Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10-11-2019 Exécuté par Lambi (12-11-2019 22:42:36) Exécuté depuis C:\Users\MOI MOI\Desktop Windows 10 Pro Version 1903 18362.476 (X64) (2019-10-06 19:41:33) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3643173227-4069472655-3521800629-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3643173227-4069472655-3521800629-503 - Limited - Disabled) Invité (S-1-5-21-3643173227-4069472655-3521800629-501 - Limited - Disabled) Lambi (S-1-5-21-3643173227-4069472655-3521800629-1001 - Administrator - Enabled) => C:\Users\MOI MOI WDAGUtilityAccount (S-1-5-21-3643173227-4069472655-3521800629-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: ESET Pare-feu (Enabled) {B066057A-E576-007C-D591-56C163D3B33B} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) . . (HKLM\...\{E267C808-4C22-457E-B74B-50EAB4AD9030}) (Version: 7.1 - Intel) Hidden . . . (HKLM-x32\...\{9486AD8F-39F4-470B-92FD-BC423ABAEC43}) (Version: 19.1.4.5 - Intel) Hidden 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated) Adobe Lightroom Classic (HKLM-x32\...\LTRM_8_4_1) (Version: 8.4.1 - Adobe Systems Incorporated) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated) Ankama Launcher 2.10.5 (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\{410fcd79-1be8-5bf1-986e-ea09c55f7edf}) (Version: 2.10.5 - Ankama) AOMEI Partition Assistant Standard Edition 8.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.1.3 - Electronic Arts, Inc.) Application Verifier x64 External Package (HKLM\...\{D9908CED-5ABB-FEE9-FC84-743F4D38637C}) (Version: 10.1.16299.15 - Microsoft) Hidden Citrix Workspace 1812 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 18.12.0.12 - Citrix Systems, Inc.) CLIP STUDIO 1.8.6 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 1.8.6 - CELSYS) CLIP STUDIO PAINT 1.8.8 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 1.8.8 - CELSYS) Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project) Corel AfterShot 3 - ICA x64 (HKLM\...\{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.5 - Corel Corporation) Hidden Corel AfterShot 3 - IPM Content x64 (HKLM\...\{3E064BED-C9D8-4BEF-A2EE-8D67E99C3932}) (Version: 3.4 - Corel Corporation) Hidden Corel AfterShot 3 - IPM x64 (HKLM\...\{5059B47C-4D7B-46E9-9D7A-1E2FCF5DDBED}) (Version: 3.5.0.350 - Corel Corporation) Hidden Corel AfterShot 3 x64 (HKLM\...\{05745FF5-A5C1-4A7B-8236-F3EC4119220F}) (Version: 3.5 - Corel Corporation) Hidden Corel AfterShot 3(64-bit) (HKLM\...\_{FE875B02-11A1-4D1E-B57A-8DE2C00C0B51}) (Version: 3.5.0.350 - Corel Corporation) Corel Painter Essentials 6 - Content (HKLM\...\{56F051E4-C179-425E-9AA8-4B3FBC2F05B7}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - Core (HKLM\...\{FA3FA2BE-94D1-41CA-89BF-29AE2EB61E46}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - CT (HKLM\...\{404B42A1-47EF-44D5-B390-E0CB3F879497}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - DE (HKLM\...\{13CD16A8-0B5E-469D-A8C2-1BD41B58999F}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - EN (HKLM\...\{1B3DFFA0-0CE7-4607-8E55-FB64B8628995}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - FR (HKLM\...\{E39BC105-2204-4BA8-BB9F-D08E5BDD1493}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - IPM (HKLM\...\{B1AA1DD1-FC10-499C-B802-6C9558CBBC1A}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - IPM Content (HKLM\...\{68FC3BC5-C3AA-4B36-86F7-D4ED105E1D7B}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 - JP (HKLM\...\{9BAC9F81-DE28-450F-B0F8-C319D08C2A6A}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Essentials 6 (HKLM\...\_{0EDEDA40-4B3A-46D0-A0D8-0FE8834390DE}) (Version: 6.1.0.238 - Corel Corpopration) Corel Painter Essentials 6 (HKLM\...\{D5ACBF88-A251-4E63-8DFE-1EF7491D601E}) (Version: 6.1 - Corel Corporation) Hidden Corel Painter Thumbnail Previewer (HKLM\...\{50139369-99B2-496A-8726-D3DC5D6D4235}) (Version: 18.0 - Corel Corporation) Corel Update Manager (HKLM\...\{5039B7BE-F79B-4121-A9D3-D66ED4169414}) (Version: 2.10.442 - Corel corporation) Hidden Corel Update Manager (HKLM\...\{B6C0FB43-0C9B-46E6-93E4-DF171ED80C53}) (Version: 2.10.442 - Corel corporation) Hidden Discord (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.71 - NVIDIA Corporation) Hidden Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.) ESET Security (HKLM\...\{F1544F11-BFCC-43CC-9D0C-169A7E99369E}) (Version: 13.0.22.0 - ESET, spol. s r.o.) FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.) Git Extensions 3.2.1.6628 (HKLM-x32\...\{14E428D0-BCA6-4FA1-9920-6512B9D661C8}) (Version: 3.2.1.6628 - Git Extensions Team) Git version 2.23.0.windows.1 (HKLM\...\Git_is1) (Version: 2.23.0.windows.1 - The Git Development Community) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden ICA (HKLM\...\{0EDEDA40-4B3A-46D0-A0D8-0FE8834390DE}) (Version: 6.1 - Corel Corpopration) Hidden Intel(R) Computing Improvement Program (HKLM\...