Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-08-2020 Exécuté par KardïnaL (29-08-2020 03:32:49) Exécuté depuis C:\Users\KardïnaL\Downloads Windows 10 Pro Version 2004 19041.450 (X64) (2020-08-11 06:26:17) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-840098930-2013849500-1567866472-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-840098930-2013849500-1567866472-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-840098930-2013849500-1567866472-1002 - Limited - Enabled) Invité (S-1-5-21-840098930-2013849500-1567866472-501 - Limited - Disabled) KardïnaL (S-1-5-21-840098930-2013849500-1567866472-1000 - Administrator - Enabled) => C:\Users\KardïnaL nespo (S-1-5-21-840098930-2013849500-1567866472-1003 - Administrator - Enabled) => C:\Users\nespo WDAGUtilityAccount (S-1-5-21-840098930-2013849500-1567866472-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: ESET Pare-feu (Enabled) {B066057A-E576-007C-D591-56C163D3B33B} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.414 - Adobe) Adobe InDesign 2019 (HKLM-x32\...\IDSN_14_0_3) (Version: 14.0.3 - Adobe Systems Incorporated) AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.61.1 - Asmedia Technology) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23072 - Microsoft Corporation) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform) CPUID CPU-Z MSI 1.91 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.91 - CPUID, Inc.) CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd) Destroy All Humans! (HKLM-x32\...\Destroy All Humans!_is1) (Version: - ) Detroit: Become Human (HKLM-x32\...\Detroit: Become Human_is1) (Version: - ) Discord (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Discord) (Version: 0.0.306 - Discord Inc.) Empyrion: Galactic Survival (HKLM-x32\...\Empyrion: Galactic Survival_is1) (Version: - ) Epic Games Launcher (HKLM-x32\...\{B937FE60-4887-4C53-8C57-8821CBA819FD}) (Version: 1.1.279.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden ESET Security (HKLM\...\{6F667D95-17DE-4792-AD86-082003C148E8}) (Version: 13.2.18.0 - ESET, spol. s r.o.) FIFA 20 (HKLM-x32\...\{9EC414D8-8C49-4310-BCC7-C72AB0776F4C}) (Version: 1.0.66.8249 - Electronic Arts) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Futuremark SystemInfo (HKLM-x32\...\{A93C08EF-FEB5-49B0-BA5C-2149018683B5}) (Version: 5.26.809.0 - Futuremark) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) House Flipper (HKLM-x32\...\{AACCA4A0-83E0-4E06-A18E-8CF24C4DEF37}_is1) (Version: 1.20134.0.0 - Empyrean) Intel(R) Computing Improvement Program (HKLM\...\{A9133872-C9FE-45CC-8F01-D1947B0F09EA}) (Version: 2.4.04755 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1950.14.0.1443 - Intel Corporation) Intel(R) Network Connections 25.2.0.0 (HKLM\...\PROSetDX) (Version: 25.2.0.0 - Intel) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1633.3 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.58.48.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2391a86e-5ab5-40d2-a274-1867cd576686}) (Version: 1.58.48.0 - Intel Corporation) Hidden Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) LED Sync (HKLM-x32\...\{3EF99290-BC31-4E90-89E2-B0E44D85C11C}) (Version: 1.0.9 - EVGA) Legends of Runeterra (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Riot Game bacon.live) (Version: - Riot Games, Inc) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Logitech - Assistant pour jeux vidéo 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.63 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{4549ceb8-695a-42eb-a183-4820d542a15f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mozilla Firefox 79.0 (x64 fr) (HKLM\...\Mozilla Firefox 79.0 (x64 fr)) (Version: 79.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.3 - Mozilla) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.56 - MSI) MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation) NVIDIA Pilote graphique 446.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 446.14 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenCL™ runtime for Intel® Core™ and Xeon® Processors (HKLM\...\{1F6CF248-9A18-4740-BD09-281DBC8A2051}) (Version: 6.4.0.25 - Intel Corporation) OpenIV (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\OpenIV) (Version: 3.0.1006 - .black/OpenIV Team) Origin (HKLM-x32\...