E0D9899}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{DA8D129F-80F8-4B0B-B7FF-C545324355F4}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{5045D3A0-5270-44EC-8DC8-9AE5223830A6}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Oculus VR, LLC -> Facebook Technologies, LLC) FirewallRules: [{C8807052-0EBB-4172-80E4-A2E977AC942C}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> ) FirewallRules: [{544AFAA2-D03C-4B6B-A5CF-62F5867FD617}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\dash\bin\OculusDash.exe (Oculus VR, LLC -> ) FirewallRules: [{53BE5610-41FF-43F6-B8CF-FD1BCB854E81}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{DA06E970-6F00-4E09-B7D1-9FA6A6C8C345}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{914FE273-6E75-49EB-90D8-C11C30624ED4}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.) FirewallRules: [{DA128902-5C32-41FF-AFE4-D0B7F6CF040D}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe (Oculus VR, LLC -> Epic Games, Inc.) FirewallRules: [{BB71B6E9-F57A-48C6-B247-9648C37E4395}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Fichier non signé] FirewallRules: [{890C9A83-E7F8-4C68-8243-FDA6790AF075}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe (Oculus VR, LLC) [Fichier non signé] FirewallRules: [{7E21F0F8-F03F-4641-9ED3-8B31CB74556C}] => (Allow) D:\Steam\steamapps\common\GORN\GORN.exe () [Fichier non signé] FirewallRules: [{195BC91F-0A4A-4049-8244-D8F2A1E9D320}] => (Allow) D:\Steam\steamapps\common\GORN\GORN.exe () [Fichier non signé] FirewallRules: [TCP Query User{34160BAD-9318-408E-B941-2075DE949298}D:\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) D:\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [UDP Query User{07376AFA-71C3-4807-B3B4-1B3AC14834CD}D:\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) D:\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> ) FirewallRules: [TCP Query User{11B0FD43-7760-4C56-88B0-F2091B8C7F1B}D:\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Allow) D:\steam\steamapps\common\steamvr\bin\win64\vrserver.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{33F53DA5-4ACF-4571-8F90-374C48039090}D:\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Allow) D:\steam\steamapps\common\steamvr\bin\win64\vrserver.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{C699E773-08C0-4B88-8CE0-C79E124E253C}D:\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Allow) D:\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{AEC19497-E3D5-4864-88F0-50325F177C2E}D:\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Allow) D:\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe (Valve -> Valve Corporation) FirewallRules: [{2BD50D7C-95C5-48D8-8B92-CE8BFFE1720E}] => (Allow) D:\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [{71E97EEF-CAA6-4792-B477-30E852DA74BF}] => (Allow) D:\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> ) FirewallRules: [TCP Query User{C0BD06EE-4296-4985-A521-F1C3EC1599F9}D:\vr\job simulator\jobsimulator.exe] => (Allow) D:\vr\job simulator\jobsimulator.exe () [Fichier non signé] FirewallRules: [UDP Query User{CD74159F-FE53-4FA5-B5BC-5E5ADBBB4ACE}D:\vr\job simulator\jobsimulator.exe] => (Allow) D:\vr\job simulator\jobsimulator.exe () [Fichier non signé] FirewallRules: [TCP Query User{1EBA04EF-43A1-4AA7-B231-C129F1B9B522}D:\vr\rick and morty vr\rickandmortyvr.exe] => (Allow) D:\vr\rick and morty vr\rickandmortyvr.exe () [Fichier non signé] FirewallRules: [UDP Query User{EAEFF334-B967-433B-98EF-2348956D647D}D:\vr\rick and morty vr\rickandmortyvr.exe] => (Allow) D:\vr\rick and morty vr\rickandmortyvr.exe () [Fichier non signé] FirewallRules: [TCP Query User{8017184C-2EDC-403A-BC96-42CE73F5D8C8}D:\vr\the.climb.vr\crytek_climb_wip\bin\win_x64\climb.exe] => (Allow) D:\vr\the.climb.vr\crytek_climb_wip\bin\win_x64\climb.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [UDP Query User{E7849E1F-AAEA-4D70-8EB3-C294B573C609}D:\vr\the.climb.vr\crytek_climb_wip\bin\win_x64\climb.exe] => (Allow) D:\vr\the.climb.vr\crytek_climb_wip\bin\win_x64\climb.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [{9A58FC0B-6D42-4519-92AF-22A2C0D4458F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service DomainProfile\GloballyOpenPorts: [9000:TCP] => Enabled:Logitech Media Server 9000 tcp (UI) DomainProfile\GloballyOpenPorts: [9001:TCP] => Enabled:Logitech Media Server 9001 tcp (UI) DomainProfile\GloballyOpenPorts: [9002:TCP] => Enabled:Logitech Media Server 9002 tcp (UI) DomainProfile\GloballyOpenPorts: [9003:TCP] => Enabled:Logitech Media Server 9003 tcp (UI) DomainProfile\GloballyOpenPorts: [9004:TCP] => Enabled:Logitech Media Server 9004 tcp (UI) DomainProfile\GloballyOpenPorts: [9005:TCP] => Enabled:Logitech Media Server 9005 tcp (UI) DomainProfile\GloballyOpenPorts: [9006:TCP] => Enabled:Logitech Media Server 9006 tcp (UI) DomainProfile\GloballyOpenPorts: [9007:TCP] => Enabled:Logitech Media Server 9007 tcp (UI) DomainProfile\GloballyOpenPorts: [9008:TCP] => Enabled:Logitech Media Server 9008 tcp (UI) DomainProfile\GloballyOpenPorts: [9009:TCP] => Enabled:Logitech Media Server 9009 tcp (UI) DomainProfile\GloballyOpenPorts: [9010:TCP] => Enabled:Logitech Media Server 9010 tcp (UI) DomainProfile\GloballyOpenPorts: [9100:TCP] => Enabled:Logitech Media Server 9100 tcp (UI) DomainProfile\GloballyOpenPorts: [8000:TCP] => Enabled:Logitech Media Server 8000 tcp (UI) DomainProfile\GloballyOpenPorts: [10000:TCP] => Enabled:Logitech Media Server 10000 tcp (UI) DomainProfile\GloballyOpenPorts: [9090:TCP] => Enabled:Logitech Media Server 9090 tcp (UI) DomainProfile\GloballyOpenPorts: [3483:UDP] => Enabled:Logitech Media Server 3483 udp DomainProfile\GloballyOpenPorts: [3483:TCP] => Enabled:Logitech Media Server 3483 tcp StandardProfile\GloballyOpenPorts: [9000:TCP] => Enabled:Logitech Media Server 9000 tcp (UI) StandardProfile\GloballyOpenPorts: [9001:TCP] => Enabled:Logitech Media Server 9001 tcp (UI) StandardProfile\GloballyOpenPorts: [9002:TCP] => Enabled:Logitech Media Server 9002 tcp (UI) StandardProfile\GloballyOpenPorts: [9003:TCP] => Enabled:Logitech Media Server 9003 tcp (UI) StandardProfile\GloballyOpenPorts: [9004:TCP] => Enabled:Logitech Media Server 9004 tcp (UI) StandardProfile\GloballyOpenPorts: [9005:TCP] => Enabled:Logitech Media Server 9005 tcp (UI) StandardProfile\GloballyOpenPorts: [9006:TCP] => Enabled:Logitech Media Server 9006 tcp (UI) StandardProfile\GloballyOpenPorts: [9007:TCP] => Enabled:Logitech Media Server 9007 tcp (UI) StandardProfile\GloballyOpenPorts: [9008:TCP] => Enabled:Logitech Media Server 9008 tcp (UI) StandardProfile\GloballyOpenPorts: [9009:TCP] => Enabled:Logitech Media Server 9009 tcp (UI) StandardProfile\GloballyOpenPorts: [9010:TCP] => Enabled:Logitech Media Server 9010 tcp (UI) StandardProfile\GloballyOpenPorts: [9100:TCP] => Enabled:Logitech Media Server 9100 tcp (UI) StandardProfile\GloballyOpenPorts: [8000:TCP] => Enabled:Logitech Media Server 8000 tcp (UI) StandardProfile\GloballyOpenPorts: [10000:TCP] => Enabled:Logitech Media Server 10000 tcp (UI) StandardProfile\GloballyOpenPorts: [9090:TCP] => Enabled:Logitech Media Server 9090 tcp (UI) StandardProfile\GloballyOpenPorts: [3483:UDP] => Enabled:Logitech Media Server 3483 udp StandardProfile\GloballyOpenPorts: [3483:TCP] => Enabled:Logitech Media Server 3483 tcp ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: NVIDIA High Definition Audio Description: NVIDIA High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: NVHDA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: nvvad_WaveExtensible Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/26/2019 07:12:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RtWlan.exe, version : 700.1671.813.2013, horodatage : 0x5211dbf3 Nom du module défaillant : RtWlan.exe, version : 700.1671.813.2013, horodatage : 0x5211dbf3 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00029387 ID du processus défaillant : 0xfe8 Heure de début de l’application défaillante : 0x01d513e63f163dc3 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWlan.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWlan.exe ID de rapport : 8321d6ec-0958-499b-928f-4a8f3ba1a4f8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (05/26/2019 07:12:49 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/26/2019 01:18:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RtWlan.exe, version : 700.1671.813.2013, horodatage : 0x5211dbf3 Nom du module défaillant : RtWlan.exe, version : 700.1671.813.2013, horodatage : 0x5211dbf3 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00029387 ID du processus défaillant : 0x14ac Heure de début de l’application défaillante : 0x01d513b4be8f8862 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWlan.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWlan.exe ID de rapport : 5d7c122e-aa64-4f64-83bd-6096ea56ff84 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (05/26/2019 01:18:28 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/26/2019 09:49:27 AM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/26/2019 09:45:48 AM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/26/2019 09:45:08 AM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/26/2019 12:52:16 AM) (Source: OVRServiceLauncher) (EventID: 0) (User: ) Description: Event-ID 0 Erreurs système: ============= Error: (05/26/2019 07:38:41 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:38:41 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:38:41 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:38:41 