Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-09-2021 Exécuté par rummi (12-09-2021 13:45:28) Exécuté depuis C:\Users\rummi\Desktop Windows 10 Home Version 2004 19041.928 (X64) (2021-02-09 17:24:36) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-61141301-2817378580-1924262316-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-61141301-2817378580-1924262316-503 - Limited - Disabled) Invité (S-1-5-21-61141301-2817378580-1924262316-501 - Limited - Disabled) rummi (S-1-5-21-61141301-2817378580-1924262316-1001 - Administrator - Enabled) => C:\Users\rummi WDAGUtilityAccount (S-1-5-21-61141301-2817378580-1924262316-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12} FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated) Adobe After Effects 2021 (HKLM-x32\...\AEFT_18_2_1) (Version: 18.2.1 - Adobe Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.5.0.617 - Adobe Inc.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_9) (Version: 14.9 - Adobe Inc.) Adobe Media Encoder 2021 (HKLM-x32\...\AME_15_4_1) (Version: 15.4.1 - Adobe Inc.) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2_9) (Version: 21.2.9.67 - Adobe Inc.) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_4_2) (Version: 22.4.2.242 - Adobe Inc.) Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_2) (Version: 15.2 - Adobe Inc.) ASUS GPU TweakII (HKLM-x32\...\InstallShield_{2914BAB6-CA16-4B5A-BF41-2466656C7040}) (Version: 2.0.8.0 - ASUSTek COMPUTER INC.) ASUS Product Register Program (HKLM-x32\...\{54716EA9-F8B4-41E0-801B-9909164F2024}) (Version: 1.1.001 - ASUSTek Computer Inc.) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 21.7.2481 - Avast Software) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.84 - Piriform) Cheat Engine 7.3 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine) Citra (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\{6ad43f30-3479-4709-872a-63d65a9644a5}) (Version: 1.0.0 - Citra Team) CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1754 - Disc Soft Ltd) Discord (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) DriversCloud.com (64 bits) (HKLM\...\{21940518-C229-4C1E-9D80-D8C5C29A384F}) (Version: 10.1.0.1 - Cybelsoft) Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{6D70A161-C29B-441B-9AA5-2ABBAB3B4B4D}) (Version: 1.1.1.0 - Epic Games, Inc.) FileZilla Client 3.52.2 (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\FileZilla Client) (Version: 3.52.2 - Tim Kosse) GitHub Desktop (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\GitHubDesktop) (Version: 2.9.0 - GitHub, Inc.) HandBrake 1.3.3 (HKLM-x32\...\HandBrake) (Version: 1.3.3 - ) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.8.792 - Logitech) MakeMKV v1.15.4 (HKLM-x32\...\MakeMKV) (Version: v1.15.4 - GuinpinSoft inc) Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon) Microsoft .NET Core SDK 3.1.411 (x64) (HKLM-x32\...\{d9facd1b-6861-4705-bf9d-fbb720c1b228}) (Version: 3.1.411.15760 - Microsoft Corporation) Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Retail - en-us) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft Office Standard 2019 - fr-fr (HKLM\...\Standard2019Retail - fr-fr) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation) Microsoft Project - en-us (HKLM\...\ProjectStd2019Retail - en-us) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft Project - fr-fr (HKLM\...\ProjectStd2019Retail - fr-fr) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\Teams) (Version: 1.4.00.8872 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation) Microsoft Visio - en-us (HKLM\...\VisioStd2019Retail - en-us) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft Visio - fr-fr (HKLM\...\VisioStd2019Retail - fr-fr) (Version: 16.0.14326.20238 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30037 (HKLM-x32\...\{4b2f3795-f407-415e-88d5-8c8ab322909d}) (Version: 14.29.30037.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.59.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{B97B5794-888C-4822-8768-EE2CF9607DA5}) (Version: 1.13.1 - Mojang (Uploaded by OfficialHawk)) Hidden Minecraft (HKLM-x32\...\Minecraft 1.13.1) (Version: 1.13.1 - Mojang (Uploaded by OfficialHawk)) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 92.0 (x64 fr)) (Version: 92.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 76.0.1 - Mozilla) MuMu App Player (HKLM-x32\...\Nemu) (Version: 2.5.9 - Netease) Nefarius Virtual Gamepad Emulation Bus Driver (HKLM\...\{93D91F60-7C94-4A79-863F-EA713D2EB3F3}) (Version: 1.17.333.0 - Nefarius Software Solutions e.U.) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation) NVIDIA Pilote graphique 457.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.09 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden Oracle VM VirtualBox 6.1.16 (HKLM\...