Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-06-2021
Exécuté par krack (29-06-2021 12:17:41)
Exécuté depuis C:\Users\krack\Downloads
Windows 10 Home Version 21H1 19043.1081 (X64) (2021-03-17 19:15:04)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4281242105-2254260090-2120469707-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4281242105-2254260090-2120469707-503 - Limited - Disabled)
Didier (S-1-5-21-4281242105-2254260090-2120469707-1002 - Limited - Enabled) => C:\Users\Didier
Invité (S-1-5-21-4281242105-2254260090-2120469707-501 - Limited - Disabled)
krack (S-1-5-21-4281242105-2254260090-2120469707-1001 - Administrator - Enabled) => C:\Users\krack
WDAGUtilityAccount (S-1-5-21-4281242105-2254260090-2120469707-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0) (Version: 17.0 - Adobe Inc.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0) (Version: 14.0 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boris FX Continuum 2019 Plug-ins for Adobe and Compatible Products (HKLM\...\{4488274F-E3B1-4895-BDEE-6AAB9FE70208}_is1) (Version: 12.0.0 - Boris FX, Inc.)
Boris FX Sapphire Plug-ins 2019.52 for After Effects and Compatible Products (HKLM\...\GenArts Sapphire AE_is1) (Version: 12.520 - Boris FX, Inc.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
Discord (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
ExpressVPN (HKLM-x32\...\{6fecf3aa-1a9a-4e75-aa73-9ffc33b1f046}) (Version: 7.7.12.4 - ExpressVPN)
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B8463D3835}) (Version: 7.7.12.4 - ExpressVPN) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.550 - Huawei Technologies Co., Ltd.)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{b666e502-9089-483b-9816-0774ccc9cb61}) (Version: 10.1.18295.8201 - Intel(R) Corporation)
iZotope Insight (HKLM-x32\...\iZotope Insight_is1) (Version: 1.03 - iZotope, Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
LibreOffice 7.1.3.2 (HKLM\...\{76B2DBF3-5773-4463-9EEB-D4A099EB6265}) (Version: 7.1.3.2 - The Document Foundation)
Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R24 - McAfee, LLC.)
MediaInfo 21.03 (HKLM\...\MediaInfo) (Version: 21.03 - MediaArea.net)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14026.20308 - Microsoft Corporation)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14026.20308 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Molotov (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\molotov) (Version: 4.4.2 - Molotov)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Pilote graphique 471.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.11 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Opera GX Stable 76.0.4017.208 (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Opera GX 76.0.4017.208) (Version: 76.0.4017.208 - Opera Software)
PACE License Support Win64 (HKLM\...\{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
Speedtest by Ookla (HKLM\...\{CE07C3AF-36AA-41BF-86C7-E55D4C69996F}) (Version: 1.8.134.001 - Ookla)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 4.0.0 (HKLM\...\SteelSeries Engine 3) (Version: 4.0.0 - SteelSeries ApS)
Topaz Video Enhance AI (HKLM\...\Topaz Video Enhance AI 1.9.0) (Version: 1.9.0 - Topaz Labs LLC)
Twixtor v7 for After Effects and Premiere Pro (HKLM\...\Twixtor v7 for After Effects and Premiere Pro 7.0.3) (Version: 7.0.3 - RE:Vision Effects)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
Universe (HKLM\...\Universe_is1) (Version: 2.2.2 - Red Giant & Team V.R)
VALORANT (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WD Desktop App 2.1.0.313 (HKLM-x32\...\{756e70ec-1fb0-41c8-896b-df0302d17bff}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.313 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.2.288 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)
Packages:
=========
Centre de contrôle Thunderbolt™ -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.32.0_x64__8j3eq9eme6ctt [2021-06-16] (INTEL CORP)
Dropbox - offre promotionnelle -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2021-03-19] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2020-12-07] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.9.0_x64__v10z8vjag6ke6 [2021-06-29] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-08] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.7.433.0_x64__v10z8vjag6ke6 [2021-05-21] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-19] (INTEL CORP)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.60.0_x64__wafk5atnkzcwy [2021-03-19] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-12-09] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-06-22] (NVIDIA Corp.)
OMEN Audio Control -> C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.16.228.0_x64__v10z8vjag6ke6 [2021-03-21] (HP Inc.)