\{D40D4164-EEDB-4F0F-85C6-2058A9E34CC7}) (Version: 2.4.04370 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000110-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.110.0.3 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{b0134461-205a-4d62-bbdc-1fcabdd02645}) (Version: 19.1.4.5 - Intel) IntelliJ IDEA Community Edition 2019.2.2 (HKLM-x32\...\IntelliJ IDEA Community Edition 2019.2.2) (Version: 192.6603.28 - JetBrains s.r.o.) Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation) Java SE Development Kit 8 Update 66 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180660}) (Version: 8.0.660.17 - Oracle Corporation) JetBrains dotCover 2018.3.1 (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\{d6c6b27d-71fa-5528-91a5-1e49334147c2}) (Version: 2018.3.1 - JetBrains s.r.o.) JetBrains ReSharper Ultimate in Visual Studio Community 2017 (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\{78f833a7-823a-5838-834b-325480661857}) (Version: 2018.3.1 - JetBrains s.r.o.) KDiff3 (remove only) (HKLM-x32\...\KDiff3) (Version: - ) Kits Configuration Installer (HKLM-x32\...\{86E59C8F-61D5-1782-A3CE-60AE7E4D7791}) (Version: 10.1.16299.15 - Microsoft) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Legends of Runeterra (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\Riot Game bacon.live) (Version: - Riot Games, Inc) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{6aa2484c-1a35-428e-a857-8ee0a874d2d1}) (Version: 20.110.0 - Intel Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.12130.20272 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27024 (HKLM-x32\...\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}) (Version: 14.16.27024.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27024 (HKLM-x32\...\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}) (Version: 14.16.27024.1 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1095.110 - Microsoft Corporation) Mises à jour NVIDIA 34.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 34.0.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 66.0.3 (x64 fr) (HKLM\...\Mozilla Firefox 66.0.3 (x64 fr)) (Version: 66.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0.2 - Mozilla) MSI Development Tools (HKLM-x32\...\{973CACA2-E018-065B-0580-F2784802E299}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden MTG Arena (HKLM-x32\...\{F62E5477-A813-448F-AD6C-34FB7C31E360}) (Version: 0.1.1810 - Wizards of the Coast) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 417.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 417.71 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation) NVIDIA Pilote graphique 417.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 417.71 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.12130.20272 - Microsoft Corporation) Hidden Online Plug-in (HKLM-x32\...\{95EFB196-E3F8-4260-B373-C89CB1357617}) (Version: 18.12.0.12 - Citrix Systems, Inc.) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.52.32372 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.137.0.14 - Overwolf Ltd.) Pack de ciblage redirigé de la documentation Microsoft .NET Framework 4.7.1 (Français) (HKLM-x32\...\{F53864DE-B8A4-4049-9CF8-9764013AC419}) (Version: 4.7.02558 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 417.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 417.71 - NVIDIA Corporation) Hidden PBE (HKLM-x32\...\PBE 1.0) (Version: 1.0 - Riot Games, Inc) Porofessor.gg (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.1.9 - Overwolf app) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.) SDK ARM Additions (HKLM-x32\...\{7922BB77-0B59-840A-AC80-D560A34D75C5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{C87DF65C-A672-7E08-A083-E7D48FE8DB70}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Self-Service Plug-in (HKLM-x32\...\{02F73C0C-8D51-4E64-BD11-16EB0DD19776}) (Version: 18.12.0.3 - Citrix Systems, Inc.) Hidden SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Tablette Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.34-3 - Wacom Technology Corp.) TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.18533 - TeamViewer) Unity (HKLM-x32\...\Unity) (Version: 2018.3.3f1 - Unity Technologies ApS) Universal CRT Extension SDK (HKLM-x32\...\{A5FA2886-1925-133F-0D41-B9A8ECEA0A2D}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{B739B4C5-EEEC-8E70-0276-38C4779AF398}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{A9D6F52C-694E-3E41-7AB8-5BEB644742A5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{E053089E-7953-3219-814F-F485FC151C54}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{B9424F08-0617-C4F6-A798-5A9250C1A738}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{D261CEA1-AB8D-9CFA-4407-BCEFC78661AC}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{DE494F7A-5E42-4B52-8E06-EF9AAC4BD59D}) (Version: 14.16.27012 - Microsoft Corporation) Hidden Visual Studio Community 2017 (HKLM-x32\...