Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Exécuté par nicop (05-01-2022 13:35:02)
Exécuté depuis C:\Users\nicop\Desktop
Microsoft Windows 10 Famille Version 21H1 19043.1415 (X64) (2020-11-08 20:57:04)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-2712368136-1175567058-3940372022-500 - Administrator - Disabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-2712368136-1175567058-3940372022-503 - Limited - Disabled)
Invité (S-1-5-21-2712368136-1175567058-3940372022-501 - Limited - Disabled)
nicop (S-1-5-21-2712368136-1175567058-3940372022-1002 - Administrator - Enabled) => C:\Users\nicop
WDAGUtilityAccount (S-1-5-21-2712368136-1175567058-3940372022-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Assassins Creed Unity Gold Edition MULTi13 - ElAmigos version 1.5.0 (HKLM-x32\...\{5CF3C6FD-33E1-46B6-870F-89478DEFF185}_is1) (Version: 1.5.0 - UBISoft)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Nom de votre société) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.1.0.1129 - BlueStack Systems, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Core Epic (HKLM\...\{B51E6DE5-9A25-47E6-9806-24B4C62D42A6}) (Version: 1.3.1.0 - Manticore Games)
Core Epic Installer (HKLM-x32\...\{531451dd-91d4-4b27-a171-1b9c7f325969}) (Version: 1.3.0.0 - Manticore Games) Hidden
CORSAIR iCUE 4 Software (HKLM\...\{9047BE97-D149-4F60-834A-EC2844D32568}) (Version: 4.9.350 - Corsair)
CPUID CPU-Z 1.97 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.97 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1554 - Disc Soft Ltd)
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version: - )
Diag version 2.2.0.0 (HKLM\...\10DBD048-433A-4BC3-951F-055296F077B3_is1) (Version: 2.2.0.0 - Adlice Software)
DriversCloud.com (HKLM\...\{17B87034-AD42-4C66-8715-B1C19135DD31}) (Version: 11.0.2.0 - Cybelsoft)
Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Excel (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Explor@ Park (HKLM-x32\...\VTechDownloadManager) (Version: - VTech)
FiveM (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\CitizenFX_FiveM) (Version: - Cfx.re)
FMSE20 (HKLM\...\{432AE772-60B6-4107-954C-A4EC3275D713}) (Version: 3.2.1.6 - AppCake Limited) Hidden
FMSE20 (HKLM-x32\...\{844a191a-3468-4668-b3bb-774cbdd9a218}) (Version: 3.2.1.6 - AppCake Limited)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
Grand Theft Auto The Trilogy The Definitive Edition MULTi13 - ElAmigos version 1.14296 (HKLM-x32\...\{0252849B-1062-4E48-9070-972264FE6197}_is1) (Version: 1.14296 - RockStar)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LDPlayer (HKLM-x32\...\LDPlayer4) (Version: 4.0.42 - XUANZHI INTERNATIONAL CO., LIMITED)
League of Legends (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.13.2906 - Logitech)
Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes)
Medieval Dynasty MULTi17 - ElAmigos version 1.1.0.2 (HKLM-x32\...\{4335352C-833F-4AFD-8BE5-732BD18F924F}_is1) (Version: 1.1.0.2 - Toplitz Productions)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30135 (HKLM-x32\...\{fa7f6d52-f85e-48ef-8f56-a37268aa5772}) (Version: 14.29.30135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Molotov (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\Molotov) (Version: 4.4.4 - Molotov)
Mozilla Firefox 87.0 (x64 fr) (HKLM\...\Mozilla Firefox 87.0 (x64 fr)) (Version: 87.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 87.0 - Mozilla)
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Pilote graphique 466.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.63 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
OpenIV (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\OpenIV) (Version: 4.0.1.1452 - .black/OpenIV Team)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Outlook (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
paint.net (HKLM\...\{B56F4594-AA51-450A-BBD0-2CE48675D33A}) (Version: 4.2.14 - dotPDN LLC)
Paradox Launcher v2 (HKLM\...\{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 - Paradox Interactive)
PokeMMO (HKLM\...\PokeMMO_is1) (Version: - PokeMMO)
PowerPoint (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
PS Remote Play (HKLM-x32\...\{77FAB2DD-F7FB-41E5-AE39-F9C878736A58}) (Version: 4.5.0.08250 - Sony Interactive Entertainment Inc.)
qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.21.811.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
RedM (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\CitizenFX_RedM) (Version: - Cfx.re)
RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
RogueKiller version 15.1.5.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 15.1.5.0 - Adlice Software)
RomStation (HKLM\...\{458550e8-599b-4ff8-b969-b261d95d86ee}_is1) (Version: 2.6.1 - RomStation)
Samsung Portable SSD Software (HKLM-x32\...\SamsungPortableSSD_is1) (Version: 1.6.7.50 - Samsung Electronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam Customizer (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\Steam Customizer) (Version: 1.0.1.0 - Blumont)
Streamlabs Chatbot version 1.0.2.63 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.63 - Streamlabs)
Streamlabs OBS 0.26.0 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.26.0 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Twitch Studio (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{1729B0A9-0490-418B-A565-89B4D5BC8F2D}) (Version: 1.2.0.0 - Epic Games, Inc.) Hidden
USBHelperLauncher (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\USBHelperLauncher) (Version: 0.17d - FailedShack)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.25.0.5 - Voicemod S.L.)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.4.11 - Black Tree Gaming Ltd.)
WebAdvisor par McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.659 - McAfee, LLC)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Word (HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)

Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-03] (Microsoft Corporation)
EasyMail for Gmail -> C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_3.5.7.0_x64__rcb0qdgx4z9ca [2021-11-22] (Tim Grabinat) [Startup Task]
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1320.12.119.0_x64__8xx8rvfyw5nnt [2021-12-12] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-11-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-11-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-12] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_51.10913.5796.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Corporation)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-12-30] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-13] (Spotify AB) [Startup Task]
zTwitch - Twitch App -> C:\Program Files\WindowsApps\76Chococode.Twitch.tvforWindows10_1.17763.178.0_x64__crad18n2hztbr [2021-10-02] (3AM Studio) [MS Ad]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2712368136-1175567058-3940372022-1002_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\nicop\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-2712368136-1175567058-3940372022-1002_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-02-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-01-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\nvshext.dll [2021-12-15] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-01-05] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32-x32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\nicop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\nicop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\nicop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
ShortcutWithArgument: C:\Users\nicop\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Nicolas - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Modules chargés (Avec liste blanche) =============

2019-01-17 13:37 - 2021-12-26 15:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2021-01-15 22:11 - 2021-01-15 22:11 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\WINDOWS\tracing:? [16]
AlternateDataStreams: C:\Users\nicop:Heroes & Generals [38]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-12-17] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-12-17] (McAfee, LLC -> McAfee, LLC)

