Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-06-2021 Exécuté par jonat (22-06-2021 17:31:06) Exécuté depuis C:\Users\jonat\Downloads Windows 10 Home Version 20H2 19042.1081 (X64) (2021-06-21 23:47:41) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2931321262-1885788713-23824463-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2931321262-1885788713-23824463-503 - Limited - Disabled) Invité (S-1-5-21-2931321262-1885788713-23824463-501 - Limited - Disabled) jonat (S-1-5-21-2931321262-1885788713-23824463-1001 - Administrator - Enabled) => C:\Users\jonat WDAGUtilityAccount (S-1-5-21-2931321262-1885788713-23824463-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton Security Ultra (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton Security Ultra (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A} FW: Norton Security Ultra (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E} FW: Norton Security Ultra (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000020072}) (Version: 2.1.20072 - Acer) Acer Jumpstart (HKLM-x32\...\{E3930B59-5669-4BAB-A329-D56C1427C613}) (Version: 3.3.19180.100 - Acer) Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 14.1.0 - IObit) App Explorer (HKU\S-1-5-21-2931321262-1885788713-23824463-1001\...\Host App Service) (Version: 0.273.4.186 - SweetLabs) <==== ATTENTION Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3014 - Acer Incorporated) Discord (HKU\S-1-5-21-2931321262-1885788713-23824463-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.) DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated) Dynamic Application Loader Host Interface Service (HKLM\...\{BB78A7A1-B716-49D2-81C4-5A3ABE32C7E2}) (Version: 1.0.0.0 - Intel Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{C83D4B4A-C7D0-4C01-995E-17081DAE5CEF}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden ExpressVPN (HKLM-x32\...\{878F6EB4-73BF-4A1E-9A92-6DDF9EDC8A8B}) (Version: 2.3.21102.1 - Acer) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.114 - Google LLC) GoTrust ID Plugin 2.0.10.26 (HKLM\...\GoTrust ID Plugin) (Version: 2.0.10.26 - GoTrust ID Inc.) Intel(R) Chipset Device Software (HKLM-x32\...\{66879245-162d-47f5-bac4-840156a7c01e}) (Version: 10.1.18263.8193 - Intel(R) Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2004.14.0.1447 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7642 - Intel Corporation) Killer Ethernet Performance Driver Suite UWD (HKLM\...\{1995E767-7D5D-4BC7-9B4B-A0A1220AAC58}) (Version: 2.2.1410 - Rivet Networks) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.54 - Microsoft Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.11929.20394 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2931321262-1885788713-23824463-1001\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Mozilla Firefox 69.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 69.0.3 (x64 en-US)) (Version: 69.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0.3 - Mozilla) Norton Security Ultra (HKLM-x32\...\NGC) (Version: 22.21.2.50 - NortonLifeLock Inc) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation) NVIDIA Pilote graphique 442.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.23 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20394 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20394 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.11929.20394 - Microsoft Corporation) Hidden Opera Stable 77.0.4054.90 (HKU\S-1-5-21-2931321262-1885788713-23824463-1001\...\Opera 77.0.4054.90) (Version: 77.0.4054.90 - Opera Software) Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3010 - Acer Incorporated) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8890.1 - Realtek Semiconductor Corp.) User Experience Improvement Program Service (HKLM\...\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}) (Version: 4.00.3114 - Acer Incorporated) XSplit Gamecaster (HKLM-x32\...\{CAC84AB6-6C1D-41C5-A21C-1D48889E9C3B}) (Version: 3.4.1812.0308 - SplitmediaLabs) Packages: ========= Acer Collection S -> C:\Program Files\WindowsApps\acerincorporated.acercollections_1.0.3004.0_x64__48frkmn4z8aw4 [2021-06-22] (Acer Incorporated) Acer Product Registration -> C:\Program Files\WindowsApps\acerincorporated.acerregistration_2.0.3024.0_x64__48frkmn4z8aw4 [2021-06-22] (Acer Incorporated) Care Center S -> C:\Program Files\WindowsApps\acerincorporated.acercarecenters_4.0.3019.0_x64__48frkmn4z8aw4 [2021-06-22] (Acer Incorporated) Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-06-22] (INTEL CORP) [Startup Task] Dropbox - offre promotionnelle -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2021-06-22] (Dropbox Inc.) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2021.2.6.0_x64__t5j2fzbtdg37r [2021-06-22] (DTS, Inc.) DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.10.1.0_x64__t5j2fzbtdg37r [2021-06-22] (DTS, Inc.) GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2021-06-22] (GoTrustID Inc.) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-06-22] (INTEL CORP) Killer Control Center -> C:\Program Files\WindowsApps\rivetnetworks.killercontrolcenter_2.2.3216.0_x64__rh07ty8m5nkag [2021-06-22] (Rivet Networks LLC) [Startup Task] Messenger -> C:\Program Files\WindowsApps\facebook.317180b0bb486_1090.7.57.0_x64__8xx8rvfyw5nnt [2021-06-22] (Facebook Inc) [Startup Task] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-22] (Microsoft Studios) [MS Ad] PhotoDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.photodirectorforacerdesktop_8.0.5229.0_x64__ypz87dpxkv292 [2021-06-22] (CYBERLINK COM CORP) PowerDirector for acer -> C:\Program Files\WindowsApps\cyberlinkcorp.ac.powerdirectorforacerdesktop_14.0.4304.0_x64__ypz87dpxkv292 [2021-06-22] (CYBERLINK COM CORP) QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3010.0_x64__48frkmn4z8aw4 [2021-06-22] (Acer Incorporated) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.235.0_x64__dt26b99r8h8gj [2021-06-22] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0 [2021-06-22] (Spotify AB) [Startup Task] User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3114.0_x64__48frkmn4z8aw4 [2021-06-22] (Acer Incorporated) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-12-24] (IObit Information Technology -> IObit) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.2.50\NavShExt.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-12-24] (IObit Information Technology -> IObit) ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.2.50\NavShExt.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2020-12-24] (IObit Information Technology -> IObit) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_86d41f9d255b539f\nvshext.dll [2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.21.2.50\buShell.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.2.50\NavShExt.dll [2021-03-27] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-2931321262-1885788713-23824463-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=ACTE HKU\S-1-5-21-2931321262-1885788713-23824463-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=ACTE BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-23] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2931321262-1885788713-23824463-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jonat\Downloads\la-saga-de-tanya-le-mal-fond-d-ecran-1920x1080_48.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-2931321262-1885788713-23824463-1001\...\StartupApproved\Run: => "EpicGamesLauncher" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{317D6127-9CB5-4B21-AD91-81AABC34B2BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A94273C3-8CEB-4269-AE90-B3A63D173158}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited) FirewallRules: [{B64FDD92-F8E5-4B91-8D9E-37FD85720B96}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited) FirewallRules: [{00CD32DA-4FE7-49B0-B276-2797804C9C7C}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs) FirewallRules: [{6DEA88CD-C43D-43ED-9F46-BE760EF07FC8}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs) FirewallRules: [{D48A8947-FCE4-4B2A-88E4-B1D36F4043AC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{AA417DEB-9018-430A-A4CA-6CAA030AD136}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{84DC5DCA-6987-4BD0-8E85-1563CAAF7441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{59BF30BD-B41B-4B86-BB71-2A859C04DF44}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6EE10C3A-9778-46FE-B045-8A1486C25BAA}] => (Allow) D:\Jeux\steam.exe (Valve -> Valve Corporation) FirewallRules: [{113DDDE0-E803-4DE9-83E1-ED27131CBCA2}] => (Allow) D:\Jeux\steam.exe (Valve -> Valve Corporation) FirewallRules: [{D5063180-69F8-4917-B2F1-4BE81D28C090}] => (Allow) D:\Jeux\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{3B4858D9-65BE-4D1A-A957-5D1AA1D935C9}] => (Allow) D:\Jeux\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{FB32780D-2B5E-4736-A452-3CA495ACEC7E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{1A719C6E-765E-4DD0-BAC0-DD1C26894713}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EF1E71A5-347C-4835-9D8C-67562F98C8A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1F55CD05-AC2D-4BF0-909A-B06CEDE9E9BE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E9B70643-2125-46D6-B81C-DEF99F9CB6AD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3BFF5A83-50BC-40EC-AAC0-104E451A40D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F67CB919-B803-4712-92E8-ED6ADF068876}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C8F377E3-ADC1-4724-9FAF-751AD2D3AA69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3FA90010-04FD-4601-B8A8-B3215E2AC2F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.161.