\Origin) (Version: 10.5.82.43225 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.153.0.13 - Overwolf Ltd.) Panneau de configuration NVIDIA 446.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 446.14 - NVIDIA Corporation) Hidden Paradox Launcher v2 (HKLM\...\{986898D9-7C26-4E7F-814C-9B5472FA3209}) (Version: 2.0.0.0 - Paradox Interactive) PC Building Simulator (HKLM-x32\...\{180E885F-2493-438E-B95A-7E17EB02B4AB}_is1) (Version: 1.0.0.0 - The Irregular Corporation) Porofessor.gg (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.5.30 - Overwolf app) Prison Architect Cleared for Transfer (HKLM-x32\...\Prison Architect Cleared for Transfer_is1) (Version: - ) qBittorrent 4.2.4 (HKLM-x32\...\qBittorrent) (Version: 4.2.4 - The qBittorrent project) Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 9.9.8.1244 - Razer Inc.) Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.5.0831.082315 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8703.1 - Realtek Semiconductor Corp.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.26.268 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.1 - Rockstar Games) Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.1.0.170 - Samsung Electronics) Samsung NVM Express Driver (HKLM-x32\...\{ff94c273-58d5-40b5-b03a-9bd41d5cff1e}) (Version: 3.3.0.2003 - Samsung Electronics) Samsung NVM Express Driver 3.3.0.2003 (HKLM\...\{89D55DD5-FE94-497B-B5E5-91915D52DBF2}) (Version: 3.3.0.2003 - Samsung Electronics Co., Ltd) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.26.0 - Samsung Electronics Co., Ltd.) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) VALORANT (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Valorant Tracker (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\Overwolf_ipmlnnogholfmdmenfijjifldcpjoecappfccceh) (Version: 0.8.10 - Overwolf app) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN) WeMod (HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\WeMod) (Version: 6.3.10 - WeMod) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-09] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Napster -> C:\Program Files\WindowsApps\RhapsodyInternationalInc.Napster_1.11.0.0_x64__zddp1e08a7b6t [2020-01-03] (Rhapsody International Inc) Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-27] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-03-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-27] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-03-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-05-16] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-27] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé] HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-17] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-17] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Modules chargés (Avec liste blanche) ============= 2020-08-01 03:19 - 2020-08-01 03:19 - 098275328 _____ () [Fichier non signé] N:\JEUXX\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll 2020-08-01 03:19 - 2020-08-01 03:19 - 000092672 _____ () [Fichier non signé] N:\JEUXX\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll 2020-08-01 03:19 - 2020-08-01 03:19 - 003922432 _____ () [Fichier non signé] N:\JEUXX\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll 2020-01-03 00:27 - 2020-01-03 00:27 - 023858176 _____ (Rhapsody International Inc.) [Fichier non signé] C:\Program Files\WindowsApps\RhapsodyInternationalInc.Napster_1.11.0.0_x64__zddp1e08a7b6t\Napster.dll 2020-01-03 00:27 - 2020-01-03 00:27 - 001530368 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\WindowsApps\RhapsodyInternationalInc.Napster_1.11.0.0_x64__zddp1e08a7b6t\sqlite3.dll 2020-08-01 03:19 - 2020-08-01 03:19 - 000547840 _____ (The Chromium Authors) [Fichier non signé] N:\JEUXX\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll 2018-04-06 20:29 - 2018-04-06 20:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll 2018-04-06 20:29 - 2018-04-06 20:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Logitech Gaming Software\ssleay32.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] N:\JEUXX\Origin\LIBEAY32.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] N:\JEUXX\Origin\ssleay32.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\platforms\qwindows.