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\localhost -> localhost

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\nicop\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-2712368136-1175567058-3940372022-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKU\S-1-5-21-2712368136-1175567058-3940372022-1002\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{B91D7286-BC2B-42CB-BD89-FEB580396F37}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{711C6B11-15E9-40C1-9072-35D16AEE0712}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A1A0C04D-2FDC-45A4-A4CF-D1771573AE43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ED5585B7-1071-41DE-A228-A08B1AB4B623}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E05E7584-2BEF-469E-9D19-3970CFFBF992}] => (Allow) LPort=26820
FirewallRules: [{24C8AA2E-3176-4DE1-AA48-51F41773C184}] => (Allow) LPort=26822
FirewallRules: [{58480A76-B959-4947-96C3-5F71B276CB78}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{71DD7564-03AB-4865-B1EB-D647ADE7F3EE}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{6D12C352-64D3-411C-A52F-1B6FE53BCE72}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{64E5599C-04FE-47E6-93DF-0738A1814DCA}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{0302A019-E049-49A3-944A-49F5014AD54F}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{4965672A-3F16-4C04-ABC7-4062F4515F83}] => (Allow) C:\Users\nicop\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [TCP Query User{9CF0EF4A-8D7C-4AF9-B463-9FE279AF4FBC}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{197853E4-C05B-4009-8759-C262A58BA069}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{1CD99BDE-6C13-4A92-B1C5-2ABE3AB1C057}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{491255B9-BDD7-4BA4-A103-778DEA45FF12}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [{5AD203F3-9C96-46F0-9BD0-9DAC307EB4ED}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{6F1B94AB-E480-413B-9140-6BA52939F8E3}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{6D196346-5DD3-4EDA-98E8-0F2C5677B1A5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FEB9936A-E0C7-4C66-8A2A-CAAFE4D0E951}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6CA50703-A313-49F2-A851-D685E07D24C2}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{B98C795E-BAEA-4523-8D61-15FAC1E94295}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{68B2CD4A-B934-4B54-9C69-9461790C995A}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{BBEF78ED-0569-4869-A4CF-BB4E4D48D067}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{8F920011-CE51-4DF4-8278-2B781271C893}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{911735C7-BF80-4B96-AF68-30AEC68A07EF}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{795DE00D-29C2-478D-A82D-D8BB0E5D57CD}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{20B44360-BBE2-4641-A3B4-E824902006AE}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{1D5EC24A-7FB9-4C42-A4DA-1E3C490332C3}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{963F15AE-3548-400E-BBCE-EED00DC1A276}C:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\program files\teamspeak 3 client\ts3client_win64.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [{6C7E87DF-565E-42ED-826F-68C1089E5BB3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{DAFD5135-279B-4BD6-A1B7-E6418D0FE25D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{0F280508-2F09-4223-9969-76AD60AD5D5E}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{AA17413A-1A69-4E78-989F-525AC6A078B4}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{C10C4F17-6B7C-4199-878E-9973C71EB4D0}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Bluestack Systems, Inc -> BlueStack Systems)
FirewallRules: [TCP Query User{6DEB3C8C-6D57-44C8-9C5F-488A3BFA36A8}C:\romstation\romstation.exe] => (Allow) C:\romstation\romstation.exe () [Fichier non signé]
FirewallRules: [UDP Query User{9FA718B1-73F7-424B-87EF-254FBBF9AF0C}C:\romstation\romstation.exe] => (Allow) C:\romstation\romstation.exe () [Fichier non signé]
FirewallRules: [TCP Query User{27A2378F-5E6E-445D-B2EB-C9B734019795}C:\users\nicop\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\nicop\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe () [Fichier non signé]
FirewallRules: [UDP Query User{34BB5891-0B7C-4409-AAD7-2454EC5148F1}C:\users\nicop\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\nicop\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe () [Fichier non signé]
FirewallRules: [TCP Query User{333090AC-040B-4520-8061-B39611D0DF4A}C:\users\nicop\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe] => (Allow) C:\users\nicop\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe (Hikari06) [Fichier non signé]
FirewallRules: [UDP Query User{C62B8EB1-5EB5-43E4-9892-F3738A894AC9}C:\users\nicop\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe] => (Allow) C:\users\nicop\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe (Hikari06) [Fichier non signé]
FirewallRules: [TCP Query User{6C04BE48-51ED-44CA-B4F9-07AC12E94DCB}C:\program files\streamlabs obs\streamlabs obs.exe] => (Block) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [UDP Query User{627BCF85-2041-4C50-BBAF-A66E1E974CD9}C:\program files\streamlabs obs\streamlabs obs.exe] => (Block) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.)
