Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-01-2022 Exécuté par thiba (30-01-2022 14:23:57) Exécuté depuis C:\Users\thiba\Desktop Microsoft Windows 10 Professionnel Version 20H2 19042.1466 (X64) (2020-12-05 13:48:25) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-756262882-3244545598-4113336910-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-756262882-3244545598-4113336910-503 - Limited - Disabled) Invité (S-1-5-21-756262882-3244545598-4113336910-501 - Limited - Disabled) thiba (S-1-5-21-756262882-3244545598-4113336910-1001 - Administrator - Enabled) => C:\Users\thiba WDAGUtilityAccount (S-1-5-21-756262882-3244545598-4113336910-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.) Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0) (Version: 17.0 - Adobe Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.4.5.550 - Adobe Inc.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Illustrator 2021 (HKLM-x32\...\ILST_25_0) (Version: 25.0 - Adobe Inc.) Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_3_1) (Version: 14.3.1 - Adobe Inc.) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.) Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_0) (Version: 15.0 - Adobe Inc.) AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2020.0821.1329.24282 - Advanced Micro Devices, Inc.) Antidote - Connectix 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB4}) (Version: 10.4.2157 - Druide informatique inc.) Antidote 10 - English module (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB3}) (Version: 10.4.2157 - Druide informatique inc.) Antidote 10 - Module français (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB2}) (Version: 10.4.2157 - Druide informatique inc.) Antidote 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB1}) (Version: 10.4.2157 - Druide informatique inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA601}) (Version: 6.70.0 - Druide informatique inc.) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 97.1.34.81 - Auteurs de Brave) CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform) Cisco Webex Meetings (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\ActiveTouchMeetingClient) (Version: 40.12.4 - Cisco Webex LLC) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) Core Epic Installer (HKLM-x32\...\{22bb3982-45d5-4389-9a00-eb921dcfcb1f}) (Version: 1.3.0.0 - Manticore Games) Hidden DigitizerPanel (HKLM-x32\...\{22A04BFF-1550-4269-987C-4B44117855C4}) (Version: 2.0.0.0 - 0) Discord (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) DMG Extractor (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\DMG Extractor) (Version: 1.3.16.0 - Reincubate Ltd) DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.3.3 - Dev47apps) Edirol HQ Orchestral VSTi v1.03 (HKLM-x32\...\Edirol HQ Orchestral VSTi v1.03) (Version: - ) Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Firestorm Launcher version 2.0 (HKLM-x32\...\{F4B56459-9812-461D-A6C7-5A1CF7CF5609}_is1) (Version: 2.0 - Firestorm) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.101.0 - Google LLC) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Hearthstone Deck Tracker (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\HearthstoneDeckTracker) (Version: 1.13.25 - HearthSim) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Kingdom Hearts III and Re Mind (HKLM-x32\...\Kingdom Hearts III and Re Mind_is1) (Version: - ) Krita (x64) 4.4.8 (HKLM\...\Krita_x64) (Version: 4.4.8.0 - Krita Foundation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Legends of Runeterra (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Riot Game bacon.live) (Version: - Riot Games, Inc) Maxon Cinema 4D 22 (HKLM\...\Maxon Cinema 4D S22) (Version: S22 - Maxon) Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.76 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.76 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\OneDriveSetup.exe) (Version: 22.002.0103.0004 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mozilla Firefox 87.0 (x64 fr) (HKLM\...\Mozilla Firefox 87.0 (x64 fr)) (Version: 87.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 87.0 - Mozilla) Native Instruments Amati Viola (HKLM-x32\...\Native Instruments Amati Viola) (Version: 1.0.0.7 - Native Instruments) Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation) NVIDIA Pilote graphique 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation) OpenOffice 4.1.8 (HKLM-x32\...\{FDE124E1-6198-42CB-8A93-B383D9B9FD25}) (Version: 4.18.9803 - Apache Software Foundation) Opera Stable 82.0.4227.58 (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Opera 82.0.4227.58) (Version: 82.0.4227.58 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.103.48818 - Electronic Arts, Inc.) Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.2.1.17 - Popcorn Time) <==== ATTENTION Prism - Convertisseur de fichiers vidéo (HKLM-x32\...\Prism) (Version: 7.24 - NCH Software) Pulse 40.0.14 (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\a8c3b778-232c-5931-894e-06d03a0f1292) (Version: 40.0.14 - Pulse) REDlauncher (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com) SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group) Snaz version 1.12.7.0 (HKLM-x32\...\{70A76031-FDC6-4F9B-BB5C-33776703F45A}_is1) (Version: 1.12.7.0 - JimsApps) Spellcaster University (HKLM-x32\...\Spellcaster University_is1) (Version: - ) Spitfire Audio (HKLM-x32\...\{ABC5F486-25BD-4BAA-9FA1-A84152CBB563}_is1) (Version: 3.2.17 - Spitfire Audio Holdings Ltd) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Streamlabs OBS 0.26.0 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.26.0 - General Workings, Inc.) Tails of Iron (HKLM-x32\...\Tails of Iron_is1) (Version: - ) Timberborn (HKLM-x32\...\1711765822_is1) (Version: v20210913-21b9be6-win64 - GOG.com) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 38.2 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden Ut version 1.5.5.8 (HKLM-x32\...\Ut_is1) (Version: 1.5.5.8 - ) VEGAS Pro 18.0 (HKLM\...\{75111FE1-CE55-11EA-8B12-00155D43CFCE}) (Version: 18.0.284 - VEGAS) Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0006 - Druide informatique inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 1.1.3.1 - Voicemod S.L.) WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\ZoomUMX) (Version: 5.8.1 (1435) - Zoom Video Communications, Inc.) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-03-05] (Adobe Systems Incorporated) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-11-22] (Microsoft Corporation) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-04-14] (Microsoft Corporation) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-18] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0 [2022-01-23] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-596BA9E1E1B6} -> [Creative Cloud Files] => C:\Users\thiba\Creative Cloud Files [2021-03-05 11:55] CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\thiba\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{38626B40-64E1-4F8C-AEDA-CFF32F38602E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37D}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-756262882-3244545598-4113336910-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-05-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-05-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-05-03] (Adobe Inc. -> ) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-05-03] (Adobe Inc. -> ) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\thiba\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> ) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-05-03] (Adobe Inc. -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2021-10-23 20:39 - 2021-10-06 02:30 - 126961152 _____ () [Fichier non signé] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2021-10-23 20:39 - 2021-10-06 02:30 - 000384000 _____ () [Fichier non signé] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2021-10-23 20:39 - 2021-10-06 02:30 - 008006656 _____ () [Fichier non signé] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000017920 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 003567616 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2020-12-08 15:46 - 2015-04-30 15:28 - 002175488 _____ (0) [Fichier non signé] C:\Windows\system32\wintab32.dll 2021-10-23 20:39 - 2021-10-06 02:30 - 000983552 _____ (The Chromium Authors) [Fichier non signé] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll 2021-01-16 19:41 - 2021-01-16 19:41 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-01-16 19:41 - 2021-01-16 19:41 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2021-01-16 19:41 - 2021-01-16 19:41 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-09-01 23:07 - 2021-01-16 19:41 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 001431040 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 001180672 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000135680 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2020-08-21 13:28 - 2020-08-21 13:28 - 006010880 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 006345216 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 001078272 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000313856 