Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 13-05.2019
Exécuté par Kevin (13-05-2019 23:18:50)
Exécuté depuis C:\Users\Kevin\Desktop
Windows 10 Home Version 1809 17763.475 (X64) (2019-04-27 19:04:47)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3990247599-245654017-591416556-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3990247599-245654017-591416556-503 - Limited - Disabled)
Invité (S-1-5-21-3990247599-245654017-591416556-501 - Limited - Disabled)
Kevin (S-1-5-21-3990247599-245654017-591416556-1002 - Administrator - Enabled) => C:\Users\Kevin
WDAGUtilityAccount (S-1-5-21-3990247599-245654017-591416556-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}) (Version: 23.5.17750 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}Visible) (Version: 23.5.17750 - Acronis)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.1.435 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_1) (Version: 20.0.1 - Adobe Systems Incorporated)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.10 - Kakao Games Europe B.V.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Cheat Engine 6.8.1 (HKLM-x32\...\Cheat Engine 6.8.1_is1) (Version: - Cheat Engine)
Crusader Kings II Holy Fury (HKLM-x32\...\Crusader Kings II Holy Fury_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0466 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Dofus (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\2744A393-554C-4E35-A24F-DEF0392B4484-2) (Version: - Ankama)
Dofus 1 (HKLM-x32\...\Dofus 1) (Version: 1.29.1 - Ankama Games)
DoNotSpy10 (HKLM-x32\...\{32D066BD-F94C-4948-8FA8-84653EE9617E}_is1) (Version: 5.0.0.0 - pXc-coding.com)
DriversCloud.com (64 bits) (HKLM\...\{B8C26C25-0652-4D1D-90EF-330EAD99FFDC}) (Version: 10.0.8.0 - Cybelsoft)
EaseUS Partition Master 13.0 (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
Epic Games Launcher (HKLM-x32\...\{D55AA8F9-1DD5-4EFD-BBAA-7879A5C32ACC}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Europa Universalis IV Rule Britannia (HKLM-x32\...\Europa Universalis IV Rule Britannia_is1) (Version: - )
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
FiveM (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Folder Size (HKLM-x32\...\{FC8D21C8-7B29-4104-ADB0-FEE9CA1C7922}) (Version: 2.6 - Brio)
Glary Utilities 5.112 (HKLM-x32\...\Glary Utilities 5) (Version: 5.112.0.137 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.131 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\1207661193_is1) (Version: 2.1.0.24 - GOG.com)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
Hotspot Shield 7.15.1 (HKLM-x32\...\{3e29a499-0bcd-49f6-aa46-3e9ff41419f3}) (Version: 7.15.1.11114 - AnchorFree Inc.)
Hotspot Shield 7.15.1 (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925C117BE8D}) (Version: 7.15.1.11114 - AnchorFree Inc.) Hidden
Hotspot Shield 7.15.1 (HKLM-x32\...\HotspotShield) (Version: 7.15.1 - AnchorFree Inc.) Hidden
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java SE Development Kit 8 Update 191 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180191}) (Version: 8.0.1910.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.36 - McAfee, Inc.)
Melodyne 4 (HKLM-x32\...\{16DF894D-FC3F-4B87-908D-671E201CD7A8}) (Version: 4.02.0020 - Celemony Software GmbH)
Melodyne Runtime 4.1 (x64) (HKLM\...\{721E4E34-AF7C-4345-93F9-282CCC8CCCB5}) (Version: 1.0.2 - Celemony Software GmbH)
Metro Exodus (HKLM-x32\...\{F25D08D9-EBE0-4C15-AAD2-50B446E85B17}_is1) (Version: - 4A Games)
Microsoft OneDrive (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\OneDriveSetup.exe) (Version: 19.062.0331.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mises à jour NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
ModDrop Client (HKLM-x32\...\{44122868-E1D4-4461-B4FE-8F9AB2682CB6}) (Version: 1.3.1425 - Olympus Games) Hidden
ModDrop Client (HKLM-x32\...\ModDrop Client 1.3.1425) (Version: 1.3.1425 - Olympus Games)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.6.6 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.102 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.102 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Pilote graphique 430.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.64 - NVIDIA Corporation)