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:15:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID Windows.SecurityCenter.WscBrokerManager et l’APPID Non disponible au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:15:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID Windows.SecurityCenter.WscDataProtection et l’APPID Non disponible au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/26/2019 07:12:48 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 15:18:27 le ‎26/‎05/‎2019 n’était pas prévu. Error: (05/26/2019 07:12:41 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Windows Defender: =================================== Date: 2019-05-22 17:05:53.706 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {A3C7AF41-8B34-4345-A97A-A8945CF0049F} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : FDPC\Flo Date: 2019-05-22 11:41:08.304 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_F:\Utilitaires\Vegas Pro 11\Crack\Keygen DI v2.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : FDPC\Flo Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.293.2115.0, AS: 1.293.2115.0, NIS: 1.293.2115.0 Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4 Date: 2019-05-21 22:48:12.893 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Flo\AppData\Local\Temp\Rar$DRb0.009\win_x64\LAUNCHER.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : FDPC\Flo Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.293.2065.0, AS: 1.293.2065.0, NIS: 1.293.2065.0 Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4 Date: 2019-05-21 22:47:25.820 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Flo\AppData\Local\Temp\Rar$DRb0.309\win_x64\LAUNCHER.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : FDPC\Flo Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.293.2065.0, AS: 1.293.2065.0, NIS: 1.293.2065.0 Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4 Date: 2019-05-21 22:47:15.301 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Flo\Desktop\win_x64\LAUNCHER.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : FDPC\Flo Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.293.2065.0, AS: 1.293.2065.0, NIS: 1.293.2065.0 Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4 Date: 2019-05-25 00:24:22.565 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.293.2280.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15900.4 Code d’erreur : 0x80240439 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2019-05-21 22:46:15.551 Description: Antivirus Windows Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Utilisateur : FDPC\Flo Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la signature : AV: 1.293.2065.0, AS: 1.293.2065.0 Version du moteur : 1.1.15900.4 Date: 2019-05-21 22:45:49.953 Description: Antivirus Windows Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Utilisateur : FDPC\Flo Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la signature : AV: 1.293.2065.0, AS: 1.293.2065.0 Version du moteur : 1.1.15900.4 Date: 2019-05-04 00:20:20.974 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.293.734.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15900.4 Code d’erreur : 0x80072ee2 Description de l’erreur : Le délai imparti à l’opération est dépassé CodeIntegrity: =================================== Date: 2019-05-26 21:08:00.310 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 21:08:00.308 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 21:08:00.292 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 21:08:00.291 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 13:17:10.647 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 13:17:10.645 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 10:28:09.318 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-05-26 10:28:09.314 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 0902 05/08/2014 Motherboard: ASUSTeK COMPUTER INC. Z97-A Processeur: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz Pourcentage de mémoire utilisée: 51% Mémoire physique - RAM - totale: 8134.91 MB Mémoire physique - RAM - disponible: 3945.47 MB Mémoire virtuelle totale: 20934.91 MB Mémoire virtuelle disponible: 14090.26 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:237.89 GB) (Free:72.16 GB) NTFS Drive d: (Sauvegardes) (Fixed) (Total:931.51 GB) (Free:66.39 GB) NTFS \\?\Volume{1e76e246-7ce9-11e5-a1a0-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{830d615b-0000-0000-0000-807f3b000000}\ () (Fixed) (Total:0.48 GB) (Free:0.08 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 67A62D2D) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 830D615B) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=492 MB) - (Type=27) ==================== Fin de Addition.txt ============================