\74ff781b) (Version: 15.9.28307.344 - Microsoft Corporation) VS Script Debugging Common (HKLM\...\{8B657335-3813-4CF4-A6FE-2AA44BE23F94}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden vs_communitymsi (HKLM-x32\...\{71797C29-380A-492C-B35A-F5E4A7B57BDC}) (Version: 15.9.28307 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{1A7B945D-ACF2-447F-AF55-A9351F2A70AB}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{A254DA0E-26A1-43C3-95BE-7A24D5599473}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{1F42A73E-CF26-4D67-BA79-752CA56B639F}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{3A78DA3D-C8D4-429D-B536-6E59A0088451}) (Version: 15.8.27825 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{853FD6F3-0BC9-414A-986B-90EF538DBAA1}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0-2) (Version: 1.1.70.0 - LunarG, Inc.) Hidden Winamax Installer (HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\Winamax Installer 2.3.9.1545297276) (Version: 2.3.9.1545297276 - Winamax) WinAppDeploy (HKLM-x32\...\{9690D51C-4435-1C20-7819-66CCAB0F03F9}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation) WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{385A1387-A488-9E90-3635-086129610034}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{D7DD3171-DA58-52A1-95B2-4769640855AF}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7336279F-8F8F-5530-A543-3BE963846C0A}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E414A474-0A87-4F66-C409-A4D9857CFD34}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{CE760B86-975B-F514-5673-0ED4332B801B}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{5E67F8BE-D8D2-257F-CE19-419A2D5125C7}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{A2AA063E-AF50-A1F5-8925-A06EB1556644}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{7D4C7F4A-02A9-E434-6451-C8787DF28C1F}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{BC467065-9374-5345-DA3F-FCF073304A25}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-09-22] (Adobe Systems Incorporated) Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20368.0_x64__8wekyb3d8bbwe [2019-11-06] (Microsoft Corporation) [MS Ad] Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.4.2070.0_x64__rz1tebttyb220 [2019-09-17] (Dolby Laboratories) Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-22] (Fitbit) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-03] (Microsoft Corporation) [MS Ad] Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-17] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-11] (Microsoft Studios) [MS Ad] MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-17] (Microsoft Corporation) [MS Ad] MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-25] (Netflix, Inc.) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-25] (Thumbmunkeys Ltd) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3643173227-4069472655-3521800629-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-C4BCA9FECCF0} -> [Creative Cloud Files] => C:\Users\MOI MOI\Creative Cloud Files [2019-01-31 23:17] CustomCLSID: HKU\S-1-5-21-3643173227-4069472655-3521800629-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers1-x32: [diff-ext-for-kdiff3] -> {9F8528E4-AB20-456E-84E5-3CE69D8720F3} => C:\Program Files\KDiff3\diff_ext_for_kdiff3.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers1: [diff-ext-for-kdiff3-64] -> {34471FFB-4002-438b-8952-E4588D0C0FE9} => C:\Program Files\KDiff3\diff_ext_for_kdiff3_64.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-25] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [GitExtensions2] -> {3C16B20A-BA16-4156-916F-0A375ECFFE24} => C:\Program Files (x86)\GitExtensions\GitExtensionsShellEx64.dll [2019-09-13] () [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-25] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4-x32: [diff-ext-for-kdiff3] -> {9F8528E4-AB20-456E-84E5-3CE69D8720F3} => C:\Program Files\KDiff3\diff_ext_for_kdiff3.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers4: [diff-ext-for-kdiff3-64] -> {34471FFB-4002-438b-8952-E4588D0C0FE9} => C:\Program Files\KDiff3\diff_ext_for_kdiff3_64.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers4: [GitExtensions2] -> {3C16B20A-BA16-4156-916F-0A375ECFFE24} => C:\Program Files (x86)\GitExtensions\GitExtensionsShellEx64.dll [2019-09-13] () [Fichier non signé] ContextMenuHandlers5: [GitExtensions2] -> {3C16B20A-BA16-4156-916F-0A375ECFFE24} => C:\Program Files (x86)\GitExtensions\GitExtensionsShellEx64.dll [2019-09-13] () [Fichier non signé] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_b5d4c82c67b39358\igfxDTCM.dll [2018-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers6-x32: [diff-ext-for-kdiff3] -> {9F8528E4-AB20-456E-84E5-3CE69D8720F3} => C:\Program Files\KDiff3\diff_ext_for_kdiff3.