Opera Stable 58.0.3135.132 (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\Opera 58.0.3135.132) (Version: 58.0.3135.132 - Opera Software)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 430.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.64 - NVIDIA Corporation) Hidden
Planet Coaster version 1.3.6.45104 (HKLM\...\Planet Coaster_is1) (Version: 1.3.6.45104 - STEAMPUNKS)
Plays (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\Plays) (Version: 2.0.7 - Plays.tv, Inc)
PokeMMO (HKLM\...\PokeMMO_is1) (Version: - PokeMMO)
StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris MegaCorp (HKLM-x32\...\Stellaris MegaCorp_is1) (Version: - )
Stronghold AntiMalware (HKLM-x32\...\Stronghold AntiMalware_is1) (Version: 1.2 - Security Stronghold)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Total War: Rome 2 (HKLM-x32\...\Total War: Rome 2_is1) (Version: - )
Tropico 6 (HKLM-x32\...\Tropico 6_is1) (Version: - )
Twitch (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A7B60FC9-A750-43C7-B7EC-892CD09147C7}) (Version: 1.18.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 64.0 - Ubisoft)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 0.16.8 - Black Tree Gaming Ltd.)
Wakfu (HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama)
We. The Revolution (HKLM-x32\...\1492171024_is1) (Version: Final 1.0.1 - GOG.com)
Weedcraft Inc (HKLM-x32\...\Weedcraft Inc_is1) (Version: - )
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.0.0_x64__tf1gferkr813w [2019-05-06] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_5.4.4.0_x86__kgqvnymyfvs32 [2019-04-16] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.137.700.0_x86__kgqvnymyfvs32 [2019-04-18] (king.com)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_3.9.0.7_x86__h6adky7gbf63m [2019-04-27] (Disney Magic Kingdoms)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.4.521.0_x64__rz1tebttyb220 [2019-04-27] (Dolby Laboratories)
English (United Kingdom) Local Experience Pack -> C:\Program Files\WindowsApps\Microsoft.LanguageExperiencePacken-GB_17763.8.20.0_neutral__8wekyb3d8bbwe [2019-05-08] (Microsoft Corporation)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x64__8wekyb3d8bbwe [2018-06-06] (Microsoft Platform Extensions)
Microsoft Visual C++ Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x86__8wekyb3d8bbwe [2018-06-06] (Microsoft Platform Extensions)
Module d'expérience locale français (France) -> C:\Program Files\WindowsApps\Microsoft.LanguageExperiencePackfr-FR_17763.12.35.0_neutral__8wekyb3d8bbwe [2019-05-08] (Microsoft Corporation)
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2018-06-06] (Plex)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.6.108.0_x64__43tkc6nmykmb6 [2018-06-16] (Ookla)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0 [2019-04-30] (Spotify AB)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13478.0_x64__3ykzqggjzj4z0 [2019-05-06] (WinZip Computing)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3990247599-245654017-591416556-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-670A5559262E} -> [Creative Cloud Files] => C:\Users\Kevin\Creative Cloud Files [2018-12-14 17:43]
CustomCLSID: HKU\S-1-5-21-3990247599-245654017-591416556-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-01-27] (Notepad++ -> )
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-06] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2018-06-06 13:25 - 2019-05-07 19:09 - 000028160 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2019-04-27 20:47 - 2019-04-27 20:47 - 000065536 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.4053_none_3b0e32bdc9afe437\vcomp.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [222]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 23:03 - 2019-03-18 02:37 - 000002103 _____ C:\WINDOWS\system32\drivers\etc\hosts

