Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-08-2019 Exécuté par Antonio (20-08-2019 21:30:16) Exécuté depuis C:\Users\Antonio\Desktop Windows 10 Pro Version 1803 17134.950 (X64) (2018-05-30 03:49:44) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3211553782-380890847-3588550373-500 - Administrator - Disabled) Antonio (S-1-5-21-3211553782-380890847-3588550373-1001 - Administrator - Enabled) => C:\Users\Antonio DefaultAccount (S-1-5-21-3211553782-380890847-3588550373-503 - Limited - Disabled) Invité (S-1-5-21-3211553782-380890847-3588550373-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3211553782-380890847-3588550373-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated) AntiMicro (HKLM-x32\...\{584F5685-C0E5-4D84-B6F2-045B801A0BA1}) (Version: 2.20.2 - AntiMicro) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.4 - Electronic Arts, Inc.) ApowerMirror V1.4.6.5 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.4.6.5 - APOWERSOFT LIMITED) Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASIO Bridge and Hi-Fi Cable (HKLM-x32\...\VB:ASIOBridge {17359A74-1236-5467}) (Version: - VB-Audio Software) Assassin's Creed Origins (HKLM-x32\...\Uplay Install 3539) (Version: - Ubisoft) Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team) Batman The Enemy Within Episode 5 (HKLM-x32\...\Batman The Enemy Within Episode 5_is1) (Version: - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.30619 - Electronic Arts) Beholder 2 (HKLM-x32\...\Beholder 2_is1) (Version: - ) Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.43.4 - Bethesda Softworks) BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC) BitTorrent (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\BitTorrent) (Version: 7.10.5.45272 - BitTorrent Inc.) Black and White 2 Complete Collection MULTi7 - ElAmigos version 1.2 (HKLM-x32\...\{7237913C-55F0-4B11-94D8-63A792FBEC93}_is1) (Version: 1.2 - Electronic Arts) Blitz (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\Blitz) (Version: 1.2.6 - Blitz Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.) Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform) Cheat Engine 6.8.3 (HKLM\...\Cheat Engine 6.8.3_is1) (Version: - Cheat Engine) Cooking Simulator (HKLM-x32\...\Cooking Simulator_is1) (Version: - ) CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.) CPUID HWMonitor 1.39 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.39 - CPUID, Inc.) Creatures Of Darkness (HKLM-x32\...\{DDB9C90D-BB90-4184-B1C8-8723193BE532}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden Creatures of Darkness Voices for MorphVOX (HKLM-x32\...\{00e68eab-1128-4d89-94ae-a83b286afd69}) (Version: 4.4.41 - Screaming Bee Inc.) CrystalDiskInfo 7.7.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.7.0 - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd) Diag version 1.0.12.0 (HKLM\...\10DBD048-433A-4BC3-951F-055296F077B3_is1) (Version: 1.0.12.0 - Adlice Software) Discord (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.91 - NVIDIA Corporation) Hidden Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team) DRAGON QUEST XI Echoes of an Elusive Age (HKLM-x32\...\DRAGON QUEST XI Echoes of an Elusive Age_is1) (Version: - ) DriversCloud.com (64 bits) (HKLM\...\{8C7451C7-6D39-4DF6-9441-B4C593AF020C}) (Version: 10.0.10.0 - Cybelsoft) Enregistrement utilisateur de Canon MG3600 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3600 series) (Version: - ‭Canon Inc.) Epic Games Launcher (HKLM-x32\...\{EDAD6D1C-7526-49E4-92B7-4637EF7661F1}) (Version: 1.1.183.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Eraser 6.2.0.2982 (HKLM\...\{DFCF78CC-3DAD-4C1E-8BC6-94DC5B73461E}) (Version: 6.2.2982 - The Eraser Project) f.lux (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\Flux) (Version: - f.lux Software LLC) Fallout 76 (HKLM-x32\...\Fallout 76) (Version: - Bethesda Softworks) Fantasy Voices (HKLM-x32\...\{4D6CEBE0-87AF-435A-B305-01EEA6DE795B}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden Fantasy Voices for MorphVOX (HKLM-x32\...\{86aac4fd-4cd3-48c5-825b-325c34aa5008}) (Version: 4.4.41 - Screaming Bee Inc.) Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft) Far Cry New Dawn (HKLM-x32\...\Uplay Install 5210) (Version: - Ubisoft) ForHonor (HKLM-x32\...\Uplay Install 569) (Version: - Ubisoft) FTL: Faster Than Light (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\363414030188150801) (Version: - ) Furry Voices (HKLM-x32\...\{2BB391B8-5C6B-4110-BC9D-ECB2BEF9D4B3}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden Furry Voices for MorphVOX (HKLM-x32\...\{65a3b13d-790f-43f7-b666-0d4981ed7960}) (Version: 4.4.41 - Screaming Bee Inc.) Galactic Voices (HKLM-x32\...\{D3747661-C919-437E-B558-44579E5D16F3}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden Galactic Voices for MorphVOX (HKLM-x32\...\{2485772c-4503-4ec6-b02e-9238a08e748e}) (Version: 4.4.41 - Screaming Bee Inc.) Git version 2.22.0.windows.1 (HKLM\...\Git_is1) (Version: 2.22.0.windows.1 - The Git Development Community) GitHub Desktop (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\GitHubDesktop) (Version: 2.1.0 - GitHub, Inc.) Glary Utilities 5.106 (HKLM-x32\...\Glary Utilities 5) (Version: 5.106.0.130 - Glarysoft Ltd) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Hellblade: Senua's Sacrifice (HKLM\...\aGVsbGJsYWRlc2VudWFzc2FjcmlmaWNl_is1) (Version: 1 - ) Hello Neighbor (HKLM-x32\...\1086743022_is1) (Version: 1.4 - GOG.com) heroku (HKLM-x32\...\heroku) (Version: - Heroku) Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.172 - Riot Games, Inc.) House Flipper (HKLM-x32\...\House Flipper_is1) (Version: - ) Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation) JetBrains dotPeek 2019.1.3 (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\{57f20c38-00ce-5595-bda3-5eb71dd556c5}) (Version: 2019.1.3 - JetBrains s.r.o.) Just Cause 4 (HKLM-x32\...\{D1F33AFE-757B-4A27-9F96-D507177C3E40}_is1) (Version: - Avalanche Studios) K.G's Tools Prerequisites (HKLM\...\Prerequisites 2.0.0) (Version: 2.0.0 - Prince of Codes) Key Presser 2.1.7.8 (HKLM-x32\...\{A74CA1C1-AE87-46CB-BF3B-3E7BB192222B}_is1) (Version: - Robot-Soft.com, Inc.) K-Lite Mega Codec Pack 13.8.4 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.8.4 - KLCP) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes) Manhunt (HKLM-x32\...