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 004000256 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 003802624 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000171008 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 001083904 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000205312 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000113152 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000376320 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 092323328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 005560832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000463360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000188416 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 002888704 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000053760 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000059392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000017408 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000287232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000329216 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000089088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000312320 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2020-07-14 17:32 - 2020-07-14 17:32 - 000017920 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2020-08-21 13:28 - 2020-08-21 13:28 - 000085504 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 10:14 - 2022-01-05 20:40 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common HKU\S-1-5-21-756262882-3244545598-4113336910-1001\Control Panel\Desktop\\Wallpaper -> c:\users\thiba\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img13.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{098454D8-6BE4-4C26-944C-0444B1F8075D}C:\users\thiba\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\thiba\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{F828FC66-9E9D-4134-A27C-AA41AD2AA3E8}C:\users\thiba\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\thiba\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{E9CFDB3D-AA8E-4215-9092-85160DB688C1}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{FA02BE0D-EEAE-46C1-B462-16C0EC3F909B}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{123862B9-80A0-487F-B3D0-5B91DCE4ABF8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0C9E5032-C114-4137-810F-8F4C0D6340BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{3E8E719D-496A-4C2C-9E7C-37358D14DCE7}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [UDP Query User{FDDDFC22-9B69-42C9-B6DB-0E5E27F67FEB}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> ) FirewallRules: [TCP Query User{F6187763-8C9F-494B-A5BD-0CEE29A4161B}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.) FirewallRules: [UDP Query User{D39D638E-09CD-475D-BB47-FE18090850FE}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.) FirewallRules: [{1A795E7C-27A7-4E93-941D-5F5EACB33F46}] => (Allow) C:\Users\thiba\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{542630B3-10CF-427F-B48C-1B5FE34DD455}] => (Allow) C:\Users\thiba\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{6D931ADC-C076-461F-B314-CC3F6ACB4E03}] => (Allow) C:\Users\thiba\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{1E2F09D7-D25D-4C16-85E4-AA83399BC968}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [{0F944AA3-B9B0-41D6-8E93-1445249FDC84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [TCP Query User{1BE8C03F-EA1E-4B11-881A-ABD96D611126}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{A525AD14-E122-4AAD-B134-172471479162}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{3E174C52-D814-40DF-90C1-BE40DBE5DA74}C:\users\thiba\desktop\despots.game.dystopian.army.builder.v0.14.0.2\despots.game.dystopian.army.builder.v0.14.0.2\despot's game.exe] => (Allow) C:\users\thiba\desktop\despots.game.dystopian.army.builder.v0.14.0.2\despots.game.dystopian.army.builder.v0.14.0.2\despot's game.exe => Pas de fichier FirewallRules: [UDP Query User{6A2A3DC1-3617-47BD-B3C9-5BF9BACCCDC3}C:\users\thiba\desktop\despots.game.dystopian.army.builder.v0.14.0.2\despots.game.dystopian.army.builder.v0.14.0.2\despot's game.exe] => (Allow) C:\users\thiba\desktop\despots.game.dystopian.army.builder.v0.14.0.2\despots.game.dystopian.army.builder.v0.14.0.2\despot's game.exe => Pas de fichier FirewallRules: [TCP Query User{BA1AB656-8D01-4426-8B07-F65F0F63496D}C:\users\thiba\desktop\foundation.v1.8.0.4\foundation.v1.8.0.4\foundation.exe] => (Allow) C:\users\thiba\desktop\foundation.v1.8.0.4\foundation.v1.8.0.4\foundation.exe => Pas de fichier FirewallRules: [UDP Query