0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\AOMEI Backupper;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3990247599-245654017-591416556-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "Folder Size"
HKU\S-1-5-21-3990247599-245654017-591416556-1002\...\StartupApproved\Run: => "Steam"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{12B33C39-07B9-47F2-9A9A-BFC1EB3C7527}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17972EB0-770C-42D1-8C1C-AA43A0A31AF1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2049708F-5EAC-4BA3-9BFC-E4A8FD7A47F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8BD1A3E6-228A-43A2-9760-4E70A0C36FF7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{22943254-40D5-4AED-BF5D-7EF6CBAF6FF5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe () [Fichier non signé]
FirewallRules: [{02ED42F4-315D-478B-8DDC-DD546ACC0B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe () [Fichier non signé]
FirewallRules: [{FF8C5D8D-6469-47D6-BACA-27B940234742}] => (Allow) D:\SteamLibrary\steamapps\common\Enderal\Enderal Launcher.exe (SureAI) [Fichier non signé]
FirewallRules: [{BF5D5D26-CBAA-4DE7-B756-25E5C7D6BA0B}] => (Allow) D:\SteamLibrary\steamapps\common\Enderal\Enderal Launcher.exe (SureAI) [Fichier non signé]
FirewallRules: [{7B68B71D-E4EB-48BE-9256-6361FDCE6886}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{070628B2-58FD-415C-8A3F-7FE13B323EA9}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{544F1854-424C-4153-92A7-60A5F77B1C51}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B22356E4-0EEB-46C3-AA48-2ADA5513BBCB}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{93956AC2-B2AF-4A1A-A6D7-C927F8B7429A}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C0FBD3CF-1C51-4225-96E2-69A5FD3D000D}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{8B0FC47B-7A03-4E66-A65B-95A7ED8E8A52}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{559B61B9-2C2A-4424-B840-5C398D49E719}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B2305BF0-C77D-4057-9632-928016D7024F}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{713FF8B2-0A20-411C-B090-03C2FD88C466}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{D71D5DDA-B1EA-4123-85D1-49A5CA2871AB}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{84DBC051-0053-4689-A296-5ECCF1C92458}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B0BD2FD5-EB0A-401B-B124-36EBF0508B29}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{417F1352-FC1A-46B2-BC54-528259A038F6}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{597A86D0-D296-41C0-989B-29EB30AACBFD}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{E6E691FE-1DDF-4396-AC06-7249325557B0}] => (Allow) C:\WINDOWS\SysWOW64\InstallShield\setup.exe (Microsoft Windows -> InstallShield Software Corporation)
FirewallRules: [{E673FDE9-4250-4446-8A15-C7546D3CB0B8}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5E62FC60-CC3C-463A-87F9-06714D9A5C52}] => (Allow) C:\WINDOWS\SysWOW64\nslookup.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7E468DF0-D590-426B-B3E5-59A949775C7C}] => (Allow) C:\WINDOWS\SysWOW64\tracert.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{4C72589B-485D-41CB-826D-E90849FAE13C}] => (Allow) C:\Program Files (x86)\Common Files\UaRXAMIqQXRU.exe (Microsoft Corporation) [Fichier non signé]
FirewallRules: [{F2D7B98D-35C1-4112-BE0A-AEE703A56DE4}] => (Allow) C:\Users\Kevin\AppData\Local\UhIlgqOuFAVu.exe (Microsoft Corporation) [Fichier non signé]
FirewallRules: [{EA9F2CDD-54C8-4AB7-A815-D643817240E4}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A1D0CED7-AA9A-4E07-B15A-C2EA24149275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D976F3D2-D00C-4056-8973-E95B7EAF830E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{23B6FD0C-A219-4ED2-97C0-5114C82C7330}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{92D785CD-F5D4-481B-BA0A-56A57E5DB501}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81564A39-065B-4FC2-8767-A1F260070669}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{1F03C550-9B19-453D-8CDD-5CCAFF245961}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{71AC4935-FE3C-42A2-AD61-09D5C4D7A231}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{815186EC-7790-4122-8D87-6C9B4B58BDD3}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{B0C948D8-E796-45C4-89E7-AE123D8E8E56}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{50360534-0FC7-4094-A5A9-93922B685F0D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{31FF2CE8-4F78-4EF3-A2DA-567B4F9B0A9D}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{7F8B7F8E-8085-4930-A900-9312FD6B5501}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