\{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830}) (Version: 1.00.0000 - Nom de votre société) Manual Samuel (HKLM\...\bWFudWFsc2FtdWVs_is1) (Version: 1 - ) ManyCam 4.0.109 (HKLM-x32\...\ManyCam) (Version: 4.0.109 - Visicom Media Inc.) Mass Effect™ : Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.10 - Electronic Arts) Mass Effect™ 2 (HKLM-x32\...\{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}) (Version: 1.2.1604.0 - Electronic Arts) Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) MEmu (HKLM-x32\...\MEmu) (Version: 6.2.5.0 - Microvirt Software Technology Co. Ltd.) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Minecraft Launcher (HKLM-x32\...\{E154B2C8-2F3E-4763-B3D5-E7D34AE39C6B}) (Version: 1.0.0.0 - Mojang) Mises à jour NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden Mobile Gamepad Server 1.1 (HKLM-x32\...\Mobile Gamepad Server) (Version: 1.1 - MMH Dev) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MorphVOX Pro (HKLM-x32\...\{399dda39-e8db-4148-9315-905f194ecb5f}) (Version: 4.4.35.21643 - Screaming Bee) MorphVOX Pro (HKLM-x32\...\{5B305D8D-5090-4038-B7A1-0BE0B132DAF2}) (Version: 4.4.35.21643 - Screaming Bee) Hidden Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 68.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 68.0.2 (x64 fr)) (Version: 68.0.2 - Mozilla) Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig) Netify Jump (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\Netify Jump) (Version: 0.0.4 - Luigi Poole) Nidhogg (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\451561653570502656) (Version: - ) Node.js (HKLM\...\{E3C2DC65-9DCA-4422-BDDE-0489B89A16D2}) (Version: 10.16.0 - Node.js Foundation) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.9 - Notepad++ Team) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation) NVIDIA Pilote graphique 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 431.60 - NVIDIA Corporation) OpenIV (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\OpenIV) (Version: 3.0.1006 - .black/OpenIV Team) OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 10.5.45.29542 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{0593bc01-6795-4c95-8bd7-70c6db3dc972}) (Version: latest - ppy Pty Ltd) Outer Wilds (HKLM-x32\...\Outer Wilds_is1) (Version: - ) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) paint.net (HKLM\...\{E637E0EF-6EB3-44C4-97B8-6F9EA444D649}) (Version: 4.1.5 - dotPDN LLC) Panneau de configuration NVIDIA 431.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.60 - NVIDIA Corporation) Hidden Personality Voices (HKLM-x32\...\{8CBE2745-56FD-40E6-94EE-6B46BDFF75B3}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden Personality Voices for MorphVOX (HKLM-x32\...\{348a7cdd-e826-4ccd-a00c-a9b0499a9fde}) (Version: 4.4.41 - Screaming Bee Inc.) Planetary Annihilation TITANS (HKLM-x32\...\Planetary Annihilation TITANS_is1) (Version: - ) Prerequisites (HKLM\...\{6CE58733-E9B6-4432-BA1F-085EF8417E0B}) (Version: 2.0.0 - Prince of Codes) Hidden Process Hacker 2.39 (r124) (HKLM\...\Process_Hacker2_is1) (Version: 2.39.0.124 - wj32) Progress® Telerik® JustDecompile R1 2019 (HKLM-x32\...\{24BB34B8-A1C3-4749-BD9A-FCD6158B877A}) (Version: 19.1.118.0 - Progress Software Corporation) Psychonauts (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\363412675650125825) (Version: - ) Python 3.5.3 (32-bit) (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\{a10037e1-4247-47c9-935b-c5ca049d0299}) (Version: 3.5.3150.0 - Python Software Foundation) Python 3.5.3 Add to Path (32-bit) (HKLM-x32\...\{E1596D3E-6EB2-480B-86A0-9FE174D33D1D}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Core Interpreter (32-bit) (HKLM-x32\...\{47D30E7E-2DC9-44E8-B951-D280173FCE73}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Development Libraries (32-bit) (HKLM-x32\...\{E16ECE8F-1E16-4A7C-8B00-6029A269857A}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Documentation (32-bit) (HKLM-x32\...\{0960F1CA-B729-4B15-A10D-5B0CDB7F4E45}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Executables (32-bit) (HKLM-x32\...\{CE8E2015-66B4-4461-836D-B112ADCE10D2}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 pip Bootstrap (32-bit) (HKLM-x32\...\{3E4DC27C-450D-4E8E-AD0D-4BCD189A35A6}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Standard Library (32-bit) (HKLM-x32\...\{DF6DC0C1-2B9E-43CB-9DDB-445F9239767F}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Tcl/Tk Support (32-bit) (HKLM-x32\...\{94E2F806-A0F9-406E-9971-8F2F045F3153}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Test Suite (32-bit) (HKLM-x32\...\{EF80EDF3-6B78-4E0A-8D19-F6F7AD81F545}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python 3.5.3 Utility Scripts (32-bit) (HKLM-x32\...\{6F5242CD-19B0-4632-AD56-75678C571B4D}) (Version: 3.5.3150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{A28C27E4-A725-482A-9C65-61EDC0E4D583}) (Version: 3.7.6657.0 - Python Software Foundation) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) R.A.T.TE (HKLM\...\{0BE3138E-CB5E-4C09-8E06-B09BA9FEF86B}) (Version: 7.0.31.77 - Mad Catz Inc) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.) Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.27 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.21.1 - Razer Inc.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Remember Me (HKLM-x32\...\Remember Me_is1) (Version: 1.0.1 - Capcom) Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight) Resident Evil 2 (HKLM-x32\...\Resident Evil 2_is1) (Version: - ) Roblox Player for Antonio (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\roblox-player) (Version: - Roblox Corporation) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.8 - Rockstar Games) Sandboxie 5.30 (64-bit) (HKLM\...\Sandboxie) (Version: 5.30 - Sandboxie Holdings, LLC) Sculptris Alpha 6 (HKLM-x32\...\Sculptris Alpha 6 Alpha 6) (Version: Alpha 6 - Pixologic) Sekiro Shadows Die Twice (HKLM-x32\...\Sekiro Shadows Die Twice_is1) (Version: - ) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Sherlock Holmes: The Devil's Daughter (HKLM-x32\...