\{8084939A-142E-4CD2-8947-2706210D81F5}) (Version: 6.1.16 - Oracle Corporation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8339 - Realtek Semiconductor Corp.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Witcher 3 - Wild Hunt - Game of the Year Edition (HKLM-x32\...\1495134320_is1) (Version: 1.30.0.0 - GOG.com) TI Connect CE (HKLM\...\{CBCADF85-55EC-42CE-BF54-48C75026E178}) (Version: 5.6.0.2082 - Texas Instruments Inc.) Twitch (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.19.0.2 - Voicemod S.L.) Wargaming.net Game Center (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\Wargaming.net Game Center) (Version: 21.5.0.5956 - Wargaming.net) WeMod (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\WeMod) (Version: 7.1.4 - WeMod) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) World of Tanks Common Test (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\WOT.CT.PRODUCTION) (Version: - Wargaming.net) World of Tanks EU (HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs) Packages: ========= Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2020-05-25] (Adobe Systems Incorporated) Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-03-21] (eyeo GmbH) Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-07-11] (Adobe Systems Incorporated) Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-07-27] (INTEL CORP) [Startup Task] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-01] (Microsoft Corporation) File Analyzer -> C:\Program Files\WindowsApps\BitberrySoftware.FileAnalyzer_2.0.0.0_x64__2js97y2b9kjke [2021-03-05] (Bitberry Software) Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-03-21] (INTEL CORP) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-09] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-09] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-17] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-06-01] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0 [2021-09-02] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-59F50DE1EB23} -> [Creative Cloud Files] => C:\Users\rummi\Creative Cloud Files [2021-02-09 12:50] CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\rummi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\rummi\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-61141301-2817378580-1924262316-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-07-12] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-07-12] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-07-12] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-07-12] (Adobe Inc. -> ) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-06-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-06-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_983b03c2be43c272\nvshext.dll [2020-10-28] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-07-12] (Adobe Inc. -> ) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-09-12] (Avast Software s.r.o. -> AVAST Software) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2021-07-30 22:28 - 2021-07-30 22:11 - 000634880 _____ () [Fichier non signé] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra 2021-02-02 07:49 - 2021-02-02 07:49 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2019-09-26 19:08 - 2021-09-12 13:02 - 000043264 _____ (ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll 2021-07-27 12:32 - 2021-07-27 12:33 - 042803200 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKU\S-1-5-21-61141301-2817378580-1924262316-1001 -> DefaultScope {9D073F8C-B50B-4227-A680-57E1195ECD74} URL = hxxp://www.home-explore.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-61141301-2817378580-1924262316-1001 -> {0A33EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-61141301-2817378580-1924262316-1001 -> {9D073F8C-B50B-4227-A680-57E1195ECD74} URL = hxxp://www.home-explore.com/search?q={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2021-01-01] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2021-01-01] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-30] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-05-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-29] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-09-15 09:31 - 2021-09-07 20:03 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\ HKU\S-1-5-21-61141301-2817378580-1924262316-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rummi\AppData\Roaming\Mozilla\Firefox\Fond d’écran.