Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-12-2021 Exécuté par gemin (07-01-2022 17:10:49) Exécuté depuis C:\Users\gemin\Downloads Microsoft Windows 10 Professionnel Version 21H1 19043.1415 (X64) (2020-09-10 16:21:39) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2612471623-1478483485-3948895461-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2612471623-1478483485-3948895461-503 - Limited - Disabled) gemin (S-1-5-21-2612471623-1478483485-3948895461-1001 - Administrator - Enabled) => C:\Users\gemin Invité (S-1-5-21-2612471623-1478483485-3948895461-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2612471623-1478483485-3948895461-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.) Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.6.0.52 - Adobe Inc.) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_1) (Version: 22.1.0.94 - Adobe Inc.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.10.13.408 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{4fedae1b-6980-4848-9ba0-229c946a3dac}) (Version: 2.10.13.408 - Advanced Micro Devices, Inc.) Hidden Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team) Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) CORSAIR iCUE Software (HKLM-x32\...\{1FF2D1F1-48E8-4819-9E68-C7C14143494A}) (Version: 3.27.68 - Corsair) CrystalDiskInfo 8.12.7 Shizuku Edition (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.7 - Crystal Dew World) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.0948 - Disc Soft Ltd) Data Lifeguard Diagnostic version 1.37 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) Emby Server (HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\Emby Server) (Version: 4.3 - Emby Team) Epic Games Launcher (HKLM-x32\...\{FA10E700-F142-40B6-BB21-B93C55E0EA24}) (Version: 1.1.267.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Forza Horizon 5 (HKLM-x32\...\{FB4BA439-C3B9-4D8A-90AA-4DA376CD5093}_is1) (Version: 1.405.2.0 - Microsoft Studios) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) K-Lite Codec Pack 16.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.0.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.55 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29910 (HKLM-x32\...\{53f1dc9d-ed94-4650-a079-129785ce7905}) (Version: 14.28.29910.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation) Movavi Video Converter 19 Premium (HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\Movavi Video Converter 19 Premium) (Version: 19.3.0 - Movavi) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation) NVIDIA Pilote graphique 497.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.29 - NVIDIA Corporation) OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.) Out Run version 1.0 (HKLM-x32\...\{683BA348-87CA-4709-AEDC-6842ED10D3D4}_is1) (Version: 1.0 - RetroGaming Micro) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden ProRealTime (HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\ProRealTime_is1) (Version: 1.19 - IT-Finance) QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8720.1 - Realtek Semiconductor Corp.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.47.484 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.0 - Rockstar Games) Serato DJ Pro (HKLM\...\{66BFC4B8-DB48-4B4A-9F41-D4D7B04E996E}) (Version: 2.5.0.2061 - Serato Limited) Hidden Serato DJ Pro (HKLM-x32\...\{91d35fa4-0b1a-43d5-afae-3a32e9484cec}) (Version: 2.5.0.2061 - Serato Limited) Shutdown-IT (HKLM-x32\...\Shutdown-IT) (Version: - ) STAR WARS Jedi - Fallen Order™ (HKLM-x32\...\{D00A89F1-2D8C-4589-B1D1-73A6544E3B1F}) (Version: 1.0.10.0 - Electronic Arts, Inc.) Streets of Rage 4 (HKLM-x32\...\Streets of Rage 4_is1) (Version: - ) Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: 7.0.1-50044 - Synology) Synology Drive Client (remove only) (HKLM\...\Synology Drive) (Version: 7.0.1.12667 - Synology, Inc.) Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - ) Uplay (HKLM-x32\...\Uplay) (Version: 100.0 - Ubisoft) VirtualDJ 2021 (HKLM\...