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5Core.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5Gui.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5Network.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5WebSockets.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5Widgets.dll 2020-08-26 04:49 - 2020-05-27 03:20 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] N:\JEUXX\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [490] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer sites de confiance/sensibles ========== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\localhost -> localhost ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2020-03-17 12:44 - 2020-08-10 01:14 - 000000747 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 109.94.209.70 fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 fitgirl-repack.com # Fake FitGirl site 109.94.209.70 fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;c:\program files (x86)\razer chroma sdk\bin;c:\program files\razer chroma sdk\bin;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\KardïnaL\AppData\Local\Microsoft\WindowsApps;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-840098930-2013849500-1567866472-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\KardïnaL\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\424242f77073ab89d1371f2a47454ede.jpg DNS Servers: 89.2.0.1 - 89.2.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER MSCONFIG\startupreg: MSIRegister => "C:\MSI\MSIRegister\MSIRegister.exe" HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "RZSurroundHelper" HKLM\...\StartupApproved\Run: => "Live Update" HKLM\...\StartupApproved\Run32: => "MSI Gaming Lan Manager" HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "RazerCortex" HKU\S-1-5-21-840098930-2013849500-1567866472-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{3CD20EFC-6D94-4F30-81A2-2D469F520B6D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9F2C0647-F58F-4D59-9D99-7825C6BCA295}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{ECC9F325-0007-4C5D-8F84-8CCC00802B26}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{23816F39-B662-4DF1-949A-A8979D9BB6BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{3217D198-4932-44E1-888C-629547972E30}C:\users\kardïnal\appdata\local\temp\rar$exa0.544\outer.wilds.v1.0.7\outerwilds.exe] => (Allow) C:\users\kardïnal\appdata\local\temp\rar$exa0.544\outer.wilds.v1.0.7\outerwilds.exe => Pas de fichier FirewallRules: [TCP Query User{33FA824C-9809-42A2-B894-B08835E96314}C:\users\kardïnal\appdata\local\temp\rar$exa0.544\outer.wilds.v1.0.7\outerwilds.exe] => (Allow) C:\users\kardïnal\appdata\local\temp\rar$exa0.544\outer.wilds.v1.0.7\outerwilds.exe => Pas de fichier FirewallRules: [UDP Query User{8DF15CB4-07D9-4218-8AA4-B81BC3AA6785}N:\jeuxx\thestanleyparable\stanley.exe] => (Allow) N:\jeuxx\thestanleyparable\stanley.exe () [Fichier non signé] FirewallRules: [TCP Query User{BBBF6B3D-E567-4518-8379-1DA1E19A61DF}N:\jeuxx\thestanleyparable\stanley.exe] => (Allow) N:\jeuxx\thestanleyparable\stanley.exe () [Fichier non signé] FirewallRules: [UDP Query User{66BF2BF2-AF31-4856-AC1B-FBCB33EECE10}N:\jeuxx\theescapists2\theescapists2.exe] => (Allow) N:\jeuxx\theescapists2\theescapists2.exe => Pas de fichier FirewallRules: [TCP Query User{48A24338-FB4F-44DD-9793-C24D85FD1369}N:\jeuxx\theescapists2\theescapists2.exe] => (Allow) N:\jeuxx\theescapists2\theescapists2.exe => Pas de fichier FirewallRules: [UDP Query User{7A6564BA-20D5-4C03-94E3-C43D7FEB65BD}D:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) D:\program files (x86)\qbittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [TCP Query User{4950A7F0-5072-4073-87DC-7E7B2FFF04D9}D:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) D:\program files (x86)\qbittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [UDP Query User{8F964A39-860C-498E-AE84-46619E5D776A}D:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{999DD59C-3C0A-486A-80F2-E37DFA51A87F}D:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\games\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [{A85C523B-0794-4B51-A264-A993CDE5CE23}] => (Allow) D:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [{E7D99762-B206-4E39-AC0F-71B9EC89F4F3}] => (Allow) D:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [UDP