User{83E37E0F-102C-4006-A180-E03DFEE1FF33}C:\users\thiba\desktop\foundation.v1.8.0.4\foundation.v1.8.0.4\foundation.exe] => (Allow) C:\users\thiba\desktop\foundation.v1.8.0.4\foundation.v1.8.0.4\foundation.exe => Pas de fichier FirewallRules: [{5CB20964-5B98-45F7-A3A7-738A5684674A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> ) FirewallRules: [{814B2687-4DC2-4297-A3F5-3D0D79249705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> ) FirewallRules: [{75393BB3-4BA6-4691-A4A8-4D0CB4603F59}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé] FirewallRules: [{3FDEEE87-F7BB-4AFE-AEF4-906CB6796A51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé] FirewallRules: [TCP Query User{FE349F47-B901-40FE-B58F-0A2DD2BFADAB}C:\users\thiba\desktop\final fantasy v\final fantasy v.exe] => (Allow) C:\users\thiba\desktop\final fantasy v\final fantasy v.exe => Pas de fichier FirewallRules: [UDP Query User{343D096F-069E-4A0A-B7EC-5B3C7B621BA7}C:\users\thiba\desktop\final fantasy v\final fantasy v.exe] => (Allow) C:\users\thiba\desktop\final fantasy v\final fantasy v.exe => Pas de fichier FirewallRules: [{EFB7453C-BB49-46E1-9D78-9A148B89785C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe () [Fichier non signé] FirewallRules: [{45A945C2-3398-4CD0-96B9-5E9244C62299}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\CraftWorld.exe () [Fichier non signé] FirewallRules: [{326D5370-8248-42CB-AAAA-C0CB95AF5AAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\Editor.exe () [Fichier non signé] FirewallRules: [{28C8DEA1-0E22-42AC-820E-388573DECF3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CraftTheWorld\Editor.exe () [Fichier non signé] FirewallRules: [{85A4A973-182F-4EA9-91C5-F4BEB6EC7B20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Legend of Keepers\LegendOfKeepers.exe () [Fichier non signé] FirewallRules: [{6574ACC0-0AD1-4EFE-B8ED-79C0ED24AD01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Legend of Keepers\LegendOfKeepers.exe () [Fichier non signé] FirewallRules: [{CC87A8FE-5063-41FE-BD0C-BD9CC2B49FC5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1F0AE93B-7863-41C5-A03B-46690F9141CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8F6697B5-5F7B-4D2B-9389-A62866CF1639}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{EC248941-30DE-403B-92C3-B6FEA26FE3CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{742FE6B1-AA9E-4A51-B3E1-5B55B725BD80}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{407DA5B6-7082-4D41-98A7-1483281B27CD}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{002D3F93-5B2A-4BBB-ACE0-879E1D70F71B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksburg\Darksburg.exe () [Fichier non signé] FirewallRules: [{F9155515-BBF6-4C2C-B0FD-E50DAF9A1147}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darksburg\Darksburg.exe () [Fichier non signé] FirewallRules: [{A769D71B-896A-4027-B43A-655D89267340}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{C3B70407-9466-4B1D-A601-1ECFA4B29A78}] => (Allow) D:\SteamLibrary\steamapps\common\Deep Rock Galactic\FSD.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{B1DB995F-45B8-4614-87B0-8978D7A35088}] => (Allow) D:\SteamLibrary\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [{CC688350-474F-4B0B-94DC-F85AFB19AB95}] => (Allow) D:\SteamLibrary\steamapps\common\Assassins Creed Odyssey\ACOdyssey.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [{8DAB7162-6ABE-4380-B756-D751FEADCF1A}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé] FirewallRules: [{A188C3B7-E5C1-47FB-86CB-A5F02B86E508}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé] FirewallRules: [{49F4D8B3-121B-4EB0-9E9D-64CDCA0E20EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Fichier non signé] FirewallRules: [{CEE2E6AE-4C57-417E-A13D-7C627A323922}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Fichier non signé] FirewallRules: [{7B8AEAF8-082F-469F-89BE-2255B49DEC67}] => (Allow) C:\Users\thiba\AppData\Local\Programs\Opera\82.0.4227.43\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{235A9C44-A4F0-485D-931B-062F1B69BFE9}] => (Allow) D:\SteamLibrary\steamapps\common\Mini Motorways\Mini Motorways.exe () [Fichier non signé] FirewallRules: [{627ED9EE-02DC-42A4-B818-C231FE118BBE}] => (Allow) D:\SteamLibrary\steamapps\common\Mini Motorways\Mini Motorways.exe () [Fichier non signé] FirewallRules: [{EC6F5290-4C3B-4C1D-B6DB-8F6767D155AB}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe (Runic Games, Inc. -> Runic Games, Inc.) FirewallRules: [{4E6B9C9F-D636-45A6-9A13-185A635C15E9}] => (Allow) D:\SteamLibrary\steamapps\common\Torchlight II\ModLauncher.exe (Runic