\{4C873957-3A06-4785-8AB1-089333EDF685}) (Version: 8.5.6156.0 - Atomix Productions) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) Win32DiskImager version 1.0.0 (HKLM-x32\...\{3DFFA293-DF2C-4B23-92E5-3433BDC310E1}}_is1) (Version: 1.0.0 - ImageWriter Developers) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Wondershare Recoverit(Build 10.0.0.48) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 10.0.0.48 - Wondershare Software Co.,Ltd.) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-03] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-31] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-31] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-12-25] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.181.0_x64__dt26b99r8h8gj [2019-10-28] (Realtek Semiconductor Corp) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll (Synology Inc. -> ) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (Synology Inc. -> TODO: ) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (Synology Inc. -> TODO: ) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (Synology Inc. -> TODO: ) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (Synology Inc. -> TODO: ) CustomCLSID: HKU\S-1-5-21-2612471623-1478483485-3948895461-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-11-03] (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-11-03] (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-11-03] (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-11-03] (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-11-03] (Synology Inc. -> TODO: ) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-07] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-07] (Adobe Inc. -> ) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-10-30] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-10-30] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-11] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0bc9105c62ca22fb\nvshext.dll [2021-12-15] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-10-07] (Adobe Inc. -> ) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-11] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_S-1-5-21-2612471623-1478483485-3948895461-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll [2021-11-03] (Synology Inc. -> ) ContextMenuHandlers6_S-1-5-21-2612471623-1478483485-3948895461-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\gemin\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll [2021-11-03] (Synology Inc. -> ) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\gemin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Modules chargés (Avec liste blanche) ============= 2022-01-06 20:01 - 2022-01-06 20:01 - 005511927 _____ () [Fichier non signé] C:\Users\gemin\AppData\Local\JDownloader 2.0\tmp\7zip\SevenZipJBinding-0EsPGE1ZKaCb\lib7-Zip-JBinding.dll 2022-01-06 20:01 - 2022-01-06 20:01 - 000040448 _____ () [Fichier non signé] C:\Users\gemin\AppData\Local\Temp\proxy_vole7236887574994851090.dll 2021-08-18 15:53 - 2020-09-24 15:04 - 002193016 _____ (Image Line -> Propellerhead Software AB) [Fichier non signé] C:\Program Files\Common Files\Propellerhead Software\ReWire\ReWire.dll 2022-01-06 20:01 - 2022-01-06 20:01 - 000254464 ____N (Java(TM) Native Access (JNA)) [Fichier non signé] C:\Users\gemin\AppData\Local\JDownloader 2.0\tmp\jna\jna375922070364970419.dll 2019-10-27 14:37 - 2019-10-27 14:37 - 420862976 _____ (NVIDIA Corporation) [Fichier non signé] C:\Users\gemin\Documents\VirtualDJ\Plugins64\cud101.dll 2019-07-28 19:54 - 2019-07-28 19:54 - 136938496 _____ (NVIDIA Corporation) [Fichier non signé] C:\Users\gemin\Documents\VirtualDJ\Plugins64\cuf101.dll 2020-02-07 17:40 - 2020-02-07 17:40 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll 2021-01-14 19:43 - 2021-01-14 19:42 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-01-14 19:43 - 2021-01-14 19:42 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2021-01-14 19:43 - 2021-01-14 19:42 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-12-16 00:14 - 2021-01-14 19:42 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll 2020-03-13 18:18 - 2020-03-13 18:18 - 005139576 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Qt5Core.