\Sherlock Holmes: The Devil's Daughter_is1) (Version: - ) SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.30.9696 - SoftEther VPN Project) Soma (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\425470408322449418) (Version: - ) Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.44 - Bioware/EA) Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.) State of Decay 2 [FULL REMOVAL] (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\{CA2279C5-4639-4D05-B274-8792AB07AC35}_is1) (Version: 1.3160.34.2 - Microsoft Studios) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Super Hexagon (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\443161212969156608) (Version: - ) TeamSpeak 3 Client (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\TeamSpeak 3 Client) (Version: 3.1.10 - TeamSpeak Systems GmbH) Tencent QQMail Plugin (HKLM-x32\...\QQMailPlugin) (Version: - ) The Darkness II - Limited Edition (HKLM-x32\...\The Darkness II - Limited Edition_is1) (Version: - ) The Sims 3 Complete Collection version 1.67.2 (HKLM-x32\...\The Sims 3 Complete Collection_is1) (Version: 1.67.2 - Mr DJ) The Stanley Parable (HKLM-x32\...\The Stanley Parable_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) The Walking Dead A New Frontier Episode 5 (HKLM-x32\...\The Walking Dead A New Frontier Episode 5_is1) (Version: - ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com) Titanfall™ 2 (HKLM-x32\...\{4BD80373-FEE7-45B6-8249-6E8E98717405}) (Version: 1.0.1.3 - Electronic Arts, Inc.) Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden Unified Remote (HKLM-x32\...\{415B4714-4F8C-49C6-B310-881EAF892CFB}_is1) (Version: 3.6.1 - Unified Intents AB) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{7819341C-57E0-4F2B-A746-8F3EF9971A29}) (Version: 1.14.0.0 - Microsoft Corporation) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 76.0 - Ubisoft) Vampire - The Masquerade - Bloodlines (HKLM-x32\...\1207659240_is1) (Version: 2.0.0.7 - GOG.com) VEGAS Pro 14.0 (64-bit) (HKLM\...\{8C17D521-4FB0-11E7-A6E0-A9EF5249FCEF}) (Version: 14.0.270 - VEGAS) VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN) Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.0.0 - Black Tree Gaming Ltd.) WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft) WinDirStat 1.1.2 (HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\WinDirStat) (Version: - ) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-457B-1234-32A2557A92C7}}_is1) (Version: - winmoviemaker) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinSCP 5.7.6 (HKLM-x32\...\winscp3_is1) (Version: 5.7.6 - Martin Prikryl) WrestlePlus (HKLM\...\{CA344FF7-3E03-49E4-836E-F46C321A4FDF}) (Version: 0.02.0400 - Pozzum) WWE 2K19 (HKLM-x32\...\WWE 2K19_is1) (Version: - ) XSplit Broadcaster (HKLM-x32\...\{CC7484BA-DCCC-45D8-8735-3161FDA534D3}) (Version: 3.4.1806.2229 - SplitmediaLabs) 腾讯QQ (HKLM-x32\...\{052CFB79-9D62-42E3-8A15-DE66C2C97C3E}) (Version: 9.1.6.25786 - 腾讯科技(深圳)有限公司) Packages: ========= @{A278AB0D.DisneyMagicKingdoms_3.5.1.2_x86__h6adky7gbf63m?ms-resource://A278AB0D.DisneyMagicKingdoms/Resources/ApplicationName} -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_3.5.1.2_x86__h6adky7gbf63m [2018-12-03] (0) @{Microsoft.BingNews_4.25.11802.0_x64__8wekyb3d8bbwe?ms-resource://Microsoft.BingNews/Resources/ApplicationTitleWithBrandingWithNewName} -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.25.11802.0_x64__8wekyb3d8bbwe [2018-09-28] (0) Assistant Mobile Microsoft -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-03-25] (Microsoft Corporation) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_1.8.1.0_x64__tf1gferkr813w [2018-11-15] (0) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_1.8.2.0_x64__tf1gferkr813w [2018-11-15] (Autodesk Inc.) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.7.0.1_neutral__6e5tt8cgb93ep [2018-06-13] (Canon Inc.) Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe [2018-12-18] (Microsoft Corporation) [MS Ad] Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.3.301.0_x64__rz1tebttyb220 [2018-07-10] (Dolby Laboratories) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2018-09-22] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x86__8wekyb3d8bbwe [2018-09-22] (Microsoft Corporation) [MS Ad] Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-15] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.2.11280.0_x86__8wekyb3d8bbwe [2018-12-07] (Microsoft Studios) [MS Ad] MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-15] (Microsoft Corporation) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-15] (Microsoft Corporation) [MS Ad] MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.28.3242.0_x64__8wekyb3d8bbwe [2018-12-15] (Microsoft Corporation) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0 [2018-12-23] (Spotify AB) State of Decay 2 -> G:\Games\State of Decay 2\AppFiles [2019-03-28] (Microsoft Studios) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3211553782-380890847-3588550373-1001_Classes\CLSID\{52CF28C8-0B22-4FCA-BABF-1C6EC707AFB1} -> [MEGAsync] => C:\Users\Antonio\Documents\MEGAsync [2018-08-22 02:43] ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-10-14] (Notepad++ -> ) ContextMenuHandlers1: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => E:\VMWARE\x64\vmdkShellExt64.dll [2016-04-14] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ContextMenuHandlers3: [QQShellExt] -> {53D2405C-48AB-4C8A-8F59-CE0610F13BBC} => C:\Program Files (x86)\Tencent\QQ\ShellExt\QQShellExt64.dll [2019-08-07] (Tencent Technology(Shenzhen) Company Limited -> Tencent) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Antonio\AppData\Local\MEGAsync\ShellExtX64.dll [2019-06-19] (Mega Limited -> ) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [Eraser] -> {BC9B776A-90D7-4476-A791-79D835F30650} => C:\Program Files\Eraser\Eraser.Shell.dll [2018-01-03] (Heidi Computers Ltd -> The Eraser Project) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [QQShellExt] -> {53D2405C-48AB-4C8A-8F59-CE0610F13BBC} => C:\Program Files (x86)\Tencent\QQ\ShellExt\QQShellExt64.dll [2019-08-07] (Tencent Technology(Shenzhen) Company Limited -> Tencent) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2019-05-09 12:04 - 2019-05-09 16:04 - 085372416 _____ () [Fichier non signé] G:\Ubisoft Game Launcher\libcef.dll 2018-12-03 17:07 - 2018-12-03 17:07 - 