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers6: [diff-ext-for-kdiff3-64] -> {34471FFB-4002-438b-8952-E4588D0C0FE9} => C:\Program Files\KDiff3\diff_ext_for_kdiff3_64.dll [2012-08-05] () [Fichier non signé] ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-10-25] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\MOI MOI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Citrix Workspace.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=haiffjcadagjlijoggckpgfnoeiflnem ==================== Modules chargés (Avec liste blanche) ============= 2019-09-13 11:10 - 2019-09-13 11:10 - 000566784 _____ () [Fichier non signé] C:\Program Files (x86)\GitExtensions\GitExtensionsShellEx64.dll 2017-09-28 18:41 - 2017-09-28 18:41 - 000266240 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL 2018-12-19 19:01 - 2018-12-19 19:01 - 001878528 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll 2019-03-07 18:52 - 2019-06-11 07:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2019-03-07 18:52 - 2019-06-11 07:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2019-03-07 18:52 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2019-11-03 00:42 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2019-11-03 00:42 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2019-11-03 00:42 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2019-11-03 00:42 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2019-11-03 00:42 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer sites de confiance/sensibles ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-12-20 16:18 - 2018-12-20 16:18 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\GitExtensions\;C:\Program Files\Git\cmd;C:\Program Files\apache-maven-3.6.2\bin;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\MOI MOI\Pictures\Banner_Ask_Riot-2_8uz8q9jyjyf3w5yrd5ks.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "DSATray" HKLM\...\StartupApproved\Run32: => "ConnectionCenter" HKLM\...\StartupApproved\Run32: => "Redirector" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3643173227-4069472655-3521800629-1001\...\StartupApproved\Run: => "Overwolf" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{77EB35F9-8DCC-4C5C-8FE6-BFF0A3A38D39}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{790107EA-AC76-46B3-9E91-3A7167D1AB86}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{04B39219-537F-4838-8210-EF56E40EEBD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [{872265B9-A0DB-48F9-A609-5914CC765B40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> ) FirewallRules: [{E29AF076-9D6F-4EC1-AA8F-9B1BF20D1E39}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{61ABDB47-8D75-4F8A-A916-026089877ADD}] => (Allow) C:\Riot Games\PBE\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{D2192FE1-84E0-4023-B7AA-D276B0AD7950}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [{024B5F5A-0A7A-4018-818D-33FAE005BBAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> ) FirewallRules: [{EE0F0E1E-02F0-42D1-862B-0D043188AA13}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{11330651-BBDC-4B17-99D0-E754692647CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{732DFF45-1B3E-4BBD-B27F-59937AAB6A67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeTheRevolution\We.TheRevolution_x86_64.exe () [Fichier non signé] FirewallRules: [{B407B665-FB5A-43B9-937F-2C2A988EB914}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WeTheRevolution\We.TheRevolution_x86_64.exe () [Fichier non signé] FirewallRules: [{8852FBFF-E8E1-4DA0-8013-FB6457AFEEF0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{F8856F9B-FF5E-4CB7-94A5-621E7C5B7F4A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{12FF25D5-7BD2-4FCB-89E3-A98FD897DFCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (Larian Studios) [Fichier non signé] FirewallRules: [{A68DA520-33BB-46B9-8FEB-D16510DF84A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (Larian Studios) [Fichier non signé] FirewallRules: [{1DEB01C6-C0BC-427B-8623-C12322AFB8AF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{8588B9E7-1F55-45BD-BD32-405DEEC01451}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{7B784A8D-DD5A-42F5-9C02-923E1E1E0DE9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{49F7D063-8756-4C74-B8AE-522877D6FB89}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{616A4CDC-BCC7-4EF3-A8CA-AE9F98D2C003}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{6E75FECC-AE01-4C71-9D6C-87DCACCE71D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{4173EA2C-5D60-4442-BCD2-4A97BD5D65C5}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{6005EAB1-D943-44C0-8DF1-2A3ED0015C5E}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{4CD0A5B4-99C6-4C76-8C27-756F931BDD51}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{9E99A115-0E55-4911-B0D4-875AD394C181}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{66ED1132-3B56-414D-88A1-62564A215E2A}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom Classic CC\Lightroom.exe Pas de fichier FirewallRules: [{0321A323-889D-49BB-8268-58B6414140DE}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom Classic CC\Lightroom.exe Pas de fichier FirewallRules: [{8DF8DC98-1F72-46BF-B485-18F7BF679010}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom Classic CC\Lightroom.exe Pas de fichier FirewallRules: [{75653EFF-569B-47A1-8AD7-A198460C559E}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom Classic CC\Lightroom.exe Pas de fichier FirewallRules: [{7D3F3F8D-FC80-423F-997A-A058AA8EE2FA}] => (Block) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS) FirewallRules: [{5521C321-8AB7-4A78-94F8-EECED7B23100}] => (Allow) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS) FirewallRules: [{A944E043-FC69-44B7-80D4-9FA5BDB5E4FD}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{9131A52A-E14D-491C-AFA7-E4BF498EEB35}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{5525EDA9-7604-43EA-AA6A-2AE677AD13E8}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{1144AEB2-8F13-4DFC-96D6-219FA4796AFD}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{8707B2BB-ECAD-4EA2-BFF6-15A62B134C13}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{2BB5F142-5997-4727-B646-1813DCF9F27B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0C2B737E-8DAD-43AC-8887-409C95AD4436}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FA83585B-8A38-43F6-9622-15E201D0A059}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FA2B1B8C-902C-4CDF-8CB7-81B9ADF50FA5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B58CE312-CAD5-418A-AC99-03852653C840}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C82E0376-63E1-4002-AA7A-5F08AF96933C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> ) FirewallRules: [{AE8CB6D4-3363-4D12-984D-E3EF3C34861E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{71F73ABD-6ECD-4607-9642-A49D725B33A1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{F14AA874-4641-4720-9193-D6CD9598C632}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{77F371FA-9720-4B9D-9A9F-5D64ABF650FA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3D7A3060-FF43-42DE-B5F0-0E163470676E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{C77222E5-A410-4ADB-B035-04A711B31087}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{C95E345C-F10C-4109-9604-EB35868AFAB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Fichier non signé] FirewallRules: [{DB1846D8-23FA-4BBD-BE67-A799EBBADF2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Fichier non signé] FirewallRules: [TCP Query User{3CA403EB-643C-4623-8525-652BB062CBDA}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{074760E9-F516-4C40-B81A-547940005645}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [{95E66CAF-13EF-49CF-945A-890ACFAAC104}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B9AA269D-0B81-413E-9525-962B36685A84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) FirewallRules: [{C0FCC8A3-7FBB-42EB-A3DF-FEB0974791AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) ==================== Points de restauration ========================= 23-10-2019 22:59:02 Windows Update 02-11-2019 11:59:30 Point de contrôle planifié 08-11-2019 05:46:37 Programme d’installation pour les modules Windows 12-11-2019 00:57:15 ZHPcleaner ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/12/2019 10:39:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RAVBg64.exe, version : 1.0.0.295, horodatage : 0x5bc04e16 Nom du module défaillant : RAVBg64.exe, version : 1.0.0.295, horodatage : 0x5bc04e16 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000042dff ID du processus défaillant : 0x2c2c Heure de début de l’application défaillante : 0x01d599a1b958ff2d Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Chemin d’accès du module défaillant: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ID de rapport : 1d43f84e-fa5e-4004-9d22-c0c8fac94c48 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/12/2019 10:39:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Wacom_Tablet.exe, version : 6.3.34.3, horodatage : 0x5cd5d858 Nom du module défaillant : Wacom_Tablet.exe, version : 6.3.34.3, horodatage : 0x5cd5d858 Code d’exception : 0xc000041d Décalage d’erreur : 0x00000000004f37bd ID du processus défaillant : 0x1d40 Heure de début de l’application défaillante : 0x01d599a1ab0eab9f Chemin d’accès de l’application défaillante : C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe Chemin d’accès du module défaillant: C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe ID de rapport : 93a6cc87-176e-43c4-b9c7-2748b9f77688 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/12/2019 10:39:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Wacom_Tablet.exe, version : 6.3.34.3, horodatage : 0x5cd5d858 Nom du module défaillant : Wacom_Tablet.exe, version : 6.3.34.3, horodatage : 0x5cd5d858 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000004f37bd ID du processus défaillant : 0x1d40 Heure de début de l’application défaillante : 0x01d599a1ab0eab9f Chemin d’accès de l’application