Games, Inc. -> Runic Games, Inc.) FirewallRules: [{6DA4F9B2-7E22-45AC-838E-EC292117659B}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Take-Two Interactive Software, Inc. -> Gearbox Software) FirewallRules: [{57E5FCB6-9F5C-47CB-9F37-ABE47DE04A9A}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe (Take-Two Interactive Software, Inc. -> Gearbox Software) FirewallRules: [{F080E4DE-C789-41BE-98B2-E2F56F18DC8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\ui32.exe (Skutta, Kristjan -> ) FirewallRules: [{692B67F3-E4EF-4BE5-A404-2CB8FBF278DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\ui32.exe (Skutta, Kristjan -> ) FirewallRules: [{21C46B5D-0FFD-4953-B895-8809A9ADB63F}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [{50ABE75E-AF27-4FF9-A11C-CAC81B16C626}] => (Allow) D:\SteamLibrary\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) FirewallRules: [{272C49B2-AE49-47E1-A81E-DB54EB508671}] => (Allow) C:\Users\thiba\AppData\Local\Programs\Opera\82.0.4227.58\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{FEFE87C4-0823-43A2-AA4F-6BEE214096CC}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [UDP Query User{EC23DC12-06F1-4C39-A9A6-6DF1F9003D67}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [{590E2B00-DD25-436E-82F4-5B2A2B9D5234}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) FirewallRules: [{E8110CC7-32FC-4D61-ABAE-7AD139CD3392}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{18935F46-9845-4D5E-8088-908D4054CB9C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7F85D1B9-9331-4501-821D-9E7BAE219AAC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{AAC56F41-952F-4BA9-AE4D-B81DC205B1A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{46536009-05E8-4196-916E-98A8ECF38E6C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{681D491F-71F0-4A8F-B856-87EE6DDE0058}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DC9406D4-113F-4E26-95A9-B9C7E22AD3E6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F714F94E-163B-43AF-ACF5-5565164B8DE5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BD5E1123-6D2F-4235-9B0B-76C3C8EDA155}] => (Allow) D:\SteamLibrary\steamapps\common\Vampire Survivors\VampireSurvivors.exe (Luca Galante) [Fichier non signé] FirewallRules: [{B80F9678-41C6-43AC-9FC9-058469D89CA7}] => (Allow) D:\SteamLibrary\steamapps\common\Vampire Survivors\VampireSurvivors.exe (Luca Galante) [Fichier non signé] FirewallRules: [TCP Query User{C8C6C18B-25E4-4EE7-8708-A0AF03DFE01A}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{5F51F6D2-E3D4-4986-8CE2-FE0CEEF34C43}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{A958D2B2-B27B-43F9-B760-FE138485DA7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{7B9D51E0-EAFB-4144-A42D-680CA0C6E56B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> ) FirewallRules: [{E1589165-1A1B-465B-82BB-4541915892FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé] FirewallRules: [{3727DD7A-596F-42E3-B668-4928AA1A13BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé] FirewallRules: [{50F3418D-78CF-46A2-AD83-D8D328549E50}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé] FirewallRules: [{93E19A67-2CF4-4305-94B3-89C12EB605E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé] FirewallRules: [{A909EA56-6398-4D5C-8A81-616F12799ADC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.76\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{45D09BE3-5EBA-4957-95B9-E7714C9EE28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe FirewallRules: [{6DA09471-2BB1-48B8-83E5-F403A8447D7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\jre\bin\javaw.exe ==================== Points de restauration ========================= 21-01-2022 14:27:04 Point de contrôle planifié 23-01-2022 20:39:31 Opération de restauration ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/23/2022 08:48:18 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: Une erreur non spécifiée s’est produite au cours de la restauration du système : (Point de contrôle planifié). Informations supplémentaires : 0x8007045b. Error: (01/23/2022 08:48:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AGSService.exe, version : 7.4.0.34, horodatage : 0x60ee520e Nom du module défaillant : ntdll.dll, version : 10.0.19041.1466, horodatage : 0x9012d056 Code d’exception : 0xc0000374 Décalage d’erreur : 0x000e6c43 ID du processus défaillant : 0x1074 Heure de début de l’application défaillante : 0x01d8109221ff8c00 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 5d5d3539-b096-4e0e-8124-9324822dd48c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/23/2022 08:41:05 