OMEN Gaming Hub -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.) [Startup Task]
OMEN Light Studio -> C:\Program Files\WindowsApps\AD2F1837.OMENLightStudio_0.1.18.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0 [2021-06-29] (Spotify AB) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé]
ShellServiceObjects: Virtual Storage Mount Notification -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé]
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-05-20] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers1: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-05-20] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_2afc30ff4d07664b\nvshext.dll [2021-06-22] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\krack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Basket & Ball.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lbofgfgfgdkllfnfmipceliihehcmbmd
ShortcutWithArgument: C:\Users\krack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\zlib.dll
2020-12-09 14:13 - 2020-12-09 14:13 - 005017600 _____ (Copyright (C) 2017-2018, HP Development Company, LP.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\AWSIoTCppCLR.dll
2021-04-06 04:24 - 2021-04-06 04:24 - 002146304 _____ (Holtek Semiconductor Inc.) [Fichier non signé] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2021-04-06 04:24 - 2021-04-06 04:24 - 002284032 _____ (Holtek) [Fichier non signé] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2020-12-09 20:19 - 2020-12-09 20:19 - 000014336 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-06-19 10:55 - 2021-06-19 10:55 - 006973440 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\OmenCommandCenterApp_UWP.dll
2020-12-09 14:13 - 2020-12-09 14:14 - 000014848 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\NativeRpcClient.DLL
2020-12-09 14:13 - 2020-12-09 20:17 - 001662976 _____ (Robert Simpson, et al.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\SQLite.Interop.dll
2013-01-09 02:03 - 2013-01-09 02:03 - 000221184 _____ (SafeNet, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-02-15 19:04 - 2017-11-10 13:51 - 000180224 _____ (Western Digital Technologies, Inc.) [Fichier non signé] C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfjhiqhnhm [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5052]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
BHO: Pas de nom -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203}' -> Pas de fichier
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2020-04-01] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Pas de nom -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203}' -> Pas de fichier
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2020-04-01] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\krack\Downloads\RGB.png
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Ethernet 2: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "BakkesMod"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{1864176B-C5E4-4970-9868-874D8730E90B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A3399A6F-7207-4C29-80A8-7D3503153684}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{638930B1-5BFF-44EB-BBD8-A18B78AC6F5C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F1438B9C-82E0-44CB-8BA8-1BFD16229C17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9128F9D0-3516-40C7-A618-B2BC9AB044D1}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{34529A8E-AB82-4D4D-B194-06E65F645A42}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{FD07CA03-EB2F-4BDF-AD50-2D22C628B712}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{FE81E076-F539-4054-9FBD-34FDDB6F1DC9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{F7FC7D98-5B24-4EB4-AA67-317C11E15650}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe => Pas de fichier
FirewallRules: [{DD3F595C-9041-436C-8419-4F383E805BDB}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidApplicationManager.exe => Pas de fichier
FirewallRules: [{930DC4B7-3E79-4E1F-A95D-D9C6BF6F38F3}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\jre\bin\java.exe => Pas de fichier
FirewallRules: [{20C42A15-20EC-462B-A9B4-BE9CCBD6A423}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{10A995A6-8408-4472-86F8-D77ADA7D9F75}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EA17E9D0-C08E-46A6-8F4F-83205D345802}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C9ADC66A-6A06-4CA1-ADB6-0A46B6A6112D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{11D10D69-7ADF-4F59-AA92-F22A1CBF5258}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Fichier non signé]
FirewallRules: [{590FE4FB-DEBC-44FA-9838-A763711BE05D}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Fichier non signé]
FirewallRules: [{5B1C90EE-C0C1-4975-ADD5-10DC20B42D00}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{89E2F191-5CBC-40EB-9E41-66AD74B8B5ED}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{31AB8F1A-2C3E-4B0C-AAFF-647B40CFF25A}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{1EDA091E-E75F-456C-B561-7BD8806DEB00}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{D029F25C-5885-468D-A395-E2703ACE215F}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{AC9F39C5-A5E1-4B03-84AD-1980DC89B8C1}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => Pas de fichier