défaillante : C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe Chemin d’accès du module défaillant: C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe ID de rapport : 5ba71819-7301-462d-8133-0b6d684aab75 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/12/2019 10:24:26 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (11288,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/12/2019 10:17:52 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (6444,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (11/12/2019 10:12:46 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAMBI-DESKTOP) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code de statut. Error: (11/12/2019 10:09:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RAVBg64.exe, version : 1.0.0.295, horodatage : 0x5bc04e16 Nom du module défaillant : RAVBg64.exe, version : 1.0.0.295, horodatage : 0x5bc04e16 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000042dff ID du processus défaillant : 0x2e04 Heure de début de l’application défaillante : 0x01d5999d6b25dc0d Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Chemin d’accès du module défaillant: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe ID de rapport : ded3b9f8-f3b2-4334-965d-365adfd4a32b Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/12/2019 10:08:45 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Windows\System32\svchost.exe, PID : 4156, PID ProfSvc : 1988. Erreurs système: ============= Error: (11/12/2019 10:39:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\IntelWifiIhv08.dll Error: (11/12/2019 10:39:12 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\IntelWifiIhv08.dll Error: (11/12/2019 10:39:11 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\IntelWifiIhv08.dll Error: (11/12/2019 10:38:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (11/12/2019 10:38:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Dolby DAX2 API Service s’est terminé de façon inattendue pour la 1ème fois. Error: (11/12/2019 10:38:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Energy Server Service queencreek s’est terminé de façon inattendue pour la 1ème fois. Error: (11/12/2019 10:38:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Content Protection HECI Service s’est terminé de façon inattendue pour la 1ème fois. Error: (11/12/2019 10:38:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Wacom Professional Service s’est terminé de façon inattendue pour la 1ème fois. Windows Defender: =================================== Date: 2019-11-12 00:26:47.185 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {28291616-54BD-4CE9-8AA3-FE8EBBB105D5} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : LAMBI-DESKTOP\Lambi Date: 2019-10-12 12:21:13.082 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {C3F9F993-B709-4674-8A5C-B21A58CA5E85} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-10-12 12:08:36.607 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {CA95C345-F708-4BB9-92F0-DD51C79A7580} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-10-11 09:01:29.973 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {97586F2D-F85C-4C18-A621-9875A394D8E4} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-10-10 10:42:00.834 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {E6B5C8D9-BAE5-4A5F-98D9-4B6608E84684} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système CodeIntegrity: =================================== Date: 2019-11-12 22:41:42.687 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:42.682 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:42.674 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:37.051 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:37.047 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:34.046 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:34.044 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. Date: 2019-11-12 22:41:34.037 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: Insyde Corp. V1.19 07/13/2018 Carte mère: CFL Freed_CFS Processeur: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz Pourcentage de mémoire utilisée: 23% Mémoire physique - RAM - totale: 16226.3 MB Mémoire physique - RAM - disponible: 12381.59 MB Mémoire virtuelle totale: 20834.3 MB Mémoire virtuelle disponible: 15977.88 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:464.68 GB) (Free:161.02 GB) NTFS Drive d: () (Fixed) (Total:931.51 GB) (Free:930.7 GB) NTFS \\?\Volume{a6530c44-da99-48dc-bd2f-ece1e7582e48}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS \\?\Volume{f0f0a006-6130-4b0f-b591-d98b2d3dc66e}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS \\?\Volume{85f9f946-61dd-4cbd-948f-d55bf8be110d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 496B9619) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 04A99952) Partition: GPT. ==================== Fin de Addition.txt =======================