000043520 _____ () [Fichier non signé] G:\Ubisoft Game Launcher\libUbiCustomEvent.dll 2018-06-13 18:19 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL 2018-03-28 19:01 - 2018-01-28 17:00 - 000075776 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2014-02-11 18:01 - 2014-02-11 18:01 - 000360448 _____ (Saitek) [Fichier non signé] C:\Program Files\Mad Catz\R.A.T.TE\Saitek.Common.dll 2014-02-11 18:01 - 2014-02-11 18:01 - 000122880 _____ (Saitek) [Fichier non signé] C:\Program Files\Mad Catz\R.A.T.TE\Saitek.Devices.dll 2019-01-05 02:07 - 2017-05-23 15:59 - 000494080 _____ (Skillbrains) [Fichier non signé] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.dll 2019-01-05 02:07 - 2017-05-23 15:59 - 000256000 _____ (Skillbrains) [Fichier non signé] C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\uploader.dll 2018-11-13 22:54 - 2016-10-10 06:27 - 000556544 _____ (Soft Service Company) [Fichier non signé] C:\Program Files (x86)\Unified Remote 3\wcl.dll 2019-05-09 12:04 - 2019-05-09 16:04 - 000518144 _____ (The Chromium Authors) [Fichier non signé] G:\Ubisoft Game Launcher\chrome_elf.dll 2018-11-13 22:54 - 2016-09-23 15:08 - 001283584 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Unified Remote 3\LIBEAY32MD.dll 2018-11-13 22:54 - 2016-09-23 15:08 - 000255488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Unified Remote 3\SSLEAY32MD.dll 2019-08-20 12:55 - 2019-06-11 08:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] G:\Origin\LIBEAY32.dll 2019-08-20 12:55 - 2019-06-11 08:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] G:\Origin\ssleay32.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\platforms\qwindows.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\Qt5Core.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\Qt5Gui.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\Qt5Network.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\Qt5Widgets.dll 2019-08-20 12:55 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] G:\Origin\Qt5Xml.dll 2019-08-18 20:07 - 2019-08-18 20:07 - 005387776 _____ (University of Tsukuba) [Fichier non signé] C:\Program Files\SoftEther VPN Client\VpnGatePlugin_x64.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-31 00:42 - 2019-01-04 22:42 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 2018-11-29 01:00 - 2019-01-03 05:41 - 000000440 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\WINDOWS\System32\OpenSSH\;C:\Users\Antonio\AppData\Local\Microsoft\WindowsApps;E:\QTSystem\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\nodejs\;C:\Program Files\Git\cmd HKU\S-1-5-21-3211553782-380890847-3588550373-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Antonio\AppData\Roaming\Mozilla\Firefox\Fond d’écran.bmp DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Block) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: TeamViewer => 3 MSCONFIG\Services: VMAuthdService => 2 MSCONFIG\Services: VMnetDHCP => 2 MSCONFIG\Services: VMUSBArbService => 2 MSCONFIG\Services: VMware NAT Service => 2 MSCONFIG\Services: VMwareHostd => 2 HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk" HKLM\...\StartupApproved\Run: => "NetWorx" HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper" HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX" HKLM\...\StartupApproved\Run32: => "CanonQuickMenu" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "BCSSync" HKLM\...\StartupApproved\Run32: => "Dropbox" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 - Capture d’écran et lancement.lnk" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "f.lux" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "ManyCam" HKU\S-1-5-21-3211553782-380890847-3588550373-1001\...\StartupApproved\Run: => "ApowerMirror" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{CF12A5C8-0F33-436A-9F3F-C1EBAABF8B59}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{B6D16A66-2D0A-45C5-83E7-DA5629273B10}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{B078123C-0F4E-4F44-89F5-1DA58738BCC2}] => (Allow) G:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A0EEBE92-6F1F-4E5C-B480-40E32B355B7B}] => (Allow) G:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{92336690-83BD-4741-A3F7-29705DF57145}G:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{824D7391-A400-42D1-B72F-58D01DD14605}G:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{31F7C937-4195-421D-ACF0-4BFE0574ECC9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8D92D450-9381-4255-9B4C-4D988D5B8F35}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{A2DB0272-50A3-49B3-9BB5-5CE12792BBD8}C:\program files\windowsapps\spotifyab.spotifymusic_1.96.181.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.96.181.0_x86__zpdnekdrzrea0\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{14D9ACD6-7F1F-43BC-A58A-8F8227483EF3}C:\program files\windowsapps\spotifyab.spotifymusic_1.96.181.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.96.181.0_x86__zpdnekdrzrea0\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{89543C67-B10F-4B3A-92CC-318CAC6F7462}C:\users\antonio\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\antonio\appdata\roaming\bittorrent\bittorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{442D8707-A0F7-4A64-87A7-7AC433A71FC6}C:\users\antonio\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\antonio\appdata\roaming\bittorrent\bittorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{06DCCF4D-50D0-467F-B55D-5127790E0673}C:\program files (x86)\unified remote 3\remoteserverwin.exe] => (Allow) C:\program files (x86)\unified remote 3\remoteserverwin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [UDP Query User{EC0813BB-265B-445A-9CBE-3C04795F96DA}C:\program files (x86)\unified remote 3\remoteserverwin.exe] => (Allow) C:\program files (x86)\unified remote 3\remoteserverwin.exe (Unified Intents AB -> Unified Intents AB) FirewallRules: [{8E052A05-CA57-4EEE-B59D-DE35009942FB}] => (Allow) G:\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé] FirewallRules: [{15E57A3D-BC5D-434A-9C1D-BFD775909BDF}] => (Allow) G:\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé] FirewallRules: [{97549336-1E0B-4DCE-B199-E0BD42D1AB28}] => (Allow) G:\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé] FirewallRules: [{59E9BF2D-0868-412B-9D48-02A65E2576A0}] => (Allow) G:\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé] FirewallRules: [{5C99944C-A3BF-4300-B311-0FE23114353A}] => (Allow) G:\Steam\steamapps\common\ASTRONEER\Astro.exe () [Fichier non signé] FirewallRules: [{6B101A6F-6EAE-4360-854C-91426579CAD1}] => (Allow) G:\Steam\steamapps\common\ASTRONEER\Astro.exe () [Fichier non signé] FirewallRules: [{C3BFC10F-0189-4743-B571-C3B28147A1F1}] => (Allow) G:\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Fichier non signé] FirewallRules: [{FAC484E8-7DBB-46FA-ADAE-2FAE398869C9}] => (Allow) G:\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [Fichier non signé] FirewallRules: [{DA9603E1-F79B-474D-AA6B-E40749459E9D}] => (Allow) G:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{8BA125A3-6366-4EEA-B8DD-C066C923A2F4}] => (Allow) G:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{30EE5BF7-41D2-40FA-B1B1-97EAD5C887AC}] => (Allow) G:\Steam\steamapps\common\DEATHGARDEN\Deathgarden.exe (Behaviour Interactive Inc -> Epic Games, Inc.) FirewallRules: [{E5FE103F-BDA9-4B5B-A18E-AA5FE61E1746}] => (Allow) G:\Steam\steamapps\common\DEATHGARDEN\Deathgarden.exe (Behaviour Interactive Inc -> Epic Games, Inc.) FirewallRules: [TCP Query User{6E824A28-18DE-4E19-8BB4-85672581F874}G:\steam\steamapps\common\gold express\hjlc\binaries\win64\hjlc-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\gold express\hjlc\binaries\win64\hjlc-win64-shipping.exe Pas de fichier FirewallRules: [UDP Query User{1388FA60-B740-46CE-88E4-C9CEABBACD7F}G:\steam\steamapps\common\gold express\hjlc\binaries\win64\hjlc-win64-shipping.exe] => (Allow) G:\steam\steamapps\common\gold express\hjlc\binaries\win64\hjlc-win64-shipping.exe Pas de fichier FirewallRules: [{84F266E4-838D-4C2D-A2B8-828D54B14565}] => (Allow) G:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [Fichier non signé] FirewallRules: [{7CFC7B39-F26B-4FAF-B870-51EA585C9622}] => (Allow) G:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [Fichier non signé] FirewallRules: [{795E3B94-D9E3-44D2-A611-22B96231D0E1}] => (Allow) G:\Steam\steamapps\common\F13Game\EAC_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{D49E8A74-A921-4775-975A-93A3131CC650}] => (Allow) G:\Steam\steamapps\common\F13Game\EAC_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{5A286322-3E79-41D0-8574-63EE32B4C2A1}] => (Allow) E:\Steam\steamapps\common\GarrysMod\hl2.exe () [Fichier non signé] FirewallRules: [{390D449C-1B87-4680-ADA8-C38DBE332D85}] => (Allow) E:\Steam\steamapps\common\GarrysMod\hl2.exe () [Fichier non signé] FirewallRules: [{837169AB-EB7F-428C-8758-2F06FD40469A}] => (Allow) G:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{2A027E4A-0692-4B61-B824-1A07897E0026}] => (Allow) G:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{B1409537-5A83-4751-88D3-9F0745AE5543}G:\steam\steamapps\common\deceit\bin\win_x64\deceit.exe] => (Allow) G:\steam\steamapps\common\deceit\bin\win_x64\deceit.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [UDP Query User{CB8D9D83-124D-4D22-BE2A-86F1F8A1DCFF}G:\steam\steamapps\common\deceit\bin\win_x64\deceit.exe] => (Allow) G:\steam\steamapps\common\deceit\bin\win_x64\deceit.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [{6FFA843B-0B90-46BB-9F98-0B6367EFF136}] => (Allow) G:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [Fichier non signé] FirewallRules: [{02A8D6BE-4A69-43E5-AD68-E04895ED1944}] => (Allow) G:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [Fichier non signé] FirewallRules: [{DAD809A3-5B77-4D98-902C-A08A14165430}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{8CF85C26-CC7F-4A68-987C-9220BC9B62AA}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{C56ABFF6-5457-4644-B4A7-16E8B2ADE675}C:\users\antonio\appdata\local\blitz\app-1.1.3\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.3\blitz.exe Pas de fichier FirewallRules: [UDP Query User{DB0F778F-2253-4A10-A26F-09927D6F7632}C:\users\antonio\appdata\local\blitz\app-1.1.3\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.3\blitz.exe Pas de fichier FirewallRules: [TCP Query User{73374198-7E3C-48EA-AC53-E24943E962CD}C:\users\antonio\appdata\local\blitz\app-1.1.4\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.4\blitz.exe Pas de fichier FirewallRules: [UDP Query User{76377D41-93BF-4816-BD99-0DCB2C1A038B}C:\users\antonio\appdata\local\blitz\app-1.1.4\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.4\blitz.exe Pas de fichier FirewallRules: [{D06A8FCA-E1D7-41D5-9397-69C67A4456DE}] => (Allow) G:\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{4341B5F6-DC27-4BE2-93EA-9AE8D07E8E01}] => (Allow) G:\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{B5A4023F-8842-4519-AE63-409164D789A6}G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{1927BA0C-D07C-457E-8734-458AF7595142}G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{F331F8E4-BD68-406C-BD87-ED8ECA5FCF07}C:\users\antonio\appdata\local\blitz\app-1.1.6\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.6\blitz.exe Pas de fichier FirewallRules: [UDP Query User{E5453321-F6D2-469E-8525-3536C9596826}C:\users\antonio\appdata\local\blitz\app-1.1.6\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.6\blitz.exe Pas de fichier FirewallRules: [TCP Query User{4E2174F4-FCE3-4E55-B0C4-8CB0E2305338}C:\users\antonio\appdata\local\blitz\app-1.1.7\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.7\blitz.exe Pas de fichier FirewallRules: [UDP Query User{7D865682-36A3-4697-B705-78D5B3F94B44}C:\users\antonio\appdata\local\blitz\app-1.1.7\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.7\blitz.exe Pas de fichier FirewallRules: [{DD3AA324-1531-458B-9647-4739459117E7}] => (Allow) G:\Steam\steamapps\common\60 Seconds! Reatomized\60SecondsReatomized.exe () [Fichier non signé] FirewallRules: [{72F4AC9F-950E-4735-9A77-FBBD4F49768C}] => (Allow) G:\Steam\steamapps\common\60 Seconds! Reatomized\60SecondsReatomized.exe () [Fichier non signé] FirewallRules: [TCP Query User{FD9BD7BA-04B5-4C75-9A0A-CC02B5EDEC6C}C:\users\antonio\appdata\local\blitz\app-1.1.8\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.8\blitz.exe Pas de fichier FirewallRules: [UDP Query User{18424E68-8667-44FF-86E1-6C6E2270FEF5}C:\users\antonio\appdata\local\blitz\app-1.1.8\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.8\blitz.exe