Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-04-2020
Exécuté par Senzu (18-04-2020 06:25:26)
Exécuté depuis C:\Users\Senzu\Desktop
Windows 10 Home Version 1909 18363.778 (X64) (2020-02-17 15:07:39)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-960280127-90716886-3153714440-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-960280127-90716886-3153714440-503 - Limited - Disabled)
Invité (S-1-5-21-960280127-90716886-3153714440-501 - Limited - Disabled)
Senzu (S-1-5-21-960280127-90716886-3153714440-1001 - Administrator - Enabled) => C:\Users\Senzu
WDAGUtilityAccount (S-1-5-21-960280127-90716886-3153714440-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Acquisition version 0.6a (HKLM-x32\...\{53E25C0C-0305-47BB-9884-F0F202297AF4}_is1) (Version: 0.6a - )
ActiveState Komodo Edit 10.1.3 (HKLM-x32\...\{80375DA2-CFB8-4DC3-9E01-9AC82443C88B}) (Version: 10.1.3 - ActiveState Software Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
AutoHotkey 1.1.30.01 (HKLM\...\AutoHotkey) (Version: 1.1.30.01 - Lexikos)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Brave (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\BraveSoftware Brave-Browser) (Version: 80.1.7.92 - Auteurs de Brave)
Brave (old) (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\Brave) (Version: 0.26.0 - Brave Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Discord (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Focusrite USB 4.36.0.484 (HKLM\...\Focusrite USB_is1) (Version: 4.36.0.484 - Focusrite Audio Engineering Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.163 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\HearthstoneDeckTracker) (Version: 1.7.13 - HearthSim)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.6.3 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation)
Intel(R) Network Connections 20.5.150.0 (HKLM\...\PROSetDX) (Version: 20.5.150.0 - Intel)
Intel(R) Turbo Boost Max Technology 3.0 (HKLM\...\IntelNit) (Version: 1.0.0.1032 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.5.463447.175 - Comodo)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
JetBrains PyCharm Community Edition 2018.3.1 (HKLM-x32\...\PyCharm Community Edition 2018.3.1) (Version: 183.4588.64 - JetBrains s.r.o.)
Le VPN (HKLM-x32\...\{345A5CBC-C4E2-455D-AA2B-DF6446AC5C1D}) (Version: 1.0.0 - VTNV Solutions Ltd.) Hidden
Le VPN (HKLM-x32\...\{4d24d1be-be30-41b9-8911-5fdf15948ab2}) (Version: 1.0.24 - VTNV Solutions Ltd)
League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{5f313643-63c9-4660-8dae-eb4a80196cb4}) (Version: 10.1.2.19 - Intel(R) Corporation) Hidden
Loki (HKLM-x32\...\{028C1614-245A-4A71-8304-191FB3A29AC7}) (Version: 1.4 - Synthetic Realms)
LOSTARK (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\LOSTARK) (Version: 1.34 - LOST ARK)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.6 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.76 - MSI)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
Mudfish Cloud VPN v5.0.7 (HKLM-x32\...\Mudfish Cloud VPN) (Version: 5.0.7 - Mudfish Networks)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Pilote graphique 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Progress Telerik Fiddler (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\Fiddler2) (Version: 5.0.20194.41348 - Progress Software EAD)
Python 3.7.2rc1 (64-bit) (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\{c1d33bba-3d7e-4837-a80b-4e84aba8e126}) (Version: 3.7.2121.0 - Python Software Foundation)
Python 3.7.2rc1 Core Interpreter (64-bit) (HKLM\...\{C0B6A24E-70F0-4A52-AE0A-B231A909F4BC}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Development Libraries (64-bit) (HKLM\...\{5C47545E-4FC5-4676-89B3-12DD4C75E7B5}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Documentation (64-bit) (HKLM\...\{82EB287E-1BAD-45ED-8E2A-B7A1885BCC2A}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Executables (64-bit) (HKLM\...\{DD657224-0E91-435E-9015-300929F95674}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 pip Bootstrap (64-bit) (HKLM\...\{547D8D58-C74C-472F-AA5E-DE6ED1D937FE}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Standard Library (64-bit) (HKLM\...\{D70564D8-6CD1-48A5-900C-84A08A8D1333}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Tcl/Tk Support (64-bit) (HKLM\...\{1D71A397-A1E7-4F3A-9F62-471EA8BF29E2}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Test Suite (64-bit) (HKLM\...\{8C5ACA7E-EBD3-4EFB-861B-6B615939E0EE}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python 3.7.2rc1 Utility Scripts (64-bit) (HKLM\...\{7ACE7AC3-F4C1-4C48-97C8-E27430365138}) (Version: 3.7.2121.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{2737F37E-55ED-459A-ACC3-1821FE49DE5F}) (Version: 3.7.6553.0 - Python Software Foundation)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.23.1 - Razer Inc.)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.1.0.170 - Samsung Electronics)
Scarlett (2nd Gen) Firmware Updater 1.0.1.179 (HKLM-x32\...\Scarlett (2nd Gen) Firmware Updater_is1) (Version: 1.0.1.179 - Focusrite Audio Engineering Ltd.)