FirewallRules: [{77F945EE-AF30-4A4F-8908-70FC1D28F683}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FFFE804E-13D3-47A4-ABCB-B2E8D8A132DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7A57C6C9-5356-4289-BE53-29842EDB04A2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{B2D698EA-CA5C-4BDE-9DEE-CB52587A63A9}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{CB5C248D-6CA2-49D6-AA3A-4BCF2C32169B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{9BDB5794-B5FD-412C-A95F-FE3682FFB10D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{306CA3DB-301A-41EB-8558-A0C22D8FD101}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61692F14-06E8-4424-BCE5-F495E5D85F33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E48CF0AC-D660-4237-B071-CD6A8D6374B7}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{CB4F1FA9-6E67-46E2-84BE-BE51A2B908D6}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{4210EDCA-EE86-4669-8A16-F494B2678894}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{A499DAC0-424B-455A-B61F-136C2126F5BE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A2E0081B-E516-464A-962A-E8D26C0D2F07}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A601889F-647F-42F3-B9B4-D939A55EA0AA}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9EB80D95-5789-42C5-92D6-6D87052DF356}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F5A85F65-E239-41E8-B343-908F2D4787C2}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [Fichier non signé]
FirewallRules: [{92F806BA-CFE7-4600-A4C5-399D4EDFC9D4}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [Fichier non signé]
FirewallRules: [{B77B4884-0B67-401E-BA8F-15CC003697B3}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé]
FirewallRules: [{15FDFD63-6FDB-4DDE-A02E-A39354055C2E}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé]
FirewallRules: [{5C3CE401-F178-4B09-995C-6B993922480D}] => (Allow) D:\Program Files\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{06D1E6CE-36E8-434B-BEBD-01FBC3F4786F}] => (Allow) D:\Program Files\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{65805A07-2EAC-4627-B29F-52D1F86F979B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E92DA10A-2497-4E5E-8212-53E0B6056979}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC41646E-9E36-4D14-B70C-6813861C8C22}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6BB67C4-2F0A-49CA-9918-E9AEE314BCFA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{425E37A8-7311-4026-B0C1-CB428F3FB438}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EF0E7D83-A517-41CA-BCEC-5288294A8106}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{226A4601-5BA6-4C23-836C-6FEDE1CAA34D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{687D76C0-CE71-4733-96A3-8AE93F2894F1}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{E0524822-C2BC-4DB4-9FC2-E84C525AF488}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{C144D0DD-5CC5-45AB-A6C0-C1C3A9258F69}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{9FA7CC50-E409-421E-8C25-DB5936FD95AB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{8104E540-F769-427A-AE81-80383D04ECB5}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{84C67BCC-6948-477D-8629-598A19D6CE45}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A526A5D0-8674-482F-9D9E-66A3D4D3F0A8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{1AD8AC6B-FE1F-44E3-ACAA-B7C189DFA081}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{986A9862-A5E7-4C0A-A27E-BB9E3BC9BD51}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{1FD1A4A7-F943-4564-BBBA-8C84E65ABE32}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{927D1B93-2E06-48D0-9768-D8BA0DB2AA22}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A65F7A87-7CA4-4806-A8F7-4805C0464DFF}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{F0B4A07C-99B9-43D5-BDC4-5A5A022EC3A3}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A2D61C06-21EB-4320-B5B9-8503E1C62543}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{D2AB631A-AF5F-47A0-929D-B2D6FB109FFB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{6E4408D6-734A-4430-B4BF-52E1EA23B98D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{772FF7E0-AE39-430D-95B5-6735DEDEBD20}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.)
FirewallRules: [{E605E2F1-6CA2-451F-8B34-69705156F0B2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.)
FirewallRules: [{53E7BB5D-0783-481B-A962-80D307BF976A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D138F1B3-D903-43FE-9CE6-042D3E4C62A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{792353E5-205B-4C51-BF0F-E5943465C55F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{01349D4A-1198-49C6-BDB1-464050FC0851}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D769E2B0-8C77-4527-9F77-613B44CB55D4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F0222F75-78B7-45EF-8C97-EAFF960854C2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.59\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{152CDC1D-C772-448B-B5F0-C4963300BCF7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9CE39844-526C-49B1-8E0E-43277DDBD269}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E5F0CC3-D578-4C00-875E-CB3E4D6B0D2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E5C837A4-4D55-408F-A501-F437D4898ECB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{46F39083-E784-4721-A80F-8828EF88B534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B87EE809-9250-4DAC-9905-A23884490D59}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8DF15165-A31F-4D7D-B995-7E78C311B68B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DA6D44C9-14BA-42F8-B360-2E1E0BB0E67A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Points de restauration =========================
27-06-2021 21:34:43 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (06/29/2021 10:57:12 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-093H6JSP)
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code de statut.