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. Network Binding: ============= Ethernet 6: Rawether NDIS 6.X SPR Protocol Driver -> PCA_PCASP60 (enabled) Ethernet 6: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 7: Rawether NDIS 6.X SPR Protocol Driver -> PCA_PCASP60 (enabled) Ethernet 7: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Wi-Fi 4: Rawether NDIS 6.X SPR Protocol Driver -> PCA_PCASP60 (enabled) Wi-Fi 4: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 5: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 5: Rawether NDIS 6.X SPR Protocol Driver -> PCA_PCASP60 (enabled) ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Discord" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "BakkesMod" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Battle.net" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "SmallSunset" HKU\S-1-5-21-61141301-2817378580-1924262316-1001\...\StartupApproved\Run: => "Voicemod" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{19423EAA-B7D8-4A20-94EF-61D337B2FF0B}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{313DA239-1233-42A2-A348-46A9A764A345}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{59B5E84B-1536-43AA-A0F5-AAA5DB32BB25}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{76514B6D-620E-46D2-8D92-8DA740350BB5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:111.19 GB) (Free:8.54 GB) (8%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (09/12/2021 01:02:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante GTII-OSD64.exe, version : 2.0.5.6, horodatage : 0x5d78aa8c Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.906, horodatage : 0x2f2f77bf Code d’exception : 0xe0434352 Décalage d’erreur : 0x0000000000034b59 ID du processus défaillant : 0x2a34 Heure de début de l’application défaillante : 0x01d7a7c5b0a366ce Chemin d’accès de l’application défaillante : F:\graphics\GTII-OSD\x64\GTII-OSD64.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 40e465c7-3655-401f-8f38-60df1ab00f89 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (09/12/2021 01:02:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante GTII-OSD.exe, version : 2.0.5.6, horodatage : 0x5d78aa9d Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.906, horodatage : 0x26452a2a Code d’exception : 0xe0434352 Décalage d’erreur : 0x0012a6e2 ID du processus défaillant : 0x2a20 Heure de début de l’application défaillante : 0x01d7a7c5b0a0dfa7 Chemin d’accès de l’application défaillante : F:\graphics\GTII-OSD\x86\GTII-OSD.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 08aa84e8-18ff-429a-b8b7-b10dc4d86680 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (09/12/2021 01:02:35 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : GTII-OSD64.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.Security.Principal.IdentityNotMappedException à System.Security.Principal.NTAccount.Translate(System.Security.Principal.IdentityReferenceCollection, System.Type, Boolean) à System.Security.Principal.NTAccount.Translate(System.Type) à System.Security.AccessControl.CommonObjectSecurity.ModifyAccess(System.Security.AccessControl.AccessControlModification, System.Security.AccessControl.AccessRule, Boolean ByRef) à System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(System.Security.AccessControl.AccessRule) à ProcInfo_Lib.FileAccessRuleClass.AddSecurityControllToFile(System.String) à .CGWDlg.AddSecurityControlToFiles(CGWDlg*, ATL.CStringT > >*, UInt32) à .CGWDlg.AddSecurityControlToAllFiles(CGWDlg*) à .CGWDlg.OnInitDialog(CGWDlg*) à .CDialog.Create(CDialog*, SByte*, CWnd*) à .CGWApp.InitInstance(CGWApp*) à .WinMainCRTStartup() Error: (09/12/2021 01:02:35 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : GTII-OSD.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.Security.Principal.IdentityNotMappedException à System.Security.Principal.NTAccount.Translate(System.Security.Principal.IdentityReferenceCollection, System.Type, Boolean) à System.Security.Principal.NTAccount.Translate(System.Type) à System.Security.AccessControl.CommonObjectSecurity.ModifyAccess(System.Security.AccessControl.AccessControlModification, System.Security.AccessControl.AccessRule, Boolean ByRef) à System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(System.Security.AccessControl.AccessRule) à ProcInfo_Lib.FileAccessRuleClass.AddSecurityControllToFile(System.String) à .CGWDlg.AddSecurityControlToFiles(CGWDlg*, ATL.CStringT > >*, UInt32) à .CGWDlg.AddSecurityControlToAllFiles(CGWDlg*) à .CGWDlg.OnInitDialog(CGWDlg*) à .CDialog.Create(CDialog*, SByte*, CWnd*) à .CGWApp.InitInstance(CGWApp*) à ._WinMainCRTStartup() Error: (09/12/2021 12:56:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante GTII-OSD64.exe, version : 2.0.5.6, horodatage : 0x5d78aa8c Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.906, horodatage : 0x2f2f77bf Code d’exception : 0xe0434352 Décalage d’erreur : 0x0000000000034b59 ID du processus défaillant : 0x2a14 Heure de début de l’application défaillante : 0x01d7a7c4c7f2eaf0 Chemin d’accès de l’application défaillante : F:\graphics\GTII-OSD\x64\GTII-OSD64.