Skype version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.)
SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.8.10.170 - EnigmaSoft Limited)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Streamlabs OBS 0.9.5 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.9.5 - General Workings, Inc.)
Stronghold Kingdoms (HKLM-x32\...\{D1D632A2-E249-466D-A094-B1B934D37645}_is1) (Version: 1.17 - Firefly Studios)
Summoners War Exporter 0.0.31 (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\{2c51f908-e8f0-589d-a31c-2016328f814f}) (Version: 0.0.31 - porksmash & Xzandro)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
TI Connect CE (HKLM-x32\...\{6FE90E22-9AFA-4895-9115-5565A204C577}) (Version: 5.4.0.1181 - Texas Instruments Inc.)
TriDef VR Games (MSI) 1.3.3 (HKLM-x32\...\vr-msi-pkg) (Version: 1.3.3 - Dynamic Digital Depth Australia Pty Ltd)
Twitch (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Uthgard Launcher (HKLM-x32\...\Uthgard Launcher) (Version: 1.00.00.00 - Uthgard)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Winamax Installer (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\Winamax Installer 2.0) (Version: 2.0 - Winamax)
WinRAR 5.90 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)
XAMPP (HKLM-x32\...\xampp) (Version: 7.2.3-0 - Bitnami)
Xeester (HKLM-x32\...\Xeester) (Version: 2.0 - Xeester)
XSplit Broadcaster (HKLM-x32\...\{AB9D3775-9AFB-4693-A2DB-F49416CEEBAE}) (Version: 3.0.1705.3124 - SplitmediaLabs)
XSplit Gamecaster (HKLM-x32\...\{E2BF4F3A-27BC-4D1B-A77B-707E7F04F72E}) (Version: 3.0.1705.3131 - SplitmediaLabs)
YoloMouse (HKLM\...\{69C126B4-E25D-46AF-8ACD-001160F9460E}) (Version: 0.9.1.0 - HaPpY)
Zygor 4.2.15 (HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\902d341c-51df-594b-a26c-ea7ab5a2af33) (Version: 4.2.15 - Zygor Guides)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-10] (BetaFish)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.166.400.0_x86__kgqvnymyfvs32 [2020-04-17] (king.com)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation)
Hidden City : Jeu d’objets cachés -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.34.3400.0_x86__ytsefhwckbdv6 [2020-03-27] (G5 Entertainment AB)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.7.1.1_x86__h6adky7gbf63m [2020-04-14] (Gameloft SE)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2019-11-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2019-11-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-20] (Microsoft Corporation) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.4030.0_x64__8wekyb3d8bbwe [2020-04-14] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.6005.0_x64__8wekyb3d8bbwe [2020-04-16] (Microsoft Studios)
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Summoners War Optimizer -> C:\Program Files\WindowsApps\49360Xzandro.SummonersWarOptimizer_6.1.2.0_x64__3snd1kpw5gdbr [2020-04-12] (Xzandro) [MS Ad]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-960280127-90716886-3153714440-1001_Classes\CLSID\{06B74C04-E813-4DD4-A972-172836EFA8D6}\InprocServer32 -> C:\Users\Senzu\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll (Brave Software, Inc. -> BraveSoftware Inc.)
CustomCLSID: HKU\S-1-5-21-960280127-90716886-3153714440-1001_Classes\CLSID\{06C9646D-2807-44C0-97D2-6DA0DB623DB4}\localserver32 -> C:\Users\Senzu\AppData\Local\BraveSoftware\Brave-Browser\Application\80.1.7.92\notification_helper.exe (Brave Software, Inc. -> Brave Software, Inc.)