FirewallRules: [TCP Query User{81C6CE17-A55F-40B7-A2E6-D46FAC6BBBDB}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{674F6FFB-0FA6-482B-9D24-C8AF453BD6B4}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{54746CC1-0C3A-4084-8157-1EA312689B34}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{258941FE-39D5-4390-93FA-DA9727134C10}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{6A4BC4FB-0E82-4B50-8370-5C4507C5103E}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Fichier non signé]
FirewallRules: [{F7B02D5B-00F7-4B9E-B39E-04DCFB6702FC}] => (Allow) D:\SteamLibrary\steamapps\common\Phasmophobia\Phasmophobia.exe () [Fichier non signé]
FirewallRules: [{7A340564-2F71-441E-BE51-CD986A3E73BF}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{5FEDE195-D6E9-4F91-927B-C99943C06FF8}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{ABB3BC90-2F6E-409A-8682-665CA03DA4ED}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{C5D29BA9-8C65-4CA1-853C-227F58FD2DC8}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{717E93FE-1D8E-4A3A-8368-C819727A1EA9}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Fichier non signé]
FirewallRules: [{13DF5459-C64E-4CD1-B1E1-8AB445628A5B}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Fichier non signé]
FirewallRules: [{3DF2DD29-043E-4A96-A7C1-B2867A0C772E}] => (Allow) D:\SteamLibrary\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{AB65371F-8C4B-41B5-A7F9-1B6F0AA0002E}] => (Allow) D:\SteamLibrary\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{CCBED923-2C5C-4D93-BC4B-33BC6B460053}] => (Allow) D:\SteamLibrary\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{5E8B5461-EC29-42E9-BA4F-E6AC9BB24B44}] => (Allow) D:\SteamLibrary\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{0A452FE2-1E9D-4ABC-9A74-DA20DB970261}] => (Allow) D:\SteamLibrary\steamapps\common\Green Hell\GH.exe () [Fichier non signé]
FirewallRules: [{AEB55045-C9FC-4C58-AA99-4953C884589E}] => (Allow) D:\SteamLibrary\steamapps\common\Green Hell\GH.exe () [Fichier non signé]
FirewallRules: [{05146F7E-BF24-41CB-9587-9D15E70F3C3E}] => (Allow) D:\SteamLibrary\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{13A8E9FD-6FEA-458E-8756-78D450A9AF00}] => (Allow) D:\SteamLibrary\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{77C9BF69-7C29-4DCD-A65D-A271FC1B426F}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{C92C1579-CE47-48C0-8ACF-406A6282C298}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{32E7C122-2D13-4361-9A39-CA73BB30CAD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{73627445-E921-4D6E-BCB4-4B2443D5738A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{40322029-DAAC-4BFC-A79C-C7182D826D8F}] => (Allow) D:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FF9B6070-C3BF-4313-9E89-93A232071F63}] => (Allow) D:\SteamLibrary\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{43E8450A-0754-4D81-80F9-3EB7125E9409}C:\users\nicop\appdata\local\fivem\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{56D0832B-7990-41C0-BE62-352641641BBA}C:\users\nicop\appdata\local\fivem\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{F34D6BF6-328F-4763-AC6F-B040738BE017}] => (Allow) C:\Program Files (x86)\Sony\PS Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [{7748907D-09AF-4388-8080-24EFF6AA7CAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{E3DB36E9-6773-480D-99E0-83BB4CC0DFC5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{678D4849-14CE-40CF-807A-B92C3CBF1BEF}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{7B5BDB0C-9377-4C32-95C2-EB526A29EEC0}C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{CAACB805-3214-4DBF-A150-9270D106B288}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc)
FirewallRules: [{9C87E281-DE82-42E0-BA03-0952741AD8A8}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc)
FirewallRules: [TCP Query User{CB3BFC73-9247-463B-817D-D4514EE010B2}E:\emulation\emulateurs\nintendo\switch\yuzu early access 2193\yuzu.exe] => (Allow) E:\emulation\emulateurs\nintendo\switch\yuzu early access 2193\yuzu.exe () [Fichier non signé]
FirewallRules: [UDP Query User{0253DA77-2393-4D8B-B1A8-3599F4EBB3E7}E:\emulation\emulateurs\nintendo\switch\yuzu early access 2193\yuzu.exe] => (Allow) E:\emulation\emulateurs\nintendo\switch\yuzu early access 2193\yuzu.exe () [Fichier non signé]
FirewallRules: [{B5E1B0DE-B117-4CD0-9BDA-F84F300558FB}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [{9BA41871-CC0B-4476-B67C-A948A0A520D7}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [TCP Query User{7E4ED205-2796-4264-85BD-BC33DD56617F}D:\gta trilogy\gta trilogy the definitive edition\gta san andreas - definitive edition\gameface\binaries\win64\sanandreas.exe] => (Block) D:\gta trilogy\gta trilogy the definitive edition\gta san andreas - definitive edition\gameface\binaries\win64\sanandreas.exe (Rockstar Games) [Fichier non signé]
FirewallRules: [UDP Query User{DDE2511E-B457-413F-91A1-7D3D151B75F1}D:\gta trilogy\gta trilogy the definitive edition\gta san andreas - definitive edition\gameface\binaries\win64\sanandreas.exe] => (Block) D:\gta trilogy\gta trilogy the definitive edition\gta san andreas - definitive edition\gameface\binaries\win64\sanandreas.exe (Rockstar Games) [Fichier non signé]