{02176113-9376-4EF4-88A7-F31820CD3EBE}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{BEDC56EA-6B5E-4F8A-BB4C-52EC6B5443DD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{28883FA5-241A-4F2C-8494-FE50428D9A7B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{A392D84A-95DB-435E-BD04-1B6A36D80598}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{53232AEB-3F29-4BD2-9085-D80B95B903FC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{5ED036D7-7AF1-45B0-8DEE-B82A24A7777E}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{E1F73BE4-5248-4833-B8F7-8B7CEE7787DD}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{1815FD19-F073-45B0-9F34-DA2A6C22C82E}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{86B33DE3-A872-418B-AD1C-8C4F026FA000}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{6BEED4F0-5687-4FA1-9611-2F11E4EF7AB6}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{F2B6F278-42D6-4FF2-9143-F153289F01C9}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{4E700068-16B4-45D1-9CD0-AE7473F65B34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Power & Revolution\_start.exe (Eversim -> )
FirewallRules: [{6D3CF435-F4F1-49A3-8766-2B79296A16AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Power & Revolution\_start.exe (Eversim -> )
FirewallRules: [{7B275F89-EF79-4CEC-B5CF-744B49B21A5A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E3007ADA-9861-459D-96D9-9D515CE0D256}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{28B0655C-6654-45E7-85B8-2D9EA4FD78C6}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{E12E8FFC-6D94-47E9-8008-B14E40EB889B}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [{F6E71271-3346-4E05-82AF-7F1DEFFE92BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive) [Fichier non signé]
FirewallRules: [{30BB7D0E-1ACF-4A2F-9454-A0DE616DE857}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\hoi4.exe (Paradox Interactive) [Fichier non signé]
FirewallRules: [{4D54A117-16AE-4483-8A21-01DC2AFE5A96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{F9B9FD38-2F2C-4CF3-9CA0-F1340E39EB85}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{A0B561D3-9323-4BD1-A4C7-C84AB55DBE41}C:\users\kevin\desktop\fm2019\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\kevin\desktop\fm2019\football.manager.2019-fckdrm\football manager 2019\fm.exe (Sports Interactive) [Fichier non signé]
FirewallRules: [TCP Query User{66E37D77-B1F6-47A0-98A5-45A13CE674E0}C:\users\kevin\desktop\fm2019\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\kevin\desktop\fm2019\football.manager.2019-fckdrm\football manager 2019\fm.exe (Sports Interactive) [Fichier non signé]
FirewallRules: [UDP Query User{B7443758-645B-4FF7-9405-A399E160002A}C:\users\kevin\appdata\local\temp\rar$exa15580.43500\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\kevin\appdata\local\temp\rar$exa15580.43500\football.manager.2019-fckdrm\football manager 2019\fm.exe Pas de fichier
FirewallRules: [TCP Query User{C4A324E3-9858-45EA-A274-42EFC5D3B10E}C:\users\kevin\appdata\local\temp\rar$exa15580.43500\football.manager.2019-fckdrm\football manager 2019\fm.exe] => (Allow) C:\users\kevin\appdata\local\temp\rar$exa15580.43500\football.manager.2019-fckdrm\football manager 2019\fm.exe Pas de fichier
FirewallRules: [UDP Query User{9C0F1B3D-8269-49D0-8931-F698B4CDBBC7}C:\users\kevin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kevin\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{7CDD10A3-762D-4923-9268-26E01CCD0F6A}C:\users\kevin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\kevin\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{83B85AC3-9431-4E23-BCCA-FA02CC888B6F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37E76E12-4800-4F76-A4E0-3CC5A81B5FC3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BB006708-B659-421F-B0A1-45403DFB43EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{06B22E26-BB8B-43F9-B924-4118DB7F83BB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{BC32F7B8-9DB8-4A82-B90B-170608A8A0CA}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{BC6D7DCE-E5AE-4DEA-99E3-07F300EC7C6E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [UDP Query User{0D4E6918-93B7-40C7-9EE7-1E227F68BD96}C:\program files\windowsapps\spotifyab.spotifymusic_1.99.250.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.99.250.0_x86__zpdnekdrzrea0\spotify.exe Pas de fichier
FirewallRules: [TCP Query User{CA1E4860-ADAD-457A-B830-F06D8C7A2ED0}C:\program files\windowsapps\spotifyab.spotifymusic_1.99.250.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.99.250.0_x86__zpdnekdrzrea0\spotify.exe Pas de fichier