Error: (06/29/2021 10:48:36 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : OmenCap.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 0000000000000000
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (06/28/2021 09:30:46 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:30:46 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Erreurs système:
=============
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:47 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:47 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:46 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:46 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
CodeIntegrity:
===============
Date: 2021-06-29 11:46:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2021-06-29 11:20:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
BIOS: AMI F.20 11/04/2020
Carte mère: HP 8748
Processeur: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 16222.78 MB
Mémoire physique - RAM - disponible: 8217.52 MB
Mémoire virtuelle totale: 24926.78 MB
Mémoire virtuelle disponible: 13218.4 MB
==================== Lecteurs ================================
Drive c: (SSD Windows) (Fixed) (Total:237.36 GB) (Free:45.97 GB) NTFS
Drive d: (HDD DATA) (Fixed) (Total:931.51 GB) (Free:480.72 GB) NTFS
\\?\Volume{d788c461-5452-4ac1-aa03-4a86bccfce8c}\ () (Fixed) (Total:0.83 GB) (Free:0.08 GB) NTFS
\\?\Volume{54c89c06-67ba-4d9b-8a73-4524711aaa71}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 6AE9BF81)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 0E54DC56)
Partition: GPT.
==================== Fin de Addition.txt =======================
Exécuté par krack (29-06-2021 12:17:41)
Exécuté depuis C:\Users\krack\Downloads
Windows 10 Home Version 21H1 19043.1081 (X64) (2021-03-17 19:15:04)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4281242105-2254260090-2120469707-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4281242105-2254260090-2120469707-503 - Limited - Disabled)
Didier (S-1-5-21-4281242105-2254260090-2120469707-1002 - Limited - Enabled) => C:\Users\Didier
Invité (S-1-5-21-4281242105-2254260090-2120469707-501 - Limited - Disabled)
krack (S-1-5-21-4281242105-2254260090-2120469707-1001 - Administrator - Enabled) => C:\Users\krack
WDAGUtilityAccount (S-1-5-21-4281242105-2254260090-2120469707-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0) (Version: 17.0 - Adobe Inc.)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0) (Version: 22.0.0.35 - Adobe Inc.)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0) (Version: 14.0 - Adobe Systems Incorporated)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boris FX Continuum 2019 Plug-ins for Adobe and Compatible Products (HKLM\...\{4488274F-E3B1-4895-BDEE-6AAB9FE70208}_is1) (Version: 12.0.0 - Boris FX, Inc.)
Boris FX Sapphire Plug-ins 2019.52 for After Effects and Compatible Products (HKLM\...\GenArts Sapphire AE_is1) (Version: 12.520 - Boris FX, Inc.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
Discord (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
ExpressVPN (HKLM-x32\...\{6fecf3aa-1a9a-4e75-aa73-9ffc33b1f046}) (Version: 7.7.12.4 - ExpressVPN)
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B8463D3835}) (Version: 7.7.12.4 - ExpressVPN) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.550 - Huawei Technologies Co., Ltd.)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{b666e502-9089-483b-9816-0774ccc9cb61}) (Version: 10.1.18295.8201 - Intel(R) Corporation)
iZotope Insight (HKLM-x32\...\iZotope Insight_is1) (Version: 1.03 - iZotope, Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
LibreOffice 7.1.3.2 (HKLM\...\{76B2DBF3-5773-4463-9EEB-D4A099EB6265}) (Version: 7.1.3.2 - The Document Foundation)
Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R24 - McAfee, LLC.)
MediaInfo 21.03 (HKLM\...\MediaInfo) (Version: 21.03 - MediaArea.net)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14026.20308 - Microsoft Corporation)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14026.20308 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Molotov (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\molotov) (Version: 4.4.2 - Molotov)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.20.0221 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.20.0221 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Pilote graphique 471.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.11 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Opera GX Stable 76.0.4017.208 (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Opera GX 76.0.4017.208) (Version: 76.0.4017.208 - Opera Software)
PACE License Support Win64 (HKLM\...\{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.)