FirewallRules: [{13A1ABD6-0325-49BA-99D9-B0B60B14DEE1}] => (Allow) D:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [Fichier non signé]
FirewallRules: [{58EBBC92-993D-4D3C-8B58-C4FEEC230160}] => (Allow) D:\SteamLibrary\steamapps\common\Crab Game\Crab Game.exe () [Fichier non signé]
FirewallRules: [{88C568B8-03EE-4A70-A55E-7DBE7E5895A1}] => (Allow) D:\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Fichier non signé]
FirewallRules: [{109AB08B-F20E-4647-B758-553BFA4DC580}] => (Allow) D:\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [Fichier non signé]
FirewallRules: [{A7A0F108-B9C3-4D2E-AC27-E5F8BBF1CA46}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{A517B91F-C640-4FE7-9BDA-BE325F6779FD}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{5B140447-99C9-4832-9C0E-DB9A2F43E5A0}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{70342D92-AC08-413F-B798-CF19CFC0C29D}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{1F4CA179-C508-4B42-A9B7-E1BBA00AB712}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{41E67B6E-B439-4F04-B039-CADBA64D219B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A17FACB9-3862-4F1F-B609-C386A1DC5BC4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9EB817D2-732A-4B4F-A4E9-102317B381D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2A3D3703-5A2B-4808-B0AB-97346961640D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{60EFA47C-0CD1-485D-A96D-B463B98633C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{096FA92A-487C-4A49-9DA2-95D0A222113D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{94FECF60-87CA-46E1-98CF-BA0D5692A52D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B35280BC-30DF-4030-90D1-095B96E1D3B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9D8EE28A-FFD4-48F3-99DA-0331C49C0573}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{212D1A43-4C79-4A0B-9B6E-2811CB8C5E04}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD5943C2-68E4-400F-A02A-7FB4DBB1E478}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{F2D2804E-708B-48CF-BD6A-BB5CCBDC624E}D:\epic games\gtav\gta5.exe] => (Block) D:\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{B7F3A5CB-1155-4E78-B570-F72C7096647E}D:\epic games\gtav\gta5.exe] => (Block) D:\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B621B6B6-33BD-4502-8212-E840419EEDF2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{58A8A043-656A-4B74-93BB-0263E411DEF5}D:\gta trilogy\gta trilogy the definitive edition\gta iii - definitive edition\gameface\binaries\win64\libertycity.exe] => (Block) D:\gta trilogy\gta trilogy the definitive edition\gta iii - definitive edition\gameface\binaries\win64\libertycity.exe (Rockstar Games) [Fichier non signé]
FirewallRules: [UDP Query User{49FCA462-DF12-496C-BD06-D4F6B805EBA1}D:\gta trilogy\gta trilogy the definitive edition\gta iii - definitive edition\gameface\binaries\win64\libertycity.exe] => (Block) D:\gta trilogy\gta trilogy the definitive edition\gta iii - definitive edition\gameface\binaries\win64\libertycity.exe (Rockstar Games) [Fichier non signé]
FirewallRules: [{D277EC7A-D995-4D1D-8064-847199FA7431}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{38B4D34D-6C44-4970-8A1F-3F9E9B171C67}C:\users\nicop\appdata\local\redm\redm.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{9A2FABAB-4EDC-4CEF-9DC5-0698E9A5B83D}C:\users\nicop\appdata\local\redm\redm.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{30B111A2-2386-4688-A2D4-832FAEA87178}D:\epic games\reddeadredemption2\rdr2.exe] => (Allow) D:\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{632A4789-4524-4A46-A879-01975AA4F5BF}D:\epic games\reddeadredemption2\rdr2.exe] => (Allow) D:\epic games\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{A1D13211-DD76-43B4-AB77-9A1E92B7B35F}C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1355_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1355_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{475CB43C-2762-4FB0-80CD-14C0ED4A6AD9}C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1355_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1355_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{BE849EAD-CE00-44CE-95AD-50DCC7F6F679}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{CDC5F3C3-6AD8-48CB-B110-F55D4E5B3F4C}] => (Allow) D:\SteamLibrary\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [TCP Query User{0F899BA2-3367-4ABC-9277-DE3F289E48AA}C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1436_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1436_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{F9398CBC-AB91-4F3C-9831-8829E231F724}C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1436_gtaprocess.exe] => (Allow) C:\users\nicop\appdata\local\redm\redm.app\data\cache\subprocess\redm_b1436_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [{C35F6426-FBBA-4327-9F97-131D0D4DA3B9}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{4574EB4C-0F56-4FFE-B648-37C042F74FB0}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{37839A75-B41C-4886-93FD-F2DF2562C08E}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6170E27C-2147-4E9F-B88B-90F5FD674636}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{782D84B7-E15D-4939-B0A1-2820EFEE60A2}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)