Pas de fichier FirewallRules: [TCP Query User{B2A498F9-34C2-43DB-98D7-AD6255C2BA46}C:\users\antonio\appdata\local\blitz\app-1.1.9\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.9\blitz.exe Pas de fichier FirewallRules: [UDP Query User{9163FC66-9ED4-42BD-A8AB-B36B79E25209}C:\users\antonio\appdata\local\blitz\app-1.1.9\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.9\blitz.exe Pas de fichier FirewallRules: [{50AF8BB3-8409-4041-B418-A085D4FC03C9}] => (Allow) G:\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{C386AADA-9A5B-4C80-A87E-B7D4031F5476}] => (Allow) G:\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{C30544B0-BC9A-4FF8-B1C3-FA811123ACD8}] => (Allow) G:\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Fichier non signé] FirewallRules: [{B866370B-C1CF-4091-9A31-D918C51C1598}] => (Allow) G:\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Fichier non signé] FirewallRules: [{EB954064-7D33-4FFB-8FE6-55D59DC6A3EC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{CDA314E7-CEB6-439B-B1AA-BE2A36D8CFEC}G:\steam\steamapps\common\this war of mine\modtools.exe] => (Allow) G:\steam\steamapps\common\this war of mine\modtools.exe () [Fichier non signé] FirewallRules: [UDP Query User{9A5BA873-910E-41EF-A75F-CE57A164F0B5}G:\steam\steamapps\common\this war of mine\modtools.exe] => (Allow) G:\steam\steamapps\common\this war of mine\modtools.exe () [Fichier non signé] FirewallRules: [{151B69B4-F6C0-4DBD-9088-38EB78C69729}] => (Allow) G:\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Fichier non signé] FirewallRules: [{6E894488-7954-422A-87BA-5BDA9BA6E764}] => (Allow) G:\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Fichier non signé] FirewallRules: [TCP Query User{9E7340B4-67A2-44C6-AD04-F8F298F4FC40}C:\program files\softether vpn client\vpncmgr_x64.exe] => (Allow) C:\program files\softether vpn client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [UDP Query User{46D583BA-D5C5-423E-8C10-7B4917ABBE22}C:\program files\softether vpn client\vpncmgr_x64.exe] => (Allow) C:\program files\softether vpn client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) FirewallRules: [{D920F3C4-8C3A-45D0-9A5A-ECE919CC4A43}] => (Allow) C:\Users\Antonio\AppData\Roaming\Tencent\QQ\STemp\SetupEx0\QQSetupEx.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{3388BD29-FFA2-414F-9DD4-671697DFEB92}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\QQ.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{5C07BE34-60C3-4E22-900B-8826D41B041B}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\auclt.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{3EFD238F-81E2-4FC5-A761-9D1C8A1F1FFA}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\txupd.exe Pas de fichier FirewallRules: [{36CBB96B-563E-4EEA-88CF-C358EC962F7C}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\SetupEx\SetupEx.exe Pas de fichier FirewallRules: [{E802BE27-D2EF-401B-AD3C-3E8C91E2D74D}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\maLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{6DE6D8A9-7087-4A85-B140-6696779D096D}] => (Allow) C:\Program Files (x86)\Tencent\QQ\Bin\maUpdat.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{8F5AB5F6-4FCA-4E3E-96DF-74D654C3FF1C}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\135\bugreport_xf.exe Pas de fichier FirewallRules: [{64E85352-0FEA-401A-9FA6-FE78D1A0EB17}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\135\tencentdl.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{E499B755-DE5E-4C95-BD87-FC9058937CF3}] => (Allow) C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{565D10BB-B54F-4D50-BBFD-B073A44A9BD8}] => (Allow) C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\QzoneMusic.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{D3C6D293-D1AA-416F-86FD-2279E95CE061}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\qqminidl.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology (Shenzhen) Company Limited) FirewallRules: [{AA368FC9-FC12-4A94-85A5-ACFFEE7B1728}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\QQMiniDLUI.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology (Shenzhen) Company Limited) FirewallRules: [{F586EA98-FA7F-4D0E-8D4F-E351B69121BB}] => (Allow) C:\program files (x86)\common files\tencent\qqminidl\60\QQGameUpUI.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Technology (Shenzhen) Company Limited) FirewallRules: [{D7779925-5517-402C-90C0-D2D31188FC48}] => (Allow) C:\Users\Public\Documents\Tencent\QQGameMicro\IEProc.exe Pas de fichier FirewallRules: [{861B1EFD-D46E-49EB-A299-9F3D7D559D19}] => (Allow) C:\Users\Public\Documents\Tencent\QQGameMicro\QQGameMicro.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{87381413-59BE-4DD0-8BC7-5E44E2E8D605}] => (Allow) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe Pas de fichier FirewallRules: [{7CA52948-B248-4411-9B2E-5FAD924B5616}] => (Allow) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe Pas de fichier FirewallRules: [TCP Query User{088FAF73-A4C7-4892-ABDC-865E6F415B6C}G:\steam\steamapps\common\deathgarden\theexit\binaries\win64\theexit.exe] => (Allow) G:\steam\steamapps\common\deathgarden\theexit\binaries\win64\theexit.exe (Behaviour Interactive Inc -> Behaviour) FirewallRules: [UDP Query User{81E551E0-310C-4364-9A36-54938ABE01D6}G:\steam\steamapps\common\deathgarden\theexit\binaries\win64\theexit.exe] => (Allow) G:\steam\steamapps\common\deathgarden\theexit\binaries\win64\theexit.exe (Behaviour Interactive Inc -> Behaviour) FirewallRules: [TCP Query User{2D0CCF42-1DCA-4BE5-9A0F-37BF9AD4C7F2}C:\users\antonio\appdata\local\blitz\app-1.1.10\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.10\blitz.exe Pas de fichier FirewallRules: [UDP Query User{469ED026-1FF5-4F12-B55B-885E15836467}C:\users\antonio\appdata\local\blitz\app-1.1.10\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.1.10\blitz.exe Pas de fichier FirewallRules: [TCP Query User{B919AA14-66AB-4EE6-AB18-302CB846115C}C:\users\antonio\appdata\local\blitz\app-1.2.0\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.0\blitz.exe Pas de fichier FirewallRules: [UDP Query User{BC128968-D1BE-4FFD-BEF0-2328E9A90218}C:\users\antonio\appdata\local\blitz\app-1.2.0\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.0\blitz.exe