Speedtest by Ookla (HKLM\...\{CE07C3AF-36AA-41BF-86C7-E55D4C69996F}) (Version: 1.8.134.001 - Ookla)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 4.0.0 (HKLM\...\SteelSeries Engine 3) (Version: 4.0.0 - SteelSeries ApS)
Topaz Video Enhance AI (HKLM\...\Topaz Video Enhance AI 1.9.0) (Version: 1.9.0 - Topaz Labs LLC)
Twixtor v7 for After Effects and Premiere Pro (HKLM\...\Twixtor v7 for After Effects and Premiere Pro 7.0.3) (Version: 7.0.3 - RE:Vision Effects)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
Universe (HKLM\...\Universe_is1) (Version: 2.2.2 - Red Giant & Team V.R)
VALORANT (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WD Desktop App 2.1.0.313 (HKLM-x32\...\{756e70ec-1fb0-41c8-896b-df0302d17bff}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.313 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.313 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.2.288 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)
Packages:
=========
Centre de contrôle Thunderbolt™ -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.32.0_x64__8j3eq9eme6ctt [2021-06-16] (INTEL CORP)
Dropbox - offre promotionnelle -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2021-03-19] (Dropbox Inc.)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2020-12-07] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.9.0_x64__v10z8vjag6ke6 [2021-06-29] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_127.1.115.0_x64__v10z8vjag6ke6 [2021-05-08] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.7.433.0_x64__v10z8vjag6ke6 [2021-05-21] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1015.0_x64__8j3eq9eme6ctt [2021-03-19] (INTEL CORP)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.60.0_x64__wafk5atnkzcwy [2021-03-19] (McAfee LLC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-12-09] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-06-22] (NVIDIA Corp.)
OMEN Audio Control -> C:\Program Files\WindowsApps\AD2F1837.OMENAudioControl_1.16.228.0_x64__v10z8vjag6ke6 [2021-03-21] (HP Inc.)
OMEN Gaming Hub -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.) [Startup Task]
OMEN Light Studio -> C:\Program Files\WindowsApps\AD2F1837.OMENLightStudio_0.1.18.0_x64__v10z8vjag6ke6 [2021-06-28] (HP Inc.) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0 [2021-06-29] (Spotify AB) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé]
ShellServiceObjects: Virtual Storage Mount Notification -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé]
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-05-20] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers1: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_b840211aa1b1b9ff\OptaneShellExt.dll [2020-05-20] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [WDDesktopContextMenu] -> {fa00ba41-b6f6-3cfa-a300-f25ce175fe7e} => C:\Program Files\WD Desktop App\kda.DLL [2020-07-21] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_2afc30ff4d07664b\nvshext.dll [2021-06-22] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\krack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Basket & Ball.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=lbofgfgfgdkllfnfmipceliihehcmbmd
ShortcutWithArgument: C:\Users\krack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\zlib.dll
2020-12-09 14:13 - 2020-12-09 14:13 - 005017600 _____ (Copyright (C) 2017-2018, HP Development Company, LP.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\AWSIoTCppCLR.dll
2021-04-06 04:24 - 2021-04-06 04:24 - 002146304 _____ (Holtek Semiconductor Inc.) [Fichier non signé] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2021-04-06 04:24 - 2021-04-06 04:24 - 002284032 _____ (Holtek) [Fichier non signé] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2020-12-09 20:19 - 2020-12-09 20:19 - 000014336 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-06-19 10:55 - 2021-06-19 10:55 - 006973440 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\OmenCommandCenterApp_UWP.dll
2020-12-09 14:13 - 2020-12-09 14:14 - 000014848 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\NativeRpcClient.DLL
2020-12-09 14:13 - 2020-12-09 20:17 - 001662976 _____ (Robert Simpson, et al.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\SQLite.Interop.dll
2013-01-09 02:03 - 2013-01-09 02:03 - 000221184 _____ (SafeNet, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] D:\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-02-15 19:04 - 2017-11-10 13:51 - 000180224 _____ (Western Digital Technologies, Inc.) [Fichier non signé] C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfjhiqhnhm [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5052]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=HCTE
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=HCTE
BHO: Pas de nom -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203}' -> Pas de fichier
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2020-04-01] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Pas de nom -> {6133F2FE-B16F-4B74-9C3F-7D25A4ED6203}' -> Pas de fichier
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2020-04-01] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-02-05] (McAfee, LLC. -> McAfee, LLC.)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\krack\Downloads\RGB.png