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gemin\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2612471623-1478483485-3948895461-1001\...\StartupApproved\Run: => "uTorrent" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{BCD830DB-2A63-4DB2-9E02-7D4A0171D36C}J:\red dead redemption 2\rdr2.exe] => (Allow) J:\red dead redemption 2\rdr2.exe => Pas de fichier FirewallRules: [TCP Query User{0355DE67-FDE0-40C2-B426-44159DA1EC02}J:\red dead redemption 2\rdr2.exe] => (Allow) J:\red dead redemption 2\rdr2.exe => Pas de fichier FirewallRules: [UDP Query User{1ECBD6AD-58F0-4E43-B7AA-E80A9BF82C20}J:\gtav\gta5.exe] => (Allow) J:\gtav\gta5.exe => Pas de fichier FirewallRules: [TCP Query User{EE718B5D-9F83-4A6B-8D47-FF1332BACD16}J:\gtav\gta5.exe] => (Allow) J:\gtav\gta5.exe => Pas de fichier FirewallRules: [UDP Query User{8A6FB413-E824-4D57-A048-91CF5565107B}C:\users\gemin\appdata\roaming\emby-server\system\embyserver.exe] => (Block) C:\users\gemin\appdata\roaming\emby-server\system\embyserver.exe => Pas de fichier FirewallRules: [TCP Query User{DF52A6D8-CF76-48B2-A2BB-38F82E6141DA}C:\users\gemin\appdata\roaming\emby-server\system\embyserver.exe] => (Block) C:\users\gemin\appdata\roaming\emby-server\system\embyserver.exe => Pas de fichier FirewallRules: [{8B31B82B-EDBB-4657-9E1C-AA177DFB9794}] => (Allow) C:\Users\gemin\AppData\Roaming\Emby-Server\system\EmbyServer.dll => Pas de fichier FirewallRules: [{47EB81FE-6BFC-446C-A1A6-A50B768499DD}] => (Allow) C:\Users\gemin\AppData\Roaming\Emby-Server\system\EmbyServer.dll => Pas de fichier FirewallRules: [{0712196A-A454-4C5D-AFE1-F1AA90D63028}] => (Allow) C:\Users\gemin\AppData\Roaming\Emby-Server\system\EmbyServer.dll => Pas de fichier FirewallRules: [{1AB07902-C59C-4293-90F0-B4B8CFBDDA71}] => (Allow) C:\Users\gemin\AppData\Roaming\Emby-Server\system\EmbyServer.dll => Pas de fichier FirewallRules: [{D68D9316-A4AE-4E32-8291-54EC26ED9EE3}] => (Allow) LPort=8920 FirewallRules: [{49933AF9-E375-40F1-833F-498D788FA76A}] => (Allow) LPort=8096 FirewallRules: [{AD7BC757-CD65-479F-B52F-2452D04CEDF6}] => (Allow) LPort=7359 FirewallRules: [UDP Query User{AD976631-A11A-4CB5-8049-0A68F7467AA0}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{0ADE7D1C-05D3-48E0-8EC7-732B648972C0}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{20EE3274-8BF9-4DD7-B3B6-6C3FAB488691}J:\gta v\grand theft auto v\gta5.exe] => (Allow) J:\gta v\grand theft auto v\gta5.exe => Pas de fichier FirewallRules: [TCP Query User{1071BCF2-62BE-4048-9510-0A6D8EF44FB5}J:\gta v\grand theft auto v\gta5.exe] => (Allow) J:\gta v\grand theft auto v\gta5.exe => Pas de fichier FirewallRules: [UDP Query User{9C0B15CB-4E91-4C44-8ADB-DA31A830C633}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{43B1BF6A-E2CA-4BF3-A2CC-AF96EC04CA44}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{11A53903-7818-4A1E-94AA-29BF16635FFA}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) FirewallRules: [UDP Query User{A34B88BD-3A19-451E-AFD2-DF85038C147C}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) FirewallRules: [TCP Query User{C3674827-6953-4ADA-9139-173FE00EBCB1}C:\program files\adoptopenjdk\jdk-11.0.10.9-hotspot\bin\javaw.exe] => (Allow) C:\program files\adoptopenjdk\jdk-11.0.10.9-hotspot\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{22113203-6536-4254-B108-97A35E6B080F}C:\program files\adoptopenjdk\jdk-11.0.10.9-hotspot\bin\javaw.exe] => (Allow) C:\program files\adoptopenjdk\jdk-11.0.10.9-hotspot\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{77B44116-70CE-4FED-863C-1D29390E648C}C:\users\gemin\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\gemin\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.) FirewallRules: [UDP Query User{B07B0118-DE8A-4401-B4EE-2FCDFF831F8B}C:\users\gemin\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\gemin\appdata\local\synologydrive\synologydrive.