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : bd6f9f58-74d3-4594-a70c-495dcd2dbcf3 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (09/12/2021 12:56:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : GTII-OSD64.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.Security.Principal.IdentityNotMappedException à System.Security.Principal.NTAccount.Translate(System.Security.Principal.IdentityReferenceCollection, System.Type, Boolean) à System.Security.Principal.NTAccount.Translate(System.Type) à System.Security.AccessControl.CommonObjectSecurity.ModifyAccess(System.Security.AccessControl.AccessControlModification, System.Security.AccessControl.AccessRule, Boolean ByRef) à System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(System.Security.AccessControl.AccessRule) à ProcInfo_Lib.FileAccessRuleClass.AddSecurityControllToFile(System.String) à .CGWDlg.AddSecurityControlToFiles(CGWDlg*, ATL.CStringT > >*, UInt32) à .CGWDlg.AddSecurityControlToAllFiles(CGWDlg*) à .CGWDlg.OnInitDialog(CGWDlg*) à .CDialog.Create(CDialog*, SByte*, CWnd*) à .CGWApp.InitInstance(CGWApp*) à .WinMainCRTStartup() Error: (09/12/2021 12:56:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante GTII-OSD.exe, version : 2.0.5.6, horodatage : 0x5d78aa9d Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.906, horodatage : 0x26452a2a Code d’exception : 0xe0434352 Décalage d’erreur : 0x0012a6e2 ID du processus défaillant : 0x2a60 Heure de début de l’application défaillante : 0x01d7a7c4c7f06819 Chemin d’accès de l’application défaillante : F:\graphics\GTII-OSD\x86\GTII-OSD.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 1bf4b25c-e157-4a9e-a8bf-8fbe96b780be Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (09/12/2021 12:56:04 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : GTII-OSD.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.Security.Principal.IdentityNotMappedException à System.Security.Principal.NTAccount.Translate(System.Security.Principal.IdentityReferenceCollection, System.Type, Boolean) à System.Security.Principal.NTAccount.Translate(System.Type) à System.Security.AccessControl.CommonObjectSecurity.ModifyAccess(System.Security.AccessControl.AccessControlModification, System.Security.AccessControl.AccessRule, Boolean ByRef) à System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(System.Security.AccessControl.AccessRule) à ProcInfo_Lib.FileAccessRuleClass.AddSecurityControllToFile(System.String) à .CGWDlg.AddSecurityControlToFiles(CGWDlg*, ATL.CStringT > >*, UInt32) à .CGWDlg.AddSecurityControlToAllFiles(CGWDlg*) à .CGWDlg.OnInitDialog(CGWDlg*) à .CDialog.Create(CDialog*, SByte*, CWnd*) à .CGWApp.InitInstance(CGWApp*) à ._WinMainCRTStartup() Erreurs système: ============= Error: (09/12/2021 01:04:02 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Le pilote a détecté une erreur de pilote interne sur \Device\VBoxNetLwf. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServicef. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServiced. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServicee. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServicec. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServicea. Error: (09/12/2021 01:02:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service AppServiceb. Error: (09/12/2021 01:02:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service avast! Tools dépend du service avast! Antivirus qui n’a pas pu démarrer en raison de l’erreur : Windows ne peut pas vérifier la signature numérique de ce fichier. Il est possible qu’une modification matérielle ou logicielle récente ait installé un fichier endommagé ou dont la signature est incorrecte, ou qu’il s’agisse d’un logiciel malveillant provenant d’une source inconnue. CodeIntegrity: =============== Date: 2021-09-12 13:42:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-09-12 13:41:00 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-09-12 13:22:19 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\x86\aswAMSI.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 2401 07/12/2019 Carte mère: ASUSTeK COMPUTER INC. PRIME Z370-A Processeur: Intel(R) Core(TM) i5-8600K CPU @ 3.60GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 16317.91 MB Mémoire physique - RAM - disponible: 10921.02 MB Mémoire virtuelle totale: 21181.91 MB Mémoire virtuelle disponible: 13515.99 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:111.19 GB) (Free:8.54 GB) NTFS Drive f: (HDD) (Fixed) (Total:931.51 GB) (Free:258.86 GB) NTFS \\?\Volume{1e7b546d-dfde-4f65-9a81-d43da15e4d17}\ () (Fixed) (Total:0.49 GB) (Free:0.04 GB) NTFS \\?\Volume{50fa0ddf-d8fd-4da6-809e-b749cabfbc49}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 74027EA4) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================