HKU\S-1-5-21-4281242105-2254260090-2120469707-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Ethernet 2: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4281242105-2254260090-2120469707-1001\...\StartupApproved\Run: => "BakkesMod"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{1864176B-C5E4-4970-9868-874D8730E90B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A3399A6F-7207-4C29-80A8-7D3503153684}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{638930B1-5BFF-44EB-BBD8-A18B78AC6F5C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F1438B9C-82E0-44CB-8BA8-1BFD16229C17}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9128F9D0-3516-40C7-A618-B2BC9AB044D1}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{34529A8E-AB82-4D4D-B194-06E65F645A42}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{FD07CA03-EB2F-4BDF-AD50-2D22C628B712}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{FE81E076-F539-4054-9FBD-34FDDB6F1DC9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{F7FC7D98-5B24-4EB4-AA67-317C11E15650}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe => Pas de fichier
FirewallRules: [{DD3F595C-9041-436C-8419-4F383E805BDB}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\AvidApplicationManager.exe => Pas de fichier
FirewallRules: [{930DC4B7-3E79-4E1F-A95D-D9C6BF6F38F3}] => (Allow) C:\Program Files (x86)\Avid\Application Manager\jre\bin\java.exe => Pas de fichier
FirewallRules: [{20C42A15-20EC-462B-A9B4-BE9CCBD6A423}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{10A995A6-8408-4472-86F8-D77ADA7D9F75}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EA17E9D0-C08E-46A6-8F4F-83205D345802}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C9ADC66A-6A06-4CA1-ADB6-0A46B6A6112D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{11D10D69-7ADF-4F59-AA92-F22A1CBF5258}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Fichier non signé]
FirewallRules: [{590FE4FB-DEBC-44FA-9838-A763711BE05D}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc.) [Fichier non signé]
FirewallRules: [{5B1C90EE-C0C1-4975-ADD5-10DC20B42D00}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{89E2F191-5CBC-40EB-9E41-66AD74B8B5ED}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{31AB8F1A-2C3E-4B0C-AAFF-647B40CFF25A}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{1EDA091E-E75F-456C-B561-7BD8806DEB00}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{D029F25C-5885-468D-A395-E2703ACE215F}] => (Allow) C:\Users\krack\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{AC9F39C5-A5E1-4B03-84AD-1980DC89B8C1}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => Pas de fichier
FirewallRules: [{77F945EE-AF30-4A4F-8908-70FC1D28F683}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FFFE804E-13D3-47A4-ABCB-B2E8D8A132DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7A57C6C9-5356-4289-BE53-29842EDB04A2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{B2D698EA-CA5C-4BDE-9DEE-CB52587A63A9}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{CB5C248D-6CA2-49D6-AA3A-4BCF2C32169B}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{9BDB5794-B5FD-412C-A95F-FE3682FFB10D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.3.0.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe => Pas de fichier
FirewallRules: [{306CA3DB-301A-41EB-8558-A0C22D8FD101}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61692F14-06E8-4424-BCE5-F495E5D85F33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E48CF0AC-D660-4237-B071-CD6A8D6374B7}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{CB4F1FA9-6E67-46E2-84BE-BE51A2B908D6}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{4210EDCA-EE86-4669-8A16-F494B2678894}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.)
FirewallRules: [{A499DAC0-424B-455A-B61F-136C2126F5BE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A2E0081B-E516-464A-962A-E8D26C0D2F07}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A601889F-647F-42F3-B9B4-D939A55EA0AA}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9EB80D95-5789-42C5-92D6-6D87052DF356}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F5A85F65-E239-41E8-B343-908F2D4787C2}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [Fichier non signé]
FirewallRules: [{92F806BA-CFE7-4600-A4C5-399D4EDFC9D4}] => (Allow) D:\SteamLibrary\steamapps\common\Aim Lab\AimLab_tb.exe () [Fichier non signé]
FirewallRules: [{B77B4884-0B67-401E-BA8F-15CC003697B3}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé]
FirewallRules: [{15FDFD63-6FDB-4DDE-A02E-A39354055C2E}] => (Allow) D:\SteamLibrary\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé]
FirewallRules: [{5C3CE401-F178-4B09-995C-6B993922480D}] => (Allow) D:\Program Files\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{06D1E6CE-36E8-434B-BEBD-01FBC3F4786F}] => (Allow) D:\Program Files\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{65805A07-2EAC-4627-B29F-52D1F86F979B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E92DA10A-2497-4E5E-8212-53E0B6056979}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC41646E-9E36-4D14-B70C-6813861C8C22}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6BB67C4-2F0A-49CA-9918-E9AEE314BCFA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{425E37A8-7311-4026-B0C1-CB428F3FB438}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EF0E7D83-A517-41CA-BCEC-5288294A8106}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{226A4601-5BA6-4C23-836C-6FEDE1CAA34D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{687D76C0-CE71-4733-96A3-8AE93F2894F1}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{E0524822-C2BC-4DB4-9FC2-E84C525AF488}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\StreamerV2\Omen.exe (HP Inc. -> HP Inc)