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.) FirewallRules: [TCP Query User{EA67F168-7916-4CBD-B080-61E2D9DA65C1}C:\program files\serato\serato dj pro\serato dj pro.exe] => (Block) C:\program files\serato\serato dj pro\serato dj pro.exe (Serato) [Fichier non signé] FirewallRules: [UDP Query User{5E4BE1D7-617D-4D2A-B37E-D86A9E756B47}C:\program files\serato\serato dj pro\serato dj pro.exe] => (Block) C:\program files\serato\serato dj pro\serato dj pro.exe (Serato) [Fichier non signé] FirewallRules: [{2C8FC23A-1F94-4E18-85E1-78AEA45D539A}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\rekordbox.exe => Pas de fichier FirewallRules: [{BFDD456D-0050-44B5-A2EA-F4D522DD2A8B}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\psvnfsd.exe => Pas de fichier FirewallRules: [{CCC41D4B-F5E0-40A2-A2C3-A1E41C3C69F9}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\psvlinksysmgr.exe => Pas de fichier FirewallRules: [{CE537641-D5C6-418E-A44F-795D68B09B06}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\edb_streamd.exe => Pas de fichier FirewallRules: [{EECB6B73-F31E-49F4-BFD4-BB71E8C7167C}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\ls-unity-rekordbox-win-64bit.exe => Pas de fichier FirewallRules: [{F0D1BF30-B8A7-4932-944D-480996994314}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\rbHttpServer.exe => Pas de fichier FirewallRules: [{76E86E9C-666F-4CBB-B9AF-62DFBF7D34A2}] => (Allow) C:\Program Files\Pioneer\rekordbox 6.5.1\rekordboxAgent-win32-x64\rekordboxAgent.exe => Pas de fichier FirewallRules: [TCP Query User{C3263A1B-147B-4D94-845C-E69E685339EF}C:\program files\microsoft office\office16\lync.exe] => (Allow) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{63C0C5E5-D00D-4860-8612-04AF8B7CE437}C:\program files\microsoft office\office16\lync.exe] => (Allow) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{F8FE55B9-3441-4DD2-9832-A6C4B445F3B8}J:\the sims 4\game\bin\ts4_x64.exe] => (Allow) J:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé] FirewallRules: [UDP Query User{FF0DB7CD-3490-4A7C-AD42-C611183DC1C5}J:\the sims 4\game\bin\ts4_x64.exe] => (Allow) J:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé] FirewallRules: [{FA165694-2343-4300-83E8-161CD66DD18A}] => (Allow) LPort=57209 FirewallRules: [{E2A61806-BAA4-4361-ABA4-E3863DBD2742}] => (Allow) LPort=57210 FirewallRules: [{FEECCC75-F39B-42D6-83C4-7F6581121476}] => (Allow) LPort=57211 FirewallRules: [{4886C85F-1A67-48FE-A8F0-E19C1F3DA911}] => (Allow) LPort=57212 FirewallRules: [{66613238-A911-41D0-95B6-3B6FAEF26C23}] => (Allow) LPort=57213 FirewallRules: [{5081DDC9-0130-4EFD-9A33-B3B7A1C4FC0E}] => (Allow) LPort=57214 FirewallRules: [{01F08856-2F32-47DA-9B72-6260305C95E5}] => (Allow) LPort=57215 FirewallRules: [{3C83F596-DF1A-4DED-84B5-315B3447E2FA}] => (Allow) LPort=57216 FirewallRules: [{0D7B77B1-2A43-4F9D-932F-013D82F662DD}] => (Allow) LPort=57217 FirewallRules: [{B71AD00E-F4DE-4020-99CA-E7FBF26691D0}] => (Allow) LPort=57218 FirewallRules: [{317BF524-65B7-4949-999A-F31BD25DC12F}] => (Allow) LPort=57209 FirewallRules: [{0749CE03-A422-4652-B852-4E740A94F8DA}] => (Allow) LPort=57210 FirewallRules: [{A6DCCAF0-186D-4193-B486-45519DDE4454}] => (Allow) LPort=57211 FirewallRules: [{9B829377-0C02-4845-8FA1-EAA982293F1B}] => (Allow) LPort=57212 FirewallRules: [{DECE8F0F-1BB0-4FF0-8BE1-512D1A9873AF}] => (Allow) LPort=57213 FirewallRules: [{2DCD94E5-06B5-4D50-ABA7-7856C5BEF7C7}] => (Allow) LPort=57214 FirewallRules: [{1E7A23A9-B79E-4AD1-B9F9-E84F76E34956}] => (Allow) LPort=57215 FirewallRules: [{51E2FF32-F727-4E83-B802-970D2215686A}] => (Allow) LPort=57216 FirewallRules: [{473D9E42-8E90-477F-A1AB-2290E156E807}] => (Allow) LPort=57217 FirewallRules: [{26FD0987-F1E0-4A80-8C8A-1D4BCC796B3C}] => (Allow) LPort=57218 FirewallRules: [{E3A2341B-6729-47D0-B839-B047CA280E19}] => (Allow) LPort=23007 FirewallRules: [{874725C4-D838-4E7C-B209-626F4AD09453}] => (Allow) LPort=23008 FirewallRules: [{B7178114-CDA5-4509-9BD5-D217010FD72C}] => (Allow) LPort=33009 FirewallRules: [{BF86AE92-672B-4BED-84E5-9C8E029B3AAA}] => (Allow) LPort=33010 FirewallRules: [{5E01C40A-F2C7-4FDD-B0CF-3B0C4C04BDBF}] => (Allow) LPort=33011 FirewallRules: [{3C2F755F-B77C-469E-B802-CC8284A9A484}] => (Allow) LPort=43012 FirewallRules: [{060AC636-BD5E-4E13-9019-6A09050108A7}] => (Allow) LPort=43013 FirewallRules: [{079B6F16-7A0E-41A4-8428-7D906D70AD85}] => (Allow) LPort=53014 FirewallRules: [{E100541F-270C-420A-A5F8-5BB67BE65F53}] => (Allow) LPort=53015 FirewallRules: [{974420D4-F809-476F-BA27-C60F2CE76FC2}] => (Allow) LPort=53016 FirewallRules: [{D94A99D6-1901-4912-8CE1-B0044B1CC20C}] => (Allow) LPort=23007 FirewallRules: [{B3DFDCD4-720B-4807-AB95-705AB6A88C89}] => (Allow) LPort=23008 FirewallRules: [{B54E6396-F3F8-4E5B-9FF6-E27876458D2E}] => (Allow) LPort=33009 FirewallRules: [{44A1462E-F154-4B1B-B55E-0CCC9D09EE65}] => (Allow) LPort=33010 FirewallRules: [{1294E9B6-408B-48A4-A4F8-10F39D27EAFD}] => (Allow) LPort=33011 FirewallRules: [{C423951C-6E41-4C94-B0FF-638CDAC8D70B}] => (Allow) LPort=43012 FirewallRules: [{60AD5703-3AEB-45A0-A796-1E8FAC19F950}] => (Allow) LPort=43013 FirewallRules: [{C5B86CD2-5D3B-46A5-AA59-FEDA32AD1505}] => (Allow) LPort=53014 FirewallRules: [{01AD7485-D4E5-4309-AAF6-14D5F123D0DC}] => (Allow) LPort=53015 FirewallRules: [{86E02531-C9EC-41D5-AB51-65B046BD5502}] => (Allow) LPort=53016 FirewallRules: [{3E2C25D8-D245-4D37-BD9B-88F666410C53}] => (Allow) LPort=50053 FirewallRules: [{0C72059F-EDC2-4C2E-A177-092216F391DC}] => (Allow) LPort=50053 FirewallRules: [TCP Query User{BBCD8ECF-73CA-418F-AC4A-3AD4E1807C81}W:\the sims 4\game\bin\ts4_x64.exe] => (Allow) W:\the sims 4\game\bin\ts4_x64.exe => Pas de fichier FirewallRules: [UDP Query User{853E8CF9-40C4-4D84-A29F-F6E5210194C7}W:\the sims 4\game\bin\ts4_x64.exe] => (Allow) W:\the sims 4\game\bin\ts4_x64.exe => Pas de fichier FirewallRules: [{CACD02D0-5148-4F26-B656-6EA712A454A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{52E51487-97C9-41D0-A878-C4FE75A432A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{E5C2B247-96EC-448F-875E-BAFBD6DED397}J:\forza horizon 5\forzahorizon5.exe] => (Block) J:\forza horizon 5\forzahorizon5.exe () [Fichier non signé] FirewallRules: [UDP Query User{D1027A61-B482-4FCE-A1EF-DD58CDED9297}J:\forza horizon 5\forzahorizon5.exe] => (Block) J:\forza horizon 5\forzahorizon5.exe () [Fichier non signé] FirewallRules: [{71948B88-110A-46A3-BD15-82B060F5DDE7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{546B0274-F2CF-4528-8D79-CABC8359D077}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{DCFC5E33-12F9-4496-9241-EBA580C85116}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{DF1379BB-BE5C-48EE-89C0-038A5F9E302C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{F818BF59-30A8-40CB-9B6F-3EF5A4F1B4C4}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{52D97DAF-B029-42C2-8C03-B488360D8CCF}] => (Allow) J:\Star Wars Jedi\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Fichier non signé] FirewallRules: [{331BEEB5-74D9-4B41-AFD0-25D7D7AC2E48}] => (Allow) J:\Star Wars Jedi\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Fichier non signé] FirewallRules: [{ED9F41A9-993D-48A7-BFEE-834DB1AF9395}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 03-01-2022 18:14:13 Serato DJ Pro 04-01-2022 22:53:56 Removed Apple Software Update 06-01-2022 16:25:09 Installed BlueSoleil A9.2.496.11. ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/07/2022 02:17:21 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (01/06/2022 04:31:49 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\YANNICK$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 06 Jan 2022 15:31:49 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 048ef0e7-659d-4089-8dde-2088d1a3529c Méthode : GET(547ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (01/06/2022 04:27:49 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\YANNICK$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 06 Jan 2022 15:27:50 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: a6da89bc-e8a5-494e-99ba-ae5f72685ee0 Méthode : GET(750ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (01/06/2022 04:12:13 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\YANNICK$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 06 Jan 2022 15:12:14 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 4937f04e-9b74-4069-bfd1-88e35613b008 Méthode : GET(375ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (01/06/2022 05:26:43 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (01/05/2022 09:48:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante mbamtray.exe, version : 4.0.0.1190, horodatage : 0x61aa6c91 Nom du module défaillant : Qt5Core.dll, version : 5.14.1.0, horodatage : 0x603971ce Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000219dc5 ID du processus défaillant : 0x1038 Heure de début de l’application défaillante : 0x01d7f4c50e966710 Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Chemin d’accès du module défaillant: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll ID de rapport : 28f425bb-2595-4a77-a888-8cca6c11e732 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/05/2022 07:26:21 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (01/04/2022 04:51:58 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Erreurs système: ============= Windows Defender: ================ Date: 2022-01-06 15:31:52 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {6D70D10A-BA3E-4C9E-83D2-1419EC297A22} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-05 14:22:20 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {E5E491A1-0C9F-4C2C-9E33-A7C2375AF967} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-03 13:38:15 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {86F0C52C-4C39-4B98-BC45-2A3C426EE3BC} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-02 14:42:38 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {239C3AE8-5BFC-4C3D-9E47-DEC8CBF381EE} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-01-01 14:45:31 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {AE7011E3-5D0B-4D14-9ABE-8D8C454BA749} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2020-10-21 18:56:54 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2020-09-10 22:58:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 3.10 07/20/2019 Carte mère: Micro-Star International Co., Ltd B450 TOMAHAWK MAX (MS-7C02) Processeur: AMD Ryzen 5 3600 6-Core Processor Pourcentage de mémoire utilisée: 49% Mémoire physique - RAM - totale: 16334.41 MB Mémoire physique - RAM - disponible: 8262.46 MB Mémoire virtuelle totale: 18766.41 MB Mémoire virtuelle disponible: 5815.76 MB ==================== Lecteurs ================================ Drive c: (Windows 10) (Fixed) (Total:190.43 GB) (Free:61.8 GB) NTFS Drive d: (Téléchargements SSD1) (Fixed) (Total:209.96 GB) (Free:118.52 GB) NTFS Drive e: (Seagate externe) (Fixed) (Total:1863 GB) (Free:1284.56 GB) NTFS Drive j: (Jeux NVMe) (Fixed) (Total:931.5 GB) (Free:556.27 GB) NTFS Drive n: (Racine Nas SSD2) (Fixed) (Total:931.5 GB) (Free:345.84 GB) NTFS Drive t: (Documents transit SSD1) (Fixed) (Total:75.92 GB) (Free:48.75 GB) NTFS Drive z: (Vieux disque) (Fixed) (Total:185.79 GB) (Free:185.64 GB) NTFS \\?\Volume{9295357c-c8df-4f25-9302-e878fdb09c88}\ (Récupération) (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS \\?\Volume{2a0b7eda-0000-0000-0000-a0722e000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS \\?\Volume{bafe956b-6944-46aa-9d82-20012f60cbd8}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 476.9 GB) (Disk ID: ABA09533) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 186.3 GB) (Disk ID: 2A0B7EDA) Partition 1: (Active) - (Size=185.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=530 MB) - (Type=27) ========================================================== Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 4. ==================== Fin de Addition.txt =======================