Pas de fichier FirewallRules: [TCP Query User{91AFF756-F5A3-4BB5-AFC8-73E421BD2FFB}C:\users\antonio\appdata\local\blitz\app-1.2.1\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.1\blitz.exe Pas de fichier FirewallRules: [UDP Query User{22D8FB85-EA55-4D51-AF1C-66098213B8EF}C:\users\antonio\appdata\local\blitz\app-1.2.1\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.1\blitz.exe Pas de fichier FirewallRules: [{CB214575-9252-417E-A870-5887D1D7F476}] => (Allow) G:\Steam\steamapps\common\Secret Neighbor Alpha\Secret Neighbour.exe () [Fichier non signé] FirewallRules: [{54A435FF-84DB-4498-9DA3-4FC5B267F79B}] => (Allow) G:\Steam\steamapps\common\Secret Neighbor Alpha\Secret Neighbour.exe () [Fichier non signé] FirewallRules: [{9333E001-3579-4A0A-9FD0-FF27A4A0D507}] => (Allow) G:\Steam\steamapps\common\HideOrDie\HideOrDie\Binaries\Win64\HideOrDieClient.exe (VecFour Digital) [Fichier non signé] FirewallRules: [{834025D7-A75F-4C40-9F2F-7B6F42A69801}] => (Allow) G:\Steam\steamapps\common\HideOrDie\HideOrDie\Binaries\Win64\HideOrDieClient.exe (VecFour Digital) [Fichier non signé] FirewallRules: [TCP Query User{EF2020A6-14A5-4A3A-A18C-BE2EF158FE1D}C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [UDP Query User{006D692B-84C4-4962-B8C3-BF3748684D94}C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [{73FBC662-9057-4C6C-BAA3-554755C6F03F}] => (Block) C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [{251CC4E0-851C-4DDC-BBA0-BC7B2B482A2D}] => (Block) C:\users\antonio\appdata\local\blitz\app-1.2.2\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [TCP Query User{20D2E895-0418-474C-8F6F-1F627C42D5D9}E:\bordel\use your words\uyw.exe] => (Allow) E:\bordel\use your words\uyw.exe () [Fichier non signé] FirewallRules: [UDP Query User{1A2C775B-B3D0-439B-8301-0EEC26DC4AA7}E:\bordel\use your words\uyw.exe] => (Allow) E:\bordel\use your words\uyw.exe () [Fichier non signé] FirewallRules: [{EC81EDC2-339C-401C-BFF0-C78220210A44}] => (Block) E:\bordel\use your words\uyw.exe () [Fichier non signé] FirewallRules: [{A821A134-F820-4B3A-93EB-B0794E6DA9A6}] => (Block) E:\bordel\use your words\uyw.exe () [Fichier non signé] FirewallRules: [TCP Query User{3F552C35-4B43-4302-89AE-34968406EA78}G:\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) G:\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [UDP Query User{700739E7-074D-44ED-9695-DA40F188B9A8}G:\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) G:\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{26574DDC-7F01-4BB0-AA71-9BE678C037B0}] => (Block) G:\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{0D3DADFE-D61A-48FE-8A35-E1118C6DF87A}] => (Block) G:\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [TCP Query User{178F9BBD-A930-45B2-9133-2B9F56C106E4}G:\forhonor\forhonor.exe] => (Allow) G:\forhonor\forhonor.exe (Blue Byte GmbH -> Ubisoft) FirewallRules: [UDP Query User{67A29DB8-FF46-4100-9638-21A97FD766E0}G:\forhonor\forhonor.exe] => (Allow) G:\forhonor\forhonor.exe (Blue Byte GmbH -> Ubisoft) FirewallRules: [{7A89B803-B47D-46B3-BCE5-4232013EE167}] => (Allow) G:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé] FirewallRules: [{C76D63DB-4233-4F7F-A4BD-51B6E7DD02EA}] => (Allow) G:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé] FirewallRules: [{4D681C3B-6ABC-4F4A-8A38-4BC605843C02}] => (Allow) G:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé] FirewallRules: [{385EC978-568D-4771-ACB7-F16575B59AE6}] => (Allow) G:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé] FirewallRules: [TCP Query User{81B15276-24DC-4522-A3DA-671B7B8461BB}E:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{704789B8-0548-425C-B45B-2A49E1AFE243}E:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [{C134B38B-84E7-4155-B8B5-79EFF470535C}] => (Block) E:\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [{5B2B2DD8-A75A-47C1-AB68-70635F8B0363}] => (Block) E:\minecraft\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{21D05F49-B23B-42FA-8617-1275F22C81C2}C:\users\antonio\appdata\local\blitz\app-1.2.6\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.6\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [UDP Query User{B66F76EF-2A17-43D8-9F86-01A66301D261}C:\users\antonio\appdata\local\blitz\app-1.2.6\blitz.exe] => (Allow) C:\users\antonio\appdata\local\blitz\app-1.2.6\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [TCP Query User{BFDCBE20-5CC7-434F-AE47-2141FD02F3DB}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{933206D0-714A-4CF1-AE1E-DDADB067E3D7}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{4BE9FB57-F6CB-4B09-9A29-2BA39F43217C}G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{F88544E9-3AB6-4C61-B01F-7353EF554CA7}G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) G:\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé] ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:111.24 GB) (Free:13.33 GB) (12%) ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: VMware Virtual Ethernet Adapter for VMnet1 Description: VMware Virtual Ethernet Adapter for VMnet1 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: VMware Virtual Ethernet Adapter for VMnet8 Description: VMware Virtual Ethernet Adapter for VMnet8 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Microsoft Wi-Fi Direct Virtual Adapter #3 Description: Carte virtuelle Microsoft Wi-Fi Direct Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Microsoft Wi-Fi Direct Virtual Adapter #9 Description: Carte virtuelle Microsoft Wi-Fi Direct Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Intel(R) Ethernet Connection (2) I218-V Description: Intel(R) Ethernet Connection (2) I218-V Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: e1iexpress Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/20/2019 09:28:16 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 14.8.2019.