FirewallRules: [{C144D0DD-5CC5-45AB-A6C0-C1C3A9258F69}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{9FA7CC50-E409-421E-8C25-DB5936FD95AB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{8104E540-F769-427A-AE81-80383D04ECB5}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{84C67BCC-6948-477D-8629-598A19D6CE45}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A526A5D0-8674-482F-9D9E-66A3D4D3F0A8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{1AD8AC6B-FE1F-44E3-ACAA-B7C189DFA081}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{986A9862-A5E7-4C0A-A27E-BB9E3BC9BD51}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{1FD1A4A7-F943-4564-BBBA-8C84E65ABE32}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{927D1B93-2E06-48D0-9768-D8BA0DB2AA22}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A65F7A87-7CA4-4806-A8F7-4805C0464DFF}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{F0B4A07C-99B9-43D5-BDC4-5A5A022EC3A3}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{A2D61C06-21EB-4320-B5B9-8503E1C62543}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{D2AB631A-AF5F-47A0-929D-B2D6FB109FFB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{6E4408D6-734A-4430-B4BF-52E1EA23B98D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.)
FirewallRules: [{772FF7E0-AE39-430D-95B5-6735DEDEBD20}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.)
FirewallRules: [{E605E2F1-6CA2-451F-8B34-69705156F0B2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.6.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.)
FirewallRules: [{53E7BB5D-0783-481B-A962-80D307BF976A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D138F1B3-D903-43FE-9CE6-042D3E4C62A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{792353E5-205B-4C51-BF0F-E5943465C55F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{01349D4A-1198-49C6-BDB1-464050FC0851}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D769E2B0-8C77-4527-9F77-613B44CB55D4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F0222F75-78B7-45EF-8C97-EAFF960854C2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.59\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{152CDC1D-C772-448B-B5F0-C4963300BCF7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9CE39844-526C-49B1-8E0E-43277DDBD269}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E5F0CC3-D578-4C00-875E-CB3E4D6B0D2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E5C837A4-4D55-408F-A501-F437D4898ECB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{46F39083-E784-4721-A80F-8828EF88B534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B87EE809-9250-4DAC-9905-A23884490D59}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8DF15165-A31F-4D7D-B995-7E78C311B68B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DA6D44C9-14BA-42F8-B360-2E1E0BB0E67A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.162.583.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Points de restauration =========================
27-06-2021 21:34:43 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (06/29/2021 10:57:12 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-093H6JSP)
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code de statut.
Error: (06/29/2021 10:48:36 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : OmenCap.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 0000000000000000
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:31:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (06/28/2021 09:30:46 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (06/28/2021 09:30:46 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Erreurs système:
=============
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:15:58 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:47 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:47 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:46 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv6 avec l'index 18 a échoué dans la liaison à son fournisseur.
Error: (06/29/2021 11:01:46 AM) (Source: Tcpip) (EventID: 4207) (User: )
Description: L'interface TCP/IP IPv4 avec l'index 18 a échoué dans la liaison à son fournisseur.
CodeIntegrity:
===============
Date: 2021-06-29 11:46:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2021-06-29 11:20:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
BIOS: AMI F.20 11/04/2020
Carte mère: HP 8748
Processeur: Intel(R) Core(TM) i7-10750H CPU @ 2.60GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 16222.78 MB
Mémoire physique - RAM - disponible: 8217.52 MB
Mémoire virtuelle totale: 24926.78 MB
Mémoire virtuelle disponible: 13218.4 MB
==================== Lecteurs ================================
Drive c: (SSD Windows) (Fixed) (Total:237.36 GB) (Free:45.97 GB) NTFS
Drive d: (HDD DATA) (Fixed) (Total:931.51 GB) (Free:480.72 GB) NTFS
\\?\Volume{d788c461-5452-4ac1-aa03-4a86bccfce8c}\ () (Fixed) (Total:0.83 GB) (Free:0.08 GB) NTFS
\\?\Volume{54c89c06-67ba-4d9b-8a73-4524711aaa71}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 6AE9BF81)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 0E54DC56)
Partition: GPT.
==================== Fin de Addition.txt =======================