Rapport Addition.txt :

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-01-2021
Exécuté par Dulette (01-02-2021 08:59:31)
Exécuté depuis C:\Users\dulet\OneDrive\Desktop
Windows 10 Home Version 1909 18363.1316 (X64) (2019-08-29 05:45:42)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2820884021-490180154-3507799189-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2820884021-490180154-3507799189-503 - Limited - Disabled)
Dulette (S-1-5-21-2820884021-490180154-3507799189-1001 - Administrator - Enabled) => C:\Users\dulet
Invité (S-1-5-21-2820884021-490180154-3507799189-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2820884021-490180154-3507799189-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{AEEF33DD-E3B9-4049-B709-0E546C2B1AAB}) (Version: 20.25.401.14526 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{AEEF33DD-E3B9-4049-B709-0E546C2B1AAB}) (Version: 20.25.401.14526 - Alcor Micro Corp.)
Apple Application Support (32 bits) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
ArteVOD Offline Player 3.0.5 (only current user) (HKU\S-1-5-21-2820884021-490180154-3507799189-1001\...\4e5f7455-ac3f-516c-9fc1-b3c1ee5857d0) (Version: 3.0.5 - )
ASUS Battery Health Charging (HKLM-x32\...\{3A7E73B6-3A04-49ED-811E-CC39F7EA2E34}) (Version: 1.0.0004 - ASUS)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.5.24 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.18 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.19.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.2.0 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0051 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.45 - ICEpower a/s)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 20.1.9481.1346 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.8.5262.1418 - Avast Software)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.64.72 - Conexant)
CrystalDiskInfo 7.6.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.6.1 - Crystal Dew World)
CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.7 - ASUSTek COMPUTER INC.)
ExpressVPN (HKLM-x32\...\{682d2f6b-ef1f-497f-852c-70fed77fea47}) (Version: 7.7.8.161 - ExpressVPN)
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B8463DF8D2}) (Version: 7.7.8.161 - ExpressVPN) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.1.1.37576 - Foxit Software Inc.)
Free Mp3 M4a Wma Converter V 1.6 (HKLM-x32\...\Free Mp3 M4a Wma Converter_is1) (Version: 1.6.0.0 - KastorSoft)
Freemake Video Converter version 4.1.10.1 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10.1 - Ellora Assets Corporation)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.104 - Google LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1724.2 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{559FA847-377D-4926-80A3-ED9E014D363A}) (Version: 19.60.0 - Intel Corporation)
iTunes (HKLM\...\{1AA704BF-FC77-4FC3-B2AB-BFBAA3D308E5}) (Version: 12.11.0.26 - Apple Inc.)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{d5c53162-d8b4-4547-8a40-917a25c0172e}) (Version: 20.60.0 - Intel Corporation)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2820884021-490180154-3507799189-1001\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 85.0 (x64 fr) (HKLM\...\Mozilla Firefox 85.0 (x64 fr)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.4.2 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1216 - SUPERAntiSpyware.com)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TrayStatus 3.2 (HKLM-x32\...\d6b74f60-2e9d-4c60-a8b7-b7d737c44ad4_is1) (Version: 3.2.0.0 - Binary Fortress Software)
Trust.Zone VPN Client (HKLM\...\trustzone_tztzclient) (Version: 1.1.0 build 1061 - Trust.Zone VPN Project)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WebAdvisor par McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.191 - McAfee, LLC)
Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (04/21/2017 11.0.0.16) (HKLM\...\7517F958DC823EE4C12050C16EFF05886960ABEF) (Version: 04/21/2017 11.0.0.16 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
WirelessMon V5.0 (HKLM\...\WirelessMon 5_is1) (Version: - PassMark Software)
Youtube Downloader HD v. 2.9.9.73 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
ZenAnywhere (HKLM\...\{A3DAF030-0717-44EB-8027-30173B8813CA}) (Version: 4.5.23 - Orbweb Inc.) Hidden
ZenAnywhere (HKLM-x32\...\ZenAnywhere 4.5.23) (Version: 4.5.23 - Orbweb Inc.)
Zoom (HKU\S-1-5-21-2820884021-490180154-3507799189-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)

