Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-04-2022 Exécuté par asus (30-04-2022 12:19:52) Exécuté depuis C:\Users\asus\Downloads Microsoft Windows 10 Famille Version 21H2 19044.1645 (X64) (2020-08-19 14:54:20) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3586017549-157516123-175824207-500 - Administrator - Disabled) asus (S-1-5-21-3586017549-157516123-175824207-1002 - Administrator - Enabled) => C:\Users\asus DefaultAccount (S-1-5-21-3586017549-157516123-175824207-503 - Limited - Disabled) Invité (S-1-5-21-3586017549-157516123-175824207-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3586017549-157516123-175824207-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) ABBYY FineReader 9.0 Sprint (HKLM-x32\...\{F9000000-0018-0000-0000-074957833700}) (Version: 9.01.513.58212 - ABBYY) Hidden ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 22.001.20117 - Adobe Systems Incorporated) AirDroid 3.2.2.0 (HKLM-x32\...\AirDroid) (Version: 3.2.2.0 - Sand Studio) Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.4.117.01527 - Alcor Micro Corp.) ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS) ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.4 - ASUS) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.13 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0005 - ASUS) ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.8 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS) ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.10.123 - ASUS Cloud Corporation) ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5022.52 - CyberLink Corp.) Hidden ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5022.52 - CyberLink Corp.) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0025 - ASUS) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 22.3.6008 - Avast Software) Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.) BurnAware Free 6.6 (HKLM-x32\...\BurnAware Free_is1) (Version: - Burnaware) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Driver: Parallel Lines (HKLM-x32\...\{31CB0D80-1866-462A-9455-88614410971F}) (Version: 1.00.0000 - Ubisoft) Epson Event Manager (HKLM-x32\...\{8A17C27D-0325-400C-8AA9-DAA6B16CBD74}) (Version: 2.40.0009 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON SX130 Series Printer Uninstall (HKLM\...\EPSON SX130 Series) (Version: - SEIKO EPSON Corporation) Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.18.1.3 - SCS Software) FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time) Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GIMP 2.10.10 (HKLM\...\GIMP-2_is1) (Version: 2.10.10 - The GIMP Team) Glary Utilities 5.181 (HKLM-x32\...\Glary Utilities 5) (Version: 5.181.0.210 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 101.0.4951.41 - Google LLC) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 100.0.1185.50 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\OneDriveSetup.exe) (Version: 22.065.0412.0004 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{312F7EE7-37D0-484D-B974-0CE1B8560C79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{EB3DF0F0-0525-4C5A-A2F8-DEC868A3075D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA Pilote graphique 388.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.73 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Raccolta foto (HKLM-x32\...\{86A1CEAD-EF47-47BB-AE79-DA8C09E15382}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Re-Volt patch 12.07 (HKLM-x32\...\Re-Volt) (Version: patch 12.07 - ) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Shutter (HKLM-x32\...\Shutter_is1) (Version: 2.90 - [den4b] Denis Kozlov) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) UpdateAssistant (HKLM-x32\...\{B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6}) (Version: 1.9.0.0 - Microsoft Corporation) Hidden VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS) WinRAR 5.90 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.) Packages: ========= 6play -> C:\Program Files\WindowsApps\M6Web.M6_3.5.1.64_x64__ewak77gqn492e [2017-05-24] (M6 Web) Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_3.4.500.2_x64__h6adky7gbf63m [2022-04-08] (Gameloft SE) ASUS Tutor -> C:\Program Files\WindowsApps\B9ECED6F.ASUSTutor_1.0.0.2_neutral__qmba6cd70vzyy [2017-05-24] (ASUSTeK COMPUTER INC.) ASUS Welcome -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy [2017-05-24] (ASUSTeK COMPUTER INC.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-11] (Microsoft Corporation) Farming Simulator 14 -> C:\Program Files\WindowsApps\GIANTSSoftware.FarmingSimulator14_1.3.0.1_x86__fa8jxm5fj0esw [2018-12-21] (GIANTS Software) Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_3.1.10383.1000_x86__8wekyb3d8bbwe [2019-06-10] (Microsoft Corporation) GT Racing 2: The Real Car Experience -> C:\Program Files\WindowsApps\GAMELOFTSA.GTRacing2TheRealCarExperience_1.2.8.1_x86__0pp20fcewvvtj [2020-10-19] (GAMELOFT SA) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-03-25] (Microsoft Studios) [MS Ad] MSN Voyage -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2017-05-24] (Microsoft Corporation) [MS Ad] MYTF1 -> C:\Program Files\WindowsApps\eTF1.MYTF1_6.1.13.0_neutral__39pc08wxtkwcg [2017-12-17] (eTF1) NRJ12 -> C:\Program Files\WindowsApps\NRJ.NRJ12_1.1.1.1_x64__js6xree90qvwe [2017-05-24] (NRJ-AUDIO) Pinball FX2 -> C:\Program Files\WindowsApps\Microsoft.Studios.PinballFx2_1.8.1.957_x86__8wekyb3d8bbwe [2017-05-24] (Microsoft Studios) Sonic Dash -> C:\Program Files\WindowsApps\SegaNetworksInc.56538047DFC80_3.6.4.0_x86__as33fap47kd3c [2017-12-17] (SEGA Networks Inc) The World Clock -> C:\Program Files\WindowsApps\B9ECED6F.TheWorldClock_1.0.0.6_neutral__qmba6cd70vzyy [2017-05-24] (ASUSTeK COMPUTER INC.) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-12] (Twitter Inc.) UNO ™ & Friends – Le populaire jeu de cartes devient social ! -> C:\Program Files\WindowsApps\GAMELOFTSA.UNOFriends_1.9.2.1_x86__0pp20fcewvvtj [2017-05-24] (GAMELOFT SA) Zombie Tsunami -> C:\Program Files\WindowsApps\Mobigame.ZombieTsunami_1.0.0.9_x86__h25k0et6wkna2 [2017-05-24] (Mobigame) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3586017549-157516123-175824207-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-03-25] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-03-25] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-03-25] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FreeTime\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time) [Fichier non signé] ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-09-06] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-09-06] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-03-25] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSContextMenu.DLL [2012-08-31] (ASUS Cloud Corporation -> ASUS Cloud Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FreeTime\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time) [Fichier non signé] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-19] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-03-25] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-09-06] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Re-Volt\Revolt-Cars.lnk -> hxxp://www.revolt-cars.com Shortcut: C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Re-Volt\RVTT - Re-Volt Tip Top.lnk -> hxxp://www.rvtt.com ==================== Modules chargés (Avec liste blanche) ============= 2012-09-11 15:01 - 2012-09-11 15:01 - 000009216 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2012-08-22 16:31 - 2012-08-22 16:31 - 000224256 _____ (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll 2012-09-11 15:01 - 2012-09-11 15:01 - 000055296 _____ (ASUSTeK) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll 2012-09-11 15:01 - 2012-09-11 15:01 - 000032768 _____ (ASUSTek) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\OVS.dll 2008-04-11 12:54 - 2008-04-11 12:54 - 000348160 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\MSVCR71.dll 2012-09-11 15:01 - 2012-09-11 15:01 - 001595392 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3586017549-157516123-175824207-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset SearchScopes: HKU\S-1-5-21-3586017549-157516123-175824207-1002 -> {1C3371B9-2C74-449F-9678-6AC2B1DE4DA0} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle Toolbar: HKLM - Pas de nom - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Pas de fichier ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2019-01-04 14:30 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Smart Projects\IsoBuster;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3586017549-157516123-175824207-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\asus\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\papier peint de la visionneuse de photos windows.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "Nvtmru" HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "mcui_exe" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "EEventManager" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "AlcoholAutomount" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "cacaoweb" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "EPSON SX130 Series" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3586017549-157516123-175824207-1002\...\StartupApproved\Run: => "AirDroid 3" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{9865FF6C-82B0-446A-87B3-29E62ECBBE8B}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{5516B3A7-32E3-4C1F-A5C3-D3991D111F0E}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{4CB8EF65-E7CD-497B-A53E-88F37F4235C2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{20866C49-3FCA-4711-8DE9-1DCF2AD421DE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5F1F4167-E91F-492D-8E82-C0C3438AC631}] => (Block) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio) FirewallRules: [{7D6B51EE-CB33-43A9-B92D-853AC30C43BD}] => (Block) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio) FirewallRules: [UDP Query User{2EAE9ECD-A5AB-4C1C-865A-96957ABB6464}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio) FirewallRules: [TCP Query User{BB5A6335-515F-4487-A193-36B5B7F3EB81}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio) FirewallRules: [{367D1C48-47EB-4C5C-A629-F8B1BDFD3950}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E7FF4492-07F4-4E7B-B393-CC19E1A4330B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BC007303-8819-49FF-8A80-AA17FBE067A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{881A3954-EEE2-41E4-B6E0-EA2A59EDD9D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Race\RaceConfig_Steam.exe (Simbin Development Team AB) [Fichier non signé] FirewallRules: [{D8499573-136C-4D5E-965E-A69A3F3567AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Race\RaceConfig_Steam.exe (Simbin Development Team AB) [Fichier non signé] FirewallRules: [{EBD28409-821F-4ACF-9C7A-D8B8945E3483}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Race\SteamProxy.exe () [Fichier non signé] FirewallRules: [{CE2334D9-C23B-4B57-9C36-787EAC31FF6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Race\SteamProxy.exe () [Fichier non signé] FirewallRules: [{55D841BA-3B6F-4AC8-992A-21B77714C543}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{8AE4A8A4-BA1E-4F8F-A5F0-DC199ED18F89}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{6BAEBBE1-CE40-462A-A575-EA1E7962697D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{8137C090-4D75-4FF0-9A99-CF7468DA5ED9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{58ADCBAE-EFA5-4E02-8B61-ABBE0E46CEC2}] => (Allow) LPort=1900 FirewallRules: [{2B01BBE1-1BB7-4799-9A4A-34B45761D6B1}] => (Allow) LPort=2869 FirewallRules: [{EC020938-773D-484C-B335-96D2408B4277}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0F9A1A33-268D-45BA-BDB2-4F49E16E74D8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{3EC84937-044C-4FA2-B3B4-929B9F8A1B00}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{F63F71A9-1900-4E50-A5A7-5B60F358CC14}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{E1E56A05-1019-49DA-8625-BBB39074FD52}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{9F6353B3-2396-438C-A9F3-E7DF665EC43F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{2491CABA-DC54-4975-AABD-5D0A9DD6CDE9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{E44123FB-B502-45BF-B30B-B625D6C9D1BE}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) FirewallRules: [UDP Query User{33861AAF-F78D-439B-8C81-BBE46A456944}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) FirewallRules: [{B0E6F720-53BE-4667-8BC4-0403F3E03DA8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{97D3C20E-9981-4BF5-96D5-390E0C161551}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [TCP Query User{44DEE2B0-32FA-489B-8426-98CD067E0EE8}C:\program files (x86)\acclaim\revolt\revolt.exe] => (Block) C:\program files (x86)\acclaim\revolt\revolt.exe () [Fichier non signé] FirewallRules: [UDP Query User{5EAA01F6-416F-4C7B-970F-3C0A2CA64F88}C:\program files (x86)\acclaim\revolt\revolt.exe] => (Block) C:\program files (x86)\acclaim\revolt\revolt.exe () [Fichier non signé] FirewallRules: [TCP Query User{9EDBAE5C-F7F4-4B1C-823B-3BBB4B6844DD}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{FF9C394A-7FFB-427A-9E5A-CFC40A135E34}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{724A1FA5-38FD-4986-89F1-B1979468EF27}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [UDP Query User{E0D6DD08-4A49-41EE-A13D-4E978E4D987D}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [TCP Query User{4FD36F7C-49DE-4B2D-9041-81161CC910D5}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [UDP Query User{E740FB46-0874-4073-9AD3-D2DE749ACCB3}C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\asus\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [TCP Query User{E17EB9C6-E405-451D-945F-D654FE0FF56B}C:\users\asus\downloads\cacaoweb.exe] => (Allow) C:\users\asus\downloads\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [UDP Query User{FDBF74E8-78D0-4F3B-922B-5C9D5E38E47F}C:\users\asus\downloads\cacaoweb.exe] => (Allow) C:\users\asus\downloads\cacaoweb.exe (CACAOWEB Ltd -> ) FirewallRules: [{C9AC5D7E-4FEE-4633-B34A-2349AE7015EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [{E53F1E8C-12F9-46DE-B115-66BD305F36B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{2DBEE619-5EA2-4E5F-BA61-35C86B623CDB}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [UDP Query User{B41C15A6-0C50-410D-8DB5-8ED253DEFC02}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{8C34956F-173B-448F-B44B-FAB299253DFE}C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe (Mail.Ru, LLC -> Crytek GmbH) FirewallRules: [UDP Query User{3A08B82D-A9A3-42B5-B077-CF8C6C1DD5DA}C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe (Mail.Ru, LLC -> Crytek GmbH) FirewallRules: [{5BA08DAC-8D99-487A-A0BE-C4393058C7CE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{46D31292-DEB4-48FF-A70B-EDA3835E3EE8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{B29703C0-2D82-4534-9DA1-CC76760594C0}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [UDP Query User{0375C5A8-8532-4577-902D-9BAAFEB58345}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Block) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{0FF99046-82ED-4BC9-8DBA-BB16F69F2484}C:\users\asus\downloads\release_2.1.6.4\nfsw.exe] => (Allow) C:\users\asus\downloads\release_2.1.6.4\nfsw.exe (Electronic Arts -> Electronic Arts) FirewallRules: [UDP Query User{3EBFE870-40C9-4525-9121-5399297AEF1D}C:\users\asus\downloads\release_2.1.6.4\nfsw.exe] => (Allow) C:\users\asus\downloads\release_2.1.6.4\nfsw.exe (Electronic Arts -> Electronic Arts) FirewallRules: [{BCFC6BF1-4809-4F7F-8179-04A2075511A4}] => (Block) C:\users\asus\downloads\release_2.1.6.4\nfsw.exe (Electronic Arts -> Electronic Arts) FirewallRules: [{27E1DEDB-821C-4982-90C9-91DFEEED0E86}] => (Block) C:\users\asus\downloads\release_2.1.6.4\nfsw.exe (Electronic Arts -> Electronic Arts) FirewallRules: [{B925F8C6-B16F-4B4F-9F51-A9CBC78F1C2E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{9F628C86-B477-4DC7-A996-0243F7E24BF7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{BAF4A4E8-A79A-4461-9AAC-B12F5C640A24}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{65B21934-8137-4136-9CF9-09C4ABEB4B9D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{2F46A517-0FAA-4CBF-93DD-B3D93BD75474}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{0BC5B94B-4DC1-4D6E-8969-046052A11D98}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{BC2990DC-7F00-43B6-A074-D6231F465892}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{639E7737-36B5-4DE5-B8B4-B69D95FA75C6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{0D1C055F-6BDA-4F0B-869B-23849261E3E0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{C2202146-63FF-4B74-BCCE-3ED71BB2A070}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{73C3486F-604A-4FB3-B990-BD4BF3D77360}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{7F5B94BB-5ECD-49FF-B090-9A7455FD0D52}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A7988DC3-98C8-4599-BDAD-965021791FDB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{173FF917-B99D-4689-986D-ABD6134155A6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{AE4BFAB9-3F91-4B1B-8D16-55E28B987EA5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{64BA8527-1601-4530-AA6B-FD6CE7C9DC35}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{AFB8141B-FC0B-4251-94C3-B507D6C42048}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{2FC0DDB4-DE07-43D9-AA11-8DE703561244}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{8B8FE1EB-0859-4667-8AEC-88FEEB82C858}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 23-04-2022 16:05:53 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (04/30/2022 09:02:11 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.19041.1645, horodatage : 0x7c06cc0e Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1645, horodatage : 0x630193b4 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000010b362 ID du processus défaillant : 0x1844 Heure de début de l’application défaillante : 0x01d85c5e12476cc4 Chemin d’accès de l’application défaillante : C:\WINDOWS\Explorer.EXE Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : a81bfdda-6969-4ec2-9450-34f3546a4338 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (04/27/2022 03:36:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante mousocoreworker.exe, version : 10.0.19041.1620, horodatage : 0x68a5af28 Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x2bd748bf Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000007286e ID du processus défaillant : 0x15ac Heure de début de l’application défaillante : 0x01d8527144a5a4be Chemin d’accès de l’application défaillante : C:\Windows\System32\mousocoreworker.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll ID de rapport : e43bc965-d94c-45d7-b919-620a49aef072 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (04/15/2022 04:58:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Data (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (04/15/2022 04:58:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur OS (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (04/08/2022 01:50:53 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Data (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (04/08/2022 01:50:52 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur OS (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (04/03/2022 12:03:26 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Data (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (04/03/2022 12:03:24 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur OS (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (04/30/2022 08:47:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service NcdAutoSetup. Error: (04/30/2022 08:47:00 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BFE. Error: (04/28/2022 05:33:02 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (04/27/2022 06:47:28 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (04/27/2022 02:50:26 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (04/26/2022 03:08:22 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (04/25/2022 07:21:32 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (04/25/2022 03:06:32 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 CodeIntegrity: =============== Date: 2022-04-30 11:00:58 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\setup\uat_2900.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. X75VD1.406 12/26/2012 Carte mère: ASUSTeK COMPUTER INC. X75VD1 Processeur: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz Pourcentage de mémoire utilisée: 68% Mémoire physique - RAM - totale: 6029.57 MB Mémoire physique - RAM - disponible: 1925.59 MB Mémoire virtuelle totale: 9915.46 MB Mémoire virtuelle disponible: 4320.82 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:372.26 GB) (Free:237.3 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (Data) (Fixed) (Total:537.6 GB) (Free:457.24 GB) NTFS \\?\Volume{5e1a5f51-9775-4c8c-bd52-a6e1fe146868}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.51 GB) NTFS \\?\Volume{4a2ba21b-bcf6-4726-88dd-7129a66a9bf6}\ () (Fixed) (Total:0.34 GB) (Free:0.31 GB) NTFS \\?\Volume{0ef34f70-b5ea-4d5c-94c5-5ab59c76ff20}\ (Restore) (Fixed) (Total:20.01 GB) (Free:8.48 GB) NTFS \\?\Volume{82764f10-62a6-41ac-9574-432708513e65}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F7791DB4) Partition: GPT. ==================== Fin de Addition.txt =======================