Query User{10366EB9-0295-466B-821B-A605AC2A5D1C}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [TCP Query User{8486C19A-93E3-4A38-B800-F385D9E65522}D:\games\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [{E06FACD1-9516-4A1B-AD95-6A443AC391C2}] => (Allow) N:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{09489278-1667-4DBC-995E-99F6AD644A24}] => (Allow) N:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{3BD6E172-C89E-4C77-822D-14D173D19466}] => (Allow) N:\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{8A4F2869-80DC-4EFC-94EE-89B821CD6D31}] => (Allow) N:\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{5323699E-4BD2-491E-9EA2-35576B7B3FB2}N:\jeuxx\battle.net\battle.net.exe] => (Allow) N:\jeuxx\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{17513F8E-17D1-440F-8F2E-026D9566DA72}N:\jeuxx\battle.net\battle.net.exe] => (Allow) N:\jeuxx\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{FA65DC0E-8AC2-4FC0-BEEC-F84E64155710}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{CB837B46-6ACA-4A21-A2C2-34EF402ED9A3}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{39C71ECD-C1B0-4B73-B605-94EEA91BBDCB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{E4CAE46A-472D-4545-A903-D9532FF2266F}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{BF6DAF9B-26FB-498C-9090-772E3F0485C5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E96802B5-2F4A-47CD-807B-1F556D3729EA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2BB5FD88-A225-45EF-BE69-FD1FFF2815EB}] => (Allow) LPort=26789 FirewallRules: [TCP Query User{56D34FEB-714E-490C-B7E8-253B4EFB0BEA}N:\jeuxx\origin\fifa 20\fifa20.exe] => (Allow) N:\jeuxx\origin\fifa 20\fifa20.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [UDP Query User{E739516C-0F7E-48AC-B39B-B0044927DF7F}N:\jeuxx\origin\fifa 20\fifa20.exe] => (Allow) N:\jeuxx\origin\fifa 20\fifa20.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{F45EF874-4694-4D1B-9B63-414F863973CC}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{17FC8572-EAC8-4BDC-B3D4-2CD6DB261613}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{79D41734-C2F4-47F9-BF5A-422B714D0BFC}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{15678D75-A975-4851-8C0A-F6624104A758}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{643F608E-7A34-42EA-BCC2-97BD79477578}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{8A33C204-4730-48F9-99AD-77BE5854A824}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{5279AAE5-AF14-4228-B73D-B6CEEFA54D8B}] => (Allow) C:\Program Files (x86)\Overwolf\0.153.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{9D3B9B39-C3A8-46C5-B71B-94E05A25162C}] => (Allow) C:\Program Files (x86)\Overwolf\0.153.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{68CFB955-AF02-4A06-A1DB-406732486BBF}] => (Block) C:\Program Files (x86)\Overwolf\0.153.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{F711989B-74D5-47C6-9782-FB6CF670C2CF}] => (Block) C:\Program Files (x86)\Overwolf\0.153.0.13\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{3FE745C4-7EDC-422E-BB2E-04C5DBFFD8B3}] => (Allow) N:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Fichier non signé] FirewallRules: [{83EEF821-2BDF-4B23-9EE2-6A934D0F6323}] => (Allow) N:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Fichier non signé] FirewallRules: [{27290691-E2ED-4669-8D68-3A567C3B7200}] => (Allow) N:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => Pas de fichier FirewallRules: [{EA782121-3B88-475F-BD17-D02BE75BE3B5}] => (Allow) N:\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => Pas de fichier FirewallRules: [{618F0684-0FCF-45FA-B702-013C7F1FB1AB}] => (Allow) N:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC) FirewallRules: [{516C0548-C9A1-415E-B522-98A4244F0EF6}] => (Allow) N:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC) FirewallRules: [{BF553D44-A00C-456E-830E-43DDE7E09226}] => (Allow) N:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé] FirewallRules: [{D0606AEA-1312-49B0-9C24-41D6837F57BA}] => (Allow) N:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé] FirewallRules: [{8F5CCE3A-71FB-4448-8802-8DD5497ECB42}] => (Allow) N:\JEUXX\Origin\FIFA 20\FIFASetup\fifaconfig.exe () [Fichier non signé] FirewallRules: [{E835EA8E-3493-419A-B2D7-DAE721F4BEAB}] => (Allow) N:\JEUXX\Origin\FIFA 20\FIFASetup\fifaconfig.exe () [Fichier non signé] FirewallRules: [{982DA387-6F08-41FF-8910-583A2446D9AC}] => (Allow) N:\Steam\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive Ab (Publ) -> ) FirewallRules: [{283A408C-D442-4A9D-A85E-568A1FAC3BD9}] => (Allow) N:\Steam\steamapps\common\Cities_Skylines\dowser.exe (Paradox Interactive Ab (Publ) -> ) FirewallRules: [{9D44D005-E8B8-4F2F-A9B8-CC8163CD4A8B}] => (Allow) N:\Steam\steamapps\common\Mr. Prepper Prologue\MrPrepperPrologue.exe () [Fichier non signé] FirewallRules: [{7D865C8A-D6C3-46EE-BAE0-663F0CDDC2BA}] => (Allow) N:\Steam\steamapps\common\Mr. Prepper Prologue\MrPrepperPrologue.exe () [Fichier non signé] ==================== Points de restauration ========================= 25-08-2020 02:52:19 Installed Paradox Launcher v2 ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Realtek High Definition Audio Description: Realtek High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: IntcAzAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: NVIDIA High Definition Audio Description: NVIDIA High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: NVHDA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (08/29/2020 02:34:08 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante THXService.exe, version : 1.0.0.1, horodatage : 0x5d81b8c9 Nom du module défaillant : ntdll.dll, version : 10.0.19041.423, horodatage : 0x06701e03 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000fed79 ID du processus défaillant : 0xcc4 Heure de début de l’application défaillante : 0x01d67d9c05814ffc Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : e90abaa1-b539-4f2f-88d6-ef4869058060 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/28/2020 02:07:58 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante THXService.exe, version : 1.0.0.1, horodatage : 0x5d81b8c9 Nom du module défaillant : ntdll.dll, version : 10.0.19041.423, horodatage : 0x06701e03 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000fed79 ID du processus défaillant : 0xd38 Heure de début de l’application défaillante : 0x01d67ca0ee4ab59c Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 9d9a3210-0e64-4b60-be0a-a4f89fac0878 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/27/2020 12:33:04 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Razer Synapse 3.exe version 3.1.627.5 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 2ae8 Heure de début : 01d67bf8d765da87 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe ID de rapport : 6f4f5385-14ec-4a07-bb47-43eab78fff35 Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (08/26/2020 06:52:14 AM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: Le service de recherche Windows n’a pas pu traiter la liste des emplacements inclus et exclus à cause de l’erreur <30, 0x80040d07, "iehistory://{S-1-5-21-840098930-2013849500-1567866472-1000}/">. Error: (08/26/2020 03:05:20 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante THXService.exe, version : 1.0.0.1, horodatage : 0x5d81b8c9 Nom du module défaillant : ntdll.dll, version : 10.0.19041.423, horodatage : 0x06701e03 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000fed79 ID du processus défaillant : 0xe20 Heure de début de l’application défaillante : 0x01d67b428e57753c Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Razer\THXService\Drivers\x64\THXService.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : d4f87413-8810-4fcd-be1a-0b3c87bdf350 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/25/2020 03:01:44 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante steamwebhelper.exe, version : 6.2.31.42, horodatage : 0x5f23e0c8 Nom du module défaillant : steamwebhelper.exe, version : 6.2.31.42, horodatage : 0x5f23e0c8 Code d’exception : 0xc0000409 Décalage d’erreur : 0x00000000002783d8 ID du processus défaillant : 0x1970 Heure de début de l’application défaillante : 0x01d67a78031244e0 Chemin d’accès de l’application défaillante : N:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe Chemin d’accès du module défaillant: N:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe ID de rapport : 7747be92-ca73-4d40-a0f4-14c4d673a795 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/25/2020 03:01:44 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSICommService.exe, version : 3.0.0.38, horodatage : 0x59a7c367 Nom du module défaillant : combase.dll, version : 10.0.19041.329, horodatage : 0xa546dbd1 Code d’exception : 0xc00000fd Décalage d’erreur : 0x000b7f7f ID du processus défaillant : 0xf78 Heure de début de l’application défaillante : 0x01d67a771a795f18 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\MSICommService.