Packages:
=========
Amazon Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.45.0_x64__pwbj9vvecjh7j [2021-01-20] (Amazon Development Centre (London) Ltd)
ASUS ZenLink -> C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy [2017-12-06] (ASUSTeK COMPUTER INC.) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-04-28] (ASUSTeK COMPUTER INC.)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-09-12] (Facebook Inc)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_5.3.1.1_x86__h6adky7gbf63m [2021-01-14] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2018-10-26] (Microsoft Platform Extensions)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-04-28] (ASUSTeK COMPUTER INC.) [Startup Task]
MYTF1 -> C:\Program Files\WindowsApps\eTF1.MYTF1_6.1.13.0_neutral__39pc08wxtkwcg [2019-05-19] (eTF1)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
OCS -> C:\Program Files\WindowsApps\OCS.OCS_2.1.47.0_x64__f37pv2m276kkw [2021-01-27] (OCS)
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-12-06] (Plex)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0 [2021-01-29] (Spotify AB) [Startup Task]
TV Player HD: IPTV, movies & sports -> C:\Program Files\WindowsApps\51371LastMedia.TVPlayerHDIPTVmoviessports_1.0.3.0_x64__shpsxndst25t8 [2019-05-19] (Last Media) [MS Ad]
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2100.7.0_x64__cv1g1gvanyjgm [2021-01-23] (WhatsApp Inc.)
WPS Office for ASUS -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOffice_11.2.9669.0_x86__924xes6e8q1tw [2020-09-27] (Kingsoft Office Software Corporation Limited)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2017-12-29] (Microsoft Corporation)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-31] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxDTCM.dll [2020-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-01-31] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2017-07-03 10:51 - 2017-07-03 10:51 - 001937408 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\ffmpeg.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 000079360 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 002177536 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 003561984 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\node.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000125440 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000033280 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2021-01-15 08:26 - 2021-01-15 08:26 - 000367616 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\389784e129795a0282a3918ba65e7c7b\Interop.CxHDAudioAPILib.ni.dll
2021-01-15 08:26 - 2021-01-15 08:26 - 000018944 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\80eef8b6d329da653ea5bc5396eb8cae\Interop.CxUtilSvcLib.ni.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 001676288 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000178176 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000165888 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2017-10-29 01:15 - 2016-12-19 16:25 - 001165824 _____ (Conexant Systems, Inc.) [Fichier non signé] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 073507840 _____ (The NWJS Community) [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\nw.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 000124928 _____ (The NWJS Community) [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\nw_elf.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKU\S-1-5-21-2820884021-490180154-3507799189-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2820884021-490180154-3507799189-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2820884021-490180154-3507799189-1001 -> {AE30A45B-7C00-4820-B0E1-31103679348A} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: Pas de nom -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> Pas de fichier
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-01-29] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-01-29] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Pas de fichier

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-2820884021-490180154-3507799189-1001\...\localhost -> localhost