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 1a40 Heure de début : 01d5578d2419f81c Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Users\Antonio\Desktop\FRST64.exe ID de rapport : e433350f-c0fc-4908-8517-9074cef16d03 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (08/20/2019 09:24:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante bad_module_info, version : 0.0.0.0, horodatage : 0x00000000 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000409 Décalage d’erreur : 0x00007fffd2aed188 ID du processus défaillant : 0x3648 Heure de début de l’application défaillante : 0x01d5578a0e8a19b2 Chemin d’accès de l’application défaillante : bad_module_info Chemin d’accès du module défaillant: unknown ID de rapport : a80e72f5-17ad-4fc2-902a-ea90079cd861 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/20/2019 09:20:53 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MOZZARELONCH) Description: httphttp-2147467263 Error: (08/20/2019 09:04:55 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MOZZARELONCH) Description: httphttp-2147467263 Error: (08/20/2019 09:04:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ForHonor.exe, version : 1.0.0.0, horodatage : 0x5d4c4a89 Nom du module défaillant : uplay_aux_r164.dll, version : 94.0.6332.0, horodatage : 0x5d5539ec Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000020d188 ID du processus défaillant : 0x2738 Heure de début de l’application défaillante : 0x01d5578a09b90490 Chemin d’accès de l’application défaillante : G:\ForHonor\ForHonor.exe Chemin d’accès du module défaillant: G:\Ubisoft Game Launcher\uplay_aux_r164.dll ID de rapport : 994b3975-08d7-4397-ae81-988153e516f7 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/20/2019 08:22:13 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MOZZARELONCH) Description: httphttp-2147467263 Error: (08/20/2019 08:21:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ForHonor.exe, version : 1.0.0.0, horodatage : 0x5d4c4a89 Nom du module défaillant : uplay_aux_r164.dll, version : 94.0.6332.0, horodatage : 0x5d5539ec Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000020d188 ID du processus défaillant : 0x3888 Heure de début de l’application défaillante : 0x01d557840fd65662 Chemin d’accès de l’application défaillante : G:\ForHonor\ForHonor.exe Chemin d’accès du module défaillant: G:\Ubisoft Game Launcher\uplay_aux_r164.dll ID de rapport : 7a6abf0c-ed16-47a4-8a7c-cb9355071c3c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/20/2019 07:48:40 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: MOZZARELONCH) Description: httphttp-2147467263 Erreurs système: ============= Error: (08/20/2019 09:27:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service SoftEther VPN Client s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (08/20/2019 09:16:55 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/19/2019 09:31:19 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/19/2019 09:20:05 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/19/2019 09:15:30 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/19/2019 08:55:01 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/18/2019 05:00:02 PM) (Source: DCOM) (EventID: 10016) (User: MOZZARELONCH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID MOZZARELONCH\Antonio de l’utilisateur (S-1-5-21-3211553782-380890847-3588550373-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/18/2019 01:30:49 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2019-08-19 15:18:49.535 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {7694F14E-AE7D-4600-BE53-79604BBA664D} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-08-19 13:21:36.063 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {B7F3D0BA-DA48-496A-8EBB-A3BF7DEE0D1D} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-08-11 15:42:26.816 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Antonio\AppData\Local\Temp\7zE8219BD5C\SI-v1.3-c.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : MOZZARELONCH\Antonio Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.299.1763.0, AS: 1.299.1763.0, NIS: 1.299.1763.0 Version du moteur : AM: 1.1.16200.1, NIS: 1.1.16200.1 Date: 2019-08-11 15:38:29.479 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Antonio\Desktop\SaveEditor\Minecraft.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : MOZZARELONCH\Antonio Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.299.1747.0, AS: 1.299.1747.0, NIS: 1.299.1747.0 Version du moteur : AM: 1.1.16200.1, NIS: 1.1.16200.1 Date: 2019-08-11 15:14:25.764 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Antonio\Desktop\SaveEditor\Minecraft.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : MOZZARELONCH\Antonio Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.299.1747.0, AS: 1.299.1747.0, NIS: 1.299.1747.0 Version du moteur : AM: 1.1.16200.1, NIS: 1.1.16200.1 CodeIntegrity: =================================== Date: 2019-08-20 19:21:38.856 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-20 19:21:38.855 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-20 11:21:38.172 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-20 11:21:38.171 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-19 21:12:40.141 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-19 21:12:40.140 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-19 13:12:39.794 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-08-19 13:12:39.793 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1104 07/16/2014 Motherboard: ASUSTeK COMPUTER INC. MAXIMUS VII RANGER Processeur: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz Pourcentage de mémoire utilisée: 39% Mémoire physique - RAM - totale: 16326.58 MB Mémoire physique - RAM - disponible: 9853.5 MB Mémoire virtuelle totale: 20422.25 MB Mémoire virtuelle disponible: 13063.05 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:111.24 GB) (Free:13.32 GB) NTFS Drive d: (Réservé au système) (Fixed) (Total:0.34 GB) (Free:0.29 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive e: (DD 1.81 TO) (Fixed) (Total:1862.98 GB) (Free:645.98 GB) NTFS Drive g: (Disque principal ) (Fixed) (Total:1862.67 GB) (Free:293.03 GB) NTFS Drive h: (ZOOTROPOLIS) (CDROM) (Total:7.3 GB) (Free:0 GB) UDF \\?\Volume{886e2bb1-5f90-4978-89e8-a207de07c12a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 111.8 GB) (Disk ID: 1D1F21A2) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 6AC6EE23) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1862.7 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Fin de Addition.txt ============================