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\combase.dll ID de rapport : 8b74e55b-d1a9-4e7f-8a1a-32d3e45da132 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/25/2020 02:57:51 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Cities.exe, version : 5.6.7.3267, horodatage : 0x5c73fc7c Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000067919a8 ID du processus défaillant : 0xabc Heure de début de l’application défaillante : 0x01d67a7a5fa3fd82 Chemin d’accès de l’application défaillante : N:\Steam\steamapps\common\Cities_Skylines\Cities.exe Chemin d’accès du module défaillant: unknown ID de rapport : 1cfc1815-155c-4bfe-a2ed-6265b02b472f Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (08/29/2020 03:15:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Energy Server Service queencreek s’est arrêté avec l’erreur : Le débogueur a reçu une interruption Ctrl+C. Error: (08/29/2020 03:13:25 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetPipeActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (08/29/2020 03:13:25 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetMsmqActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (08/29/2020 03:13:25 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (08/29/2020 03:13:25 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WAS s’est arrêté avec l’erreur : Le lecteur spécifié est introuvable. Error: (08/29/2020 03:13:24 AM) (Source: WAS) (EventID: 5005) (User: ) Description: Le service d'activation des processus Windows (WAS) s'arrête, car il a rencontré une erreur. Le champ des données contient le numéro de l'erreur. Error: (08/29/2020 03:13:24 AM) (Source: WAS) (EventID: 5215) (User: ) Description: Le service d'activation des processus Windows (WAS) n'a pas pu exécuter l'initialisation du programme d'installation hors connexion. Le champ de données contient le nombre d'erreurs. Error: (08/29/2020 03:13:24 AM) (Source: WAS) (EventID: 5217) (User: ) Description: Le service WAS (Windows Process Activation Service) a rencontré une erreur lors du traitement de la migration de la clé. Cela empêche WAS de démarrer correctement. Le champ de données contient le numéro d’erreur. CodeIntegrity: =================================== Date: 2020-08-29 03:15:29.2220000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:15:29.2160000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:15:29.2080000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:13:47.4450000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:13:47.4270000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:13:45.7110000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:13:45.7040000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-08-29 03:13:30.0080000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1.G0 06/16/2018 Carte mère: MSI Z170A GAMING PRO (MS-7984) Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 16344.52 MB Mémoire physique - RAM - disponible: 9769.46 MB Mémoire virtuelle totale: 19283.52 MB Mémoire virtuelle disponible: 10939.76 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:231.79 GB) (Free:160.05 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (Nouveau nom) (Fixed) (Total:931.51 GB) (Free:457.82 GB) NTFS Drive n: (Nouveau nom) (Fixed) (Total:465.76 GB) (Free:188.77 GB) NTFS \\?\Volume{662b8e1b-0000-0000-0000-c0f239000000}\ () (Fixed) (Total:0.56 GB) (Free:0.1 GB) NTFS \\?\Volume{662b8e1b-0000-0000-0000-f0163a000000}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 6D9F8B64) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 662B8E1B) Partition 1: (Active) - (Size=231.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=578 MB) - (Type=27) Partition 3: (Not Active) - (Size=538 MB) - (Type=27) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 662B8E63) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================