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 __RSH C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\QuickTime\QTSystem\
HKU\S-1-5-21-2820884021-490180154-3507799189-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dulet\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 109.236.87.2 - 144.217.75.55
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run32: => "QuickTime Task"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{C1AAA3BB-0A74-4F83-9BEF-5FD976C09956}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => Pas de fichier
FirewallRules: [{4A187980-85B0-49A1-A95A-3D02D74F70F4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7C3E46CE-F2D5-4577-A9C9-A2F550996505}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{8012CD5F-78FA-489A-B2C4-2168ADE624EB}C:\Users\dulet\OneDrive\Desktop\Transfert\Gif & conneries\AdsFix.exe] => (Allow) C:\Users\dulet\OneDrive\Desktop\Transfert\Gif & conneries\AdsFix.exe => Pas de fichier
FirewallRules: [TCP Query User{A8064AE8-6CBA-412B-A1EC-D72343F79773}C:\Users\dulet\OneDrive\Desktop\Transfert\Gif & conneries\AdsFix.exe] => (Allow) C:\Users\dulet\OneDrive\Desktop\Transfert\Gif & conneries\AdsFix.exe => Pas de fichier
FirewallRules: [{1A8E77D3-95DD-4731-A067-DE9CD0E0153B}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{3E6E11D7-57DC-46B6-AD3B-A978D0B4B59C}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{44FEBFDF-D493-46B1-BCD0-53ED19586E55}] => (Allow) C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE => Pas de fichier
FirewallRules: [{B0DDAF0A-11E9-4796-AAF5-25B4B7099A71}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B1614706-FCF7-44D1-BD30-F11FAB64FBC1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\outlook.exe => Pas de fichier
FirewallRules: [{26A4E853-756F-495A-A8E8-924BC3013F3E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\Lync.exe => Pas de fichier
FirewallRules: [{770632AB-DA87-4740-BA54-A1FDCBB1C93D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\Lync.exe => Pas de fichier
FirewallRules: [{21AFBF5C-35F4-41FD-9D87-E0E641C26C6E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\UcMapi.exe => Pas de fichier
FirewallRules: [{9DB9ED40-07A9-4458-9F73-5B1338594F48}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\UcMapi.exe => Pas de fichier
FirewallRules: [{830CE008-8C46-4CA5-9D3D-507F565FD708}] => (Allow) C:\Program Files\Trust.Zone VPN Client\tzclient.exe (Tersys Group OÜ -> Trust.Zone VPN Project)
FirewallRules: [{B47B1172-CFB4-42B6-A73B-42BA029A7732}] => (Allow) C:\Program Files\Trust.Zone VPN Client\tzclient_x64.exe (Tersys Group OÜ -> Trust.Zone VPN Project)
FirewallRules: [{301FDF0C-F343-48F2-97A8-01ADD0F7CB9A}] => (Allow) C:\Program Files\Trust.Zone VPN Client\trustzone.exe (Tersys Group OÜ -> Trust.Zone VPN Project)
FirewallRules: [{F9F690A0-23C4-487E-8448-578A20AF9C57}] => (Allow) C:\Program Files\Trust.Zone VPN Client\trustzone_x64.exe (Tersys Group OÜ -> Trust.Zone VPN Project)
FirewallRules: [{616B4904-38D9-4586-9A6C-4E05BB916036}] => (Allow) C:\Users\dulet\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{48BABBF7-1EAB-4D37-85F1-EC64F617FBF1}] => (Allow) C:\Users\dulet\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{C40D7C77-34B9-4D2A-9CF7-5536D66DCCE7}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy\AppService\AppService_NotificationHost.exe (ASUSTeK Computer Inc. -> )
FirewallRules: [TCP Query User{74C624B6-9564-47C3-BEA0-CC7DA616C1B0}D:1\game\aoe2de.exe] => (Allow) D:1\game\aoe2de.exe => Pas de fichier
FirewallRules: [UDP Query User{9C644C6A-A590-475E-8AF3-725252518CDB}D:1\game\aoe2de.exe] => (Allow) D:1\game\aoe2de.exe => Pas de fichier
FirewallRules: [TCP Query User{7C16E603-F58A-4C68-A7BE-9F807B87321F}D:1\game\battleserver\battleserver.exe] => (Allow) D:1\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [UDP Query User{8EC66B6F-A69E-4C2C-9C99-38D64A89F29E}D:1\game\battleserver\battleserver.exe] => (Allow) D:1\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [TCP Query User{B060B27F-F84E-464D-BCD5-65F2400EA2ED}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{2666C506-9F72-422C-8A4F-94671DB46929}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{E50F8E8F-24C1-44C2-A639-002F29207DDB}C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{40136698-A4F9-40C7-81B9-1818C1FA6A34}C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_860.5.119.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [{C73FDBCA-F6B1-41B6-BA30-C24785841EAD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F089202-AA9D-46BB-9AC3-AA3A58C1FDC9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{824BB07C-1DA8-48A6-A737-8D564A7E154B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{35FF4BE4-AB8E-49BF-9A0C-B34B308249A2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6EC44530-D6B3-4E23-8C61-E0D05DB2B714}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7A36EB4A-9BC0-4BFE-92D9-6E7CAE165822}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EC5B716D-6D0C-4226-94CE-7775C28EA24D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D83D7125-4FAA-4F9A-9425-BCEEAA9D67EE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{145415DB-EADC-4960-8C51-FE2720D002A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D976FDA5-AE84-41FD-9DE7-D7C89C904826}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{532D8ED3-C293-4F46-9C31-A088FC2F3FB1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9B20FF1A-3D3D-49F3-BAED-7D736D0CD5C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C13EB5F8-7B76-409F-B6E1-EF88815E08E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43A44438-130B-4890-A2E6-97F1FF5BA14A}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
StandardProfile\AuthorizedApplications: [C:\Users\dulet\OneDrive\Desktop\Transfert\Gif & conneries\AdsFix.exe] => Enabled:AdsFix