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4E991116-5F26-407B-BEFE-5EEA7D2F5773}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{AD1738C9-97DE-485A-A594-449CBE55C8B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9F3D0F2A-3677-42E1-AE35-0A4C87CF08BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{3167C8A8-49C8-410F-A8A8-1F9F87EC384E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{412602D6-6192-442F-BB2E-4C04CA2FBD4E}] => (Allow) D:\Jeux\steamapps\common\Risen 3\system\Risen3.exe (Piranha Bytes) [Fichier non signé] FirewallRules: [{FD145086-CA9B-4126-8FF1-3389E6458136}] => (Allow) D:\Jeux\steamapps\common\Risen 3\system\Risen3.exe (Piranha Bytes) [Fichier non signé] FirewallRules: [{D8021904-0D23-463C-AC8C-25145BD7BDAD}] => (Allow) D:\Jeux\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc) FirewallRules: [{17FE2A66-2B6B-4324-9700-03939A11987A}] => (Allow) D:\Jeux\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc) FirewallRules: [{F7BA7E01-11DF-4176-B41D-A6FB771A600B}] => (Allow) D:\Jeux\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{A3013815-C039-4D89-8C74-E116CC1EB55D}] => (Allow) D:\Jeux\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) ==================== Points de restauration ========================= 22-06-2021 02:34:26 DirectX est installé ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (06/22/2021 02:39:39 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme steam.exe version 6.58.86.56 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 45a8 Heure de début : 01d7676132ec020d Heure d'arrêt : 4294967295 Chemin d'accès à l'application : D:\Jeux\steam.exe ID de rapport : a3f3d267-a95d-44ef-8be3-04980a63f657 Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (06/22/2021 11:38:16 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (06/22/2021 11:38:16 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (06/22/2021 11:38:16 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (06/22/2021 11:38:16 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (06/22/2021 11:34:08 AM) (Source: MsiInstaller) (EventID: 10005) (User: LAPTOP-5KI3RAE2) Description: Produit : NitroSense -- Pour installer NitroSense, veuillez executer Setup.exe. Error: (06/22/2021 11:26:02 AM) (Source: MsiInstaller) (EventID: 10005) (User: LAPTOP-5KI3RAE2) Description: Produit : NitroSense -- Pour installer NitroSense, veuillez executer Setup.exe. Error: (06/22/2021 11:20:53 AM) (Source: MsiInstaller) (EventID: 10005) (User: LAPTOP-5KI3RAE2) Description: Produit : NitroSense -- Pour installer NitroSense, veuillez executer Setup.exe. Erreurs système: ============= Error: (06/22/2021 04:48:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Realtek Semiconductor Corp. - Extension - 6.0.9180.1. Error: (06/22/2021 04:48:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Realtek Semiconductor Corp. - Extension - 6.0.9180.1. Error: (06/22/2021 04:38:47 PM) (Source: DCOM) (EventID: 10005) (User: LAPTOP-5KI3RAE2) Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service BcastDVRUserService_6dd3d avec les arguments « Non disponible » pour exécuter le serveur : Windows.Media.Capture.Internal.AppCaptureShell Error: (06/22/2021 04:38:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service utilisateur de diffusion et GameDVR_6dd3d n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (06/22/2021 04:38:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service utilisateur de diffusion et GameDVR_6dd3d. Error: (06/22/2021 01:46:59 AM) (Source: WinRM) (EventID: 10142) (User: ) Description: Le service Gestion à distance de Windows ne peut pas migrer l’écouteur avec l’adresse * et le transport HTTP. Un écouteur ayant une configuration d’adresse et de transport identique existe déjà. Error: (06/22/2021 01:46:42 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 11:50:27 le ‎23/‎08/‎2020 n’était pas prévu. Error: (06/22/2021 01:46:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service Broker pour les connexions réseau s’est arrêté avec l’erreur : Un périphérique attaché au système ne fonctionne pas correctement. CodeIntegrity: =============== Date: 2021-06-22 17:04:13 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.21.2.50\symamsi.dll that did not meet the Microsoft signing level requirements. Date: 2021-06-22 17:03:13 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.21.2.50\symamsi.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: Insyde Corp. V1.00 03/19/2020 Carte mère: CML Stonic_CMS Processeur: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz Pourcentage de mémoire utilisée: 63% Mémoire physique - RAM - totale: 8023.05 MB Mémoire physique - RAM - disponible: 2962.2 MB Mémoire virtuelle totale: 10010.89 MB Mémoire virtuelle disponible: 1580.61 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:475.83 GB) (Free:398.76 GB) NTFS Drive d: (Samsung_T5) (Fixed) (Total:931.51 GB) (Free:320.3 GB) NTFS \\?\Volume{180c3319-c804-4a98-9318-2148d5830cf9}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.39 GB) NTFS \\?\Volume{cb95c45c-76a7-4443-99c6-b41c3debf7ce}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32 ==================== MBR & Table des partitions ==================== ==================== Fin de Addition.txt =======================