FirewallRules: [TCP Query User{674D147D-B276-4403-B26F-03E77F80C932}D:\games\total war - rome 2\rome2.exe] => (Allow) D:\games\total war - rome 2\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{75F243C9-9F02-458B-BE50-34B29B2C1083}D:\games\total war - rome 2\rome2.exe] => (Allow) D:\games\total war - rome 2\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{DA363E51-D125-4587-B56C-5A3324879284}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{944EF0E9-CC44-449B-B649-9DF3C97BCE86}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{55C6AA36-4B14-4FD7-BE9D-3891B18B9C58}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{76ED3E4A-BB66-44B6-8688-07E9A3BA9D10}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3A4AE658-A4E1-4B2D-98A2-F6630C053750}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{570E7724-D085-4838-8CC4-A0B4C7061DE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CAC0C572-047B-4746-B1D3-AF9C02E0FD4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A04DA03F-4C1E-4BFE-9455-7D544B685797}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0D737946-54EF-482B-A9AA-F69A4673FD6E}] => (Allow) D:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [{985A161E-4B49-4F0E-BF92-E7D6FA92E120}] => (Allow) D:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [TCP Query User{4B945FF2-7CA5-4BD1-B8AF-13FC459C016E}D:\steamlibrary\steamapps\common\stardew valley\stardewmoddingapi.exe] => (Allow) D:\steamlibrary\steamapps\common\stardew valley\stardewmoddingapi.exe () [Fichier non signé]
FirewallRules: [UDP Query User{FC8F57FA-5206-4268-AE10-7E5ABBB8C3DC}D:\steamlibrary\steamapps\common\stardew valley\stardewmoddingapi.exe] => (Allow) D:\steamlibrary\steamapps\common\stardew valley\stardewmoddingapi.exe () [Fichier non signé]
FirewallRules: [{2BA15626-EBCC-4B3F-BD06-0EF2B3CF06DC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{257804D9-417C-415C-B6A6-1306EE3BEFB6}] => (Allow) D:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe () [Fichier non signé]
FirewallRules: [{08060023-B7B3-4C9E-A145-CA73D4DCCD68}] => (Allow) D:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe () [Fichier non signé]
FirewallRules: [{C3E788E9-83D1-42D0-AA05-B151E871E9A6}] => (Allow) D:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{A1564442-6999-463B-8BEB-17655D7E0232}] => (Allow) D:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{F84ACC04-B298-4A0D-ADD2-823DE0AF6CDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe (NADEO -> )
FirewallRules: [{7706F76F-302B-4922-B5DB-DF61DFE14719}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe (NADEO -> )
FirewallRules: [TCP Query User{72573301-48FA-407B-99C1-5942699A71D3}C:\program files (x86)\steam\steamapps\common\maniaplanet_tmstadium\maniaplanet.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\maniaplanet_tmstadium\maniaplanet.exe (NADEO -> Nadeo)
FirewallRules: [UDP Query User{7C7C8512-2426-44C6-A5C3-67B8C1E64DBF}C:\program files (x86)\steam\steamapps\common\maniaplanet_tmstadium\maniaplanet.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\maniaplanet_tmstadium\maniaplanet.exe (NADEO -> Nadeo)
FirewallRules: [{9CBCC040-4398-4338-AED9-294B5DE6CC4A}] => (Allow) D:\SteamLibrary\steamapps\common\ImperatorRome\launcher\Paradox Launcher.exe (Paradox Interactive Ab (Publ) -> Paradox Interactive)
FirewallRules: [{13F2EB25-C0E1-43D7-A567-90835FA697CB}] => (Allow) D:\SteamLibrary\steamapps\common\ImperatorRome\launcher\Paradox Launcher.exe (Paradox Interactive Ab (Publ) -> Paradox Interactive)
FirewallRules: [{3BDAD3A3-A347-42CF-A9F6-170DF9FD3A80}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Pas de fichier
FirewallRules: [{328F72DB-3F6B-4903-BFBD-0E4C454FBD40}] => (Allow) D:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Pas de fichier
FirewallRules: [TCP Query User{51B1F9EB-11A2-432E-A79B-88404B0587AD}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{45908C36-5571-4B69-8362-48AADB243AAB}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{A4C3C295-1751-4A4A-B244-410F45C898F5}D:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{3BEFB8AB-F2B4-4A13-9955-DEB58C02516B}D:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) D:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{3FC9B7F1-EDEA-4913-8E06-815CF2134DB4}] => (Allow) D:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{59C803D1-A002-4F68-B512-C6C295F9060D}] => (Allow) D:\SteamLibrary\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{998233D6-8ED4-47AC-A78F-CAB1D6942FAE}] => (Allow) D:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Fichier non signé]
FirewallRules: [{80EE12A7-CC87-4E58-A83F-C6D01833FE6D}] => (Allow) D:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Fichier non signé]