==================== Points de restauration =========================

ATTENTION: La Restauration système est désactivée (Total:118.19 GB) (Free:12.12 GB) (10%)

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: ExpressVPN TAP Adapter
Description: ExpressVPN TAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (02/01/2021 08:53:39 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3640,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/31/2021 10:36:35 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT)
Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe, PID : 4272, PID ProfSvc : 1656.

Error: (01/31/2021 10:32:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (01/31/2021 10:32:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (01/31/2021 10:23:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15260,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/31/2021 10:15:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3652,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/31/2021 10:01:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme AoE2DE.exe version 101.101.44834.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 38dc

Heure de début : 01d6f814165e2abc

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : \\?\Volume{f3fe3790-dd7e-b07e-5257-e75d3cff82fc}\Game\AoE2DE.exe

ID de rapport : 19b7d50c-4d8e-4948-92bb-f5b1da110356

Nom complet du package défectueux : Microsoft.MSPhoenix_101.101.44834.0_x64__8wekyb3d8bbwe

ID de l'application relative à un package défectueux : App

Type de blocage : Quiesce

Error: (01/31/2021 09:36:10 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8416,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Erreurs système:
=============
Error: (02/01/2021 08:45:53 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-B0ESN8N)
Description: Le serveur Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (02/01/2021 08:40:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SecDrv n’a pas pu démarrer en raison de l’erreur :
Le chargement du pilote a été bloqué

Error: (02/01/2021 08:40:50 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\SECDRV.SYS

Error: (01/31/2021 10:33:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SecDrv n’a pas pu démarrer en raison de l’erreur :
Le chargement du pilote a été bloqué

Error: (01/31/2021 10:33:04 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\WINDOWS\SysWow64\drivers\SECDRV.SYS

Error: (01/31/2021 10:27:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-B0ESN8N)
Description: Le serveur Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/31/2021 10:02:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-B0ESN8N)
Description: Le serveur Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/31/2021 09:57:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SecDrv n’a pas pu démarrer en raison de l’erreur :
Le chargement du pilote a été bloqué


CodeIntegrity:
===================================

Date: 2021-02-01 08:55:43.365
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-01 08:54:21.357
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-01 08:54:20.118
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-01 08:43:47.633
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\setup\uat_3256.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-01 08:43:17.018
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-02-01 08:43:16.976
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-02-01 08:43:16.923
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-02-01 08:43:16.883
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. X411UA.310 04/16/2019
Carte mère: ASUSTeK COMPUTER INC. X411UA
Processeur: Intel(R) Core(TM) i3-7100U CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 73%
Mémoire physique - RAM - totale: 6027.08 MB
Mémoire physique - RAM - disponible: 1575.36 MB
Mémoire virtuelle totale: 11147.08 MB
Mémoire virtuelle disponible: 5916.82 MB

==================== Lecteurs ================================

Drive 😄 (OS) (Fixed) (Total:118.19 GB) (Free:12.12 GB) NTFS
Drive d: (DATA) (Fixed) (Total:465.76 GB) (Free:191.07 GB) NTFS

\\?\Volume{0cb08915-ee29-4cf8-aee3-43f638a4e5ca}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.35 GB) NTFS
\\?\Volume{3d5dd8c6-bcd6-403c-ac38-4a16d8412a62}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 574D3534)

Partition: GPT.

==========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: DBAEF713)

Partition: GPT.

==================== Fin de Addition.txt =======================