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (01/23/2022 08:41:05 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (01/23/2022 07:28:53 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (01/23/2022 05:44:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.19041.1415, horodatage : 0x2d7da47f Nom du module défaillant : ntdll.dll, version : 10.0.19041.1466, horodatage : 0xe2f8ca76 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000ff199 ID du processus défaillant : 0x570 Heure de début de l’application défaillante : 0x01d8105571d9e4e2 Chemin d’accès de l’application défaillante : C:\Windows\Explorer.EXE Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 7b3cbb2a-130e-4fa9-bf32-513ae633042c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/20/2022 09:10:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AGSService.exe, version : 7.4.0.34, horodatage : 0x60ee520e Nom du module défaillant : ntdll.dll, version : 10.0.19041.1466, horodatage : 0x9012d056 Code d’exception : 0xc0000374 Décalage d’erreur : 0x000e6c43 ID du processus défaillant : 0xed8 Heure de début de l’application défaillante : 0x01d80e39c108046f Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 486a33ef-b5f9-46c9-abe1-3b3e64eb0913 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/17/2022 06:08:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (01/23/2022 08:48:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Adobe Genuine Software Integrity Service s’est terminé de façon inattendue pour la 1ème fois. Error: (01/23/2022 08:27:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Adobe Genuine Monitor Service s’est terminé de façon inattendue pour la 1ème fois. Error: (01/23/2022 08:26:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service AMD External Events Utility s’est terminé de façon inattendue pour la 1ème fois. Error: (01/20/2022 09:59:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (01/20/2022 09:59:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service. Error: (01/20/2022 09:10:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Adobe Genuine Software Integrity Service s’est terminé de façon inattendue pour la 1ème fois. Error: (01/20/2022 09:10:18 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 23:58:38 le ‎18/‎01/‎2022 n’était pas prévu. Error: (01/20/2022 09:10:06 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Windows Defender: ================ Date: 2022-01-29 13:30:50 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {5D7DC18F-C6EC-4481-AE27-60F320521B6B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-28 13:50:24 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {9E416C2F-82CC-4C5C-8F38-BFE634CF02C0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-27 13:41:41 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {66721128-CE5D-4C97-8A38-8B23AA0EBAC0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-27 11:33:35 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {6AEEC542-80E1-4CE6-BF01-9ABEABB61FD9} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-25 20:24:56 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {7318B883-1978-41C0-8748-FB7B7154387A} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2021-06-02 09:44:32 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.170.0.13\OWExplorer.dll that did not meet the Microsoft signing level requirements. Date: 2021-06-02 09:40:53 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Users\thiba\AppData\Local\Discord\app-1.0.9002\Discord.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.170.0.13\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements. Date: 2021-05-29 21:03:23 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Overwolf\0.170.0.13\OWExplorer.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. F62 07/13/2021 Carte mère: Gigabyte Technology Co., Ltd. B450 AORUS ELITE Processeur: AMD Ryzen 3 2200G with Radeon Vega Graphics Pourcentage de mémoire utilisée: 23% Mémoire physique - RAM - totale: 32710.08 MB Mémoire physique - RAM - disponible: 25133.45 MB Mémoire virtuelle totale: 37574.08 MB Mémoire virtuelle disponible: 27797.49 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:930.9 GB) (Free:313.71 GB) NTFS Drive d: () (Fixed) (Total:930.47 GB) (Free:593.87 GB) NTFS \\?\Volume{076485ef-e3dd-4a3d-9010-d029df38baaf}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{6580ba74-0f8d-4195-a704-a4b3efa1d5cf}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 15C67ECC) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F9D545F6) Partition 1: (Not Active) - (Size=930.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================