==================== Points de restauration =========================

04-01-2022 04:52:46 Point de contrôle planifié
05-01-2022 12:41:15 ZHPcleaner

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/05/2022 01:32:19 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 27.12.2021.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 42cc

Heure de début : 01d8022f5819313c

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Users\nicop\Desktop\FRST64.exe

ID de rapport : edad7e82-6af1-43ce-a0ea-b5da849ef7da

Nom complet du package défectueux :

ID de l'application relative à un package défectueux :

Type de blocage : Top level window is idle

Error: (01/05/2022 12:07:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante NVDisplay.Container.exe, version : 1.35.3033.8148, horodatage : 0x61262d26
Nom du module défaillant : NVDisplay.Container.exe, version : 1.35.3033.8148, horodatage : 0x61262d26
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0000000000073345
ID du processus défaillant : 0x3348
Heure de début de l’application défaillante : 0x01d802246d95c724
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_697983dd21312b3c\Display.NvContainer\NVDisplay.Container.exe
ID de rapport : 4d863b44-1fec-4db1-8a66-1e5049a0d953
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/05/2022 12:03:33 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.


Opération :
Opération asynchrone en cours d’exécution

Contexte :
État actuel: DoSnapshotSet

Error: (01/05/2022 12:02:53 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {3728a706-7e6b-4fc2-b041-df187c9c509f}

Error: (01/05/2022 11:57:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (01/05/2022 11:57:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (01/05/2022 11:57:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (01/05/2022 11:57:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]


Erreurs système:
=============
Error: (01/05/2022 12:59:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Origin Web Helper Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/05/2022 12:59:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service.