==================== Points de restauration =========================

03-05-2019 21:14:42 Windows Update
13-05-2019 17:12:57 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Excessive name conflicts (17) for 3.D.1.3.0.6.D.8.8.7.A.A.8.A.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. (PTR); rate limiting in effect

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 3.D.1.3.0.6.D.8.8.7.A.A.8.A.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-KDP4I7R-3.local.

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.11:5353 25 3.D.1.3.0.6.D.8.8.7.A.A.8.A.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-KDP4I7R-2.local.

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Excessive name conflicts (16) for 4.F.2.8.9.3.A.4.7.1.E.C.3.5.5.F.0.0.B.1.C.A.0.8.0.0.B.C.1.0.A.2.ip6.arpa. (PTR); rate limiting in effect

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 4.F.2.8.9.3.A.4.7.1.E.C.3.5.5.F.0.0.B.1.C.A.0.8.0.0.B.C.1.0.A.2.ip6.arpa. PTR DESKTOP-KDP4I7R-3.local.

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.11:5353 25 4.F.2.8.9.3.A.4.7.1.E.C.3.5.5.F.0.0.B.1.C.A.0.8.0.0.B.C.1.0.A.2.ip6.arpa. PTR DESKTOP-KDP4I7R-2.local.

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Excessive name conflicts (15) for 3.D.1.3.0.6.D.8.8.7.A.A.8.A.D.2.0.0.B.1.C.A.0.8.0.0.B.C.1.0.A.2.ip6.arpa. (PTR); rate limiting in effect

Error: (05/11/2019 06:52:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 3.D.1.3.0.6.D.8.8.7.A.A.8.A.D.2.0.0.B.1.C.A.0.8.0.0.B.C.1.0.A.2.ip6.arpa. PTR DESKTOP-KDP4I7R-3.local.


Erreurs système:
=============
Error: (05/13/2019 11:12:59 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/13/2019 09:58:11 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/13/2019 09:33:16 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/13/2019 09:33:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/12/2019 06:27:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/11/2019 04:48:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.105.152.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/10/2019 09:40:21 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/10/2019 09:21:27 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KDP4I7R)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
et l’APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
au SID DESKTOP-KDP4I7R\Kevin de l’utilisateur (S-1-5-21-3990247599-245654017-591416556-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.


Windows Defender:
===================================
Date: 2019-05-13 23:05:36.178
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:HTML/Fklert&threatid=2147734731&enterprise=0
Nom : Trojan:HTML/Fklert
ID : 2147734731
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Kevin\Downloads\This computer is BLOCKED (1).html; file:_C:\Users\Kevin\Downloads\This computer is BLOCKED (2).html; file:_C:\Users\Kevin\Downloads\This computer is BLOCKED.html
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-KDP4I7R\Kevin
Nom du processus : C:\Users\Kevin\Downloads\ZHPCleaner.exe
Version de la signature : AV: 1.293.1516.0, AS: 1.293.1516.0, NIS: 1.293.1516.0
Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4

Date: 2019-05-13 23:05:36.116
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:HTML/Fklert&threatid=2147734731&enterprise=0
Nom : Trojan:HTML/Fklert
ID : 2147734731
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Kevin\Downloads\This computer is BLOCKED (1).html; file:_C:\Users\Kevin\Downloads\This computer is BLOCKED (2).html
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-KDP4I7R\Kevin
Nom du processus : C:\Users\Kevin\Downloads\ZHPCleaner.exe
Version de la signature : AV: 1.293.1516.0, AS: 1.293.1516.0, NIS: 1.293.1516.0
Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4

Date: 2019-05-13 23:05:36.105
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:HTML/Fklert&threatid=2147734731&enterprise=0
Nom : Trojan:HTML/Fklert
ID : 2147734731
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Kevin\Downloads\This computer is BLOCKED (1).html
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-KDP4I7R\Kevin
Nom du processus : C:\Users\Kevin\Downloads\ZHPCleaner.exe
Version de la signature : AV: 1.293.1516.0, AS: 1.293.1516.0, NIS: 1.293.1516.0
Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4

CodeIntegrity:
===================================

Date: 2019-05-07 19:08:38.229
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. 0205 02/17/2014
Motherboard: ASUSTeK COMPUTER INC. B85-PRO GAMER
Processeur: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Pourcentage de mémoire utilisée: 29%
Mémoire physique - RAM - totale: 12226.04 MB
Mémoire physique - RAM - disponible: 8585.87 MB
Mémoire virtuelle totale: 17887.04 MB
Mémoire virtuelle disponible: 12703.2 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:930.96 GB) (Free:615.29 GB) NTFS
Drive d: (Nouveau nom) (Fixed) (Total:447.13 GB) (Free:192 GB) NTFS

\\?\Volume{838eb00d-b9e1-4183-ad71-c2c42058f6e3}\ () (Fixed) (Total:0.44 GB) (Free:0.03 GB) NTFS
\\?\Volume{b94b7d85-2ade-4bd9-a3af-b32aa58f0ac0}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 74C28144)
Partition 1: (Not Active) - (Size=447.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0BC7078D)

Partition: GPT.

==================== Fin de Addition.txt ============================