Error: (01/05/2022 12:59:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service.

Error: (01/05/2022 12:59:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service LGHUB Updater Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (01/05/2022 12:59:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Disc Soft Lite Bus Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/05/2022 12:59:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Origin Client Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/05/2022 12:59:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Sécurité Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (01/05/2022 12:59:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Corsair Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.


Windows Defender:
================
Date: 2022-01-05 03:29:43
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/ICBundler&threatid=311947&enterprise=0
Nom : PUABundler:Win32/ICBundler
ID : 311947
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\nicop\Downloads\uTorrent (1).exe; file:_C:\Users\nicop\Downloads\uTorrent.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Program Files\Diag\Diag64.exe
Version de la veille de sécurité : AV: 1.355.1401.0, AS: 1.355.1401.0, NIS: 1.355.1401.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-05 03:29:31
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/OfferCore&threatid=311999&enterprise=0
Nom : PUADlManager:Win32/OfferCore
ID : 311999
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\nicop\Downloads\CheatEngine73.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Program Files\Diag\Diag64.exe
Version de la veille de sécurité : AV: 1.355.1401.0, AS: 1.355.1401.0, NIS: 1.355.1401.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-05 00:59:39
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/ICBundler&threatid=311947&enterprise=0
Nom : PUABundler:Win32/ICBundler
ID : 311947
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\nicop\Downloads\uTorrent (1).exe; file:_C:\Users\nicop\Downloads\uTorrent.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Program Files\RogueKiller\RogueKiller64.exe
Version de la veille de sécurité : AV: 1.355.1401.0, AS: 1.355.1401.0, NIS: 1.355.1401.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-05 00:59:26
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/OfferCore&threatid=311999&enterprise=0
Nom : PUADlManager:Win32/OfferCore
ID : 311999
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\nicop\Downloads\CheatEngine73.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Program Files\RogueKiller\RogueKiller64.exe
Version de la veille de sécurité : AV: 1.355.1401.0, AS: 1.355.1401.0, NIS: 1.355.1401.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-04 19:35:07
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sabsik.FL.A!ml&threatid=2147780195&enterprise=0
Nom : Trojan:Win32/Sabsik.FL.A!ml
ID : 2147780195
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\nicop\AppData\Local\Temp\Rar$EXb8220.45633\open__with_Pass__1234.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : LORDKOURIAM\nicop
Nom du processus : C:\Program Files (x86)\WinRAR\WinRAR.exe
Version de la veille de sécurité : AV: 1.355.1401.0, AS: 1.355.1401.0, NIS: 1.355.1401.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

CodeIntegrity:
===============
Date: 2021-05-19 00:13:33
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-05-19 00:12:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. 1.40 01/25/2019
Carte mère: Micro-Star International Co., Ltd. B450M GAMING PLUS (MS-7B87)
Processeur: AMD Ryzen 5 1400 Quad-Core Processor
Pourcentage de mémoire utilisée: 24%
Mémoire physique - RAM - totale: 16335.28 MB
Mémoire physique - RAM - disponible: 12288.5 MB
Mémoire virtuelle totale: 24527.28 MB
Mémoire virtuelle disponible: 18840.91 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:445.86 GB) (Free:165.31 GB) NTFS
Drive d: (SSD 1T0) (Fixed) (Total:931.48 GB) (Free:172.91 GB) exFAT
Drive e: (Externe) (Fixed) (Total:1863 GB) (Free:1752.31 GB) NTFS

\\?\Volume{39a923f1-2617-11e9-a0ce-f46d04eed6d0}\ (Recovery image) (Fixed) (Total:1 GB) (Free:0.49 GB) NTFS
\\?\Volume{39a923ee-2617-11e9-a0ce-f46d04eed6d0}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: DF2F5A2D)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt =======================