CustomCLSID: HKU\S-1-5-21-960280127-90716886-3153714440-1001_Classes\CLSID\{488E3BA0-A826-4958-9AC6-3F35ED8D62EB}\InprocServer32 -> C:\Users\Senzu\AppData\Local\BraveSoftware\Update\1.3.99.0\psuser_64.dll (Brave Software, Inc. -> BraveSoftware Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\Senzu\Desktop\Игровой центр.lnk -> C:\Users\Senzu\AppData\Local\GameCenter\GameCenter.exe (Pas de fichier) <==== Cyrillic
Shortcut: C:\Users\Senzu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mail.ru\Игровой центр.lnk -> C:\Users\Senzu\AppData\Local\GameCenter\GameCenter.exe (Pas de fichier) <==== Cyrillic

==================== Modules chargés (Avec liste blanche) =============

2017-08-27 20:42 - 2015-05-08 08:26 - 000104448 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2017-08-28 16:41 - 2017-08-02 15:48 - 000237568 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll
2017-08-27 20:42 - 2020-04-18 05:36 - 000041768 _____ (ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2018-08-02 16:10 - 2015-06-23 16:41 - 000082432 _____ (Fintek) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2018-08-02 16:10 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer sites de confiance/sensibles ==========

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-10-16 21:44 - 2019-10-16 21:44 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\ActiveState Komodo Edit 10\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\Senzu\AppData\Local\Microsoft\WindowsApps;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-960280127-90716886-3153714440-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Senzu\Downloads\elysium-sci-01.png
DNS Servers: Le média n'est pas connecté à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run32: => "Zygor Guides Client"
HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-960280127-90716886-3153714440-1001\...\StartupApproved\Run: => "Skype for Desktop"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{791640AA-878D-431A-8EF0-A85E5891F04B}D:\jeux\steam\steam.exe] => (Allow) D:\jeux\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{716EAFFE-5425-43B9-97D4-F91B0134A961}D:\jeux\steam\steam.exe] => (Allow) D:\jeux\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C46F9D90-CF24-427B-8E9A-0336D3DC9744}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{008AECEE-9AA9-4413-87AB-3D3AF0FF6D5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D90A88C-EE9D-4020-B6F8-4D991E797D72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5B8E4D89-C7CD-4BA4-A9C6-E11D00C33406}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{B6B3F95D-CEB6-4A34-BE9F-B93AEA149091}C:\users\senzu\appdata\local\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\users\senzu\appdata\local\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{6DD0AEC3-A795-48BA-9EAF-6D3D76EE84CB}C:\users\senzu\appdata\local\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\users\senzu\appdata\local\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{96D8E3B3-4DBF-4465-9673-2BBAF32B2C26}C:\users\senzu\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\senzu\appdata\local\gamecenter\gamecenter.exe Pas de fichier
FirewallRules: [TCP Query User{34DA29D6-F78A-4299-AB22-ADFEF3746358}C:\users\senzu\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\senzu\appdata\local\gamecenter\gamecenter.exe Pas de fichier
FirewallRules: [UDP Query User{D6B6FB54-C952-4181-A559-D0F81C7CA738}C:\program files (x86)\mudfish cloud vpn\mudwfp_proxy.exe] => (Allow) C:\program files (x86)\mudfish cloud vpn\mudwfp_proxy.exe (Mudfish Networks Inc. -> )
FirewallRules: [TCP Query User{003C1B63-B9C3-4DA6-9035-C970CFB3C2B4}C:\program files (x86)\mudfish cloud vpn\mudwfp_proxy.exe] => (Allow) C:\program files (x86)\mudfish cloud vpn\mudwfp_proxy.exe (Mudfish Networks Inc. -> )
FirewallRules: [UDP Query User{2DE21168-3EB6-42F7-B6C7-8A4539AF218D}C:\users\senzu\appdata\local\programs\sw-exporter\summoners war exporter.exe] => (Allow) C:\users\senzu\appdata\local\programs\sw-exporter\summoners war exporter.exe (porksmash & Xzandro) [Fichier non signé]
FirewallRules: [TCP Query User{F8D9D0AE-AD1F-451D-A862-77FC741BC1E8}C:\users\senzu\appdata\local\programs\sw-exporter\summoners war exporter.exe] => (Allow) C:\users\senzu\appdata\local\programs\sw-exporter\summoners war exporter.exe (porksmash & Xzandro) [Fichier non signé]
FirewallRules: [{6564F14C-0617-42A1-B0EE-173F9968D705}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [{F104779F-19DC-4612-8A73-4BF8C200C03A}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{4795B412-91D6-40B0-98CA-BDADB925E972}] => (Allow) LPort=26789
FirewallRules: [UDP Query User{03C06068-E52C-4B9B-BF26-85BB75E84AD9}D:\jeux\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\jeux\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{0FBFF4A0-7FA2-433F-A88E-59645802A706}D:\jeux\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\jeux\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{9B314725-74D3-4C10-9616-3A5711E2BD7C}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [{7E462025-33D6-40A2-85B9-45BF819DFB56}] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [UDP Query User{DA835138-C6FF-4814-8307-CDEB482CE752}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [TCP Query User{1267A373-15DF-40C9-899C-FC3E7591074E}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [{576E9072-4EA2-4729-840E-582B3AF530A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70B049C8-1585-4B76-AA4F-8B946402FF03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D0AF6CC-F9EF-4C0D-B084-1B028F6804F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8AD04906-F0F1-4804-B81F-50750C31E301}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0424A487-D1F5-4105-8DB6-ECD6FA14E397}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{A818581A-E3B7-4996-ADED-AB5D40340D72}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe (SplitmediaLabs Limited -> SplitmediaLabs)
FirewallRules: [{EC6254A1-110A-4669-9AE2-481FDC760147}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{FB40C97E-FA4E-4B66-A3EC-AE461C76A910}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{152E750A-EBC6-4CB6-B8C5-D40F9852E52D}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\XSplit.Core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [{DBFD0D0F-244F-428B-91FC-37EB541F8A0A}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{6680B278-0CED-48EC-94E5-D7B0C5126877}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\XSplit.Core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [{682E40FE-6797-485B-AA53-B3654D340744}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{A23712BD-4B4D-4147-A085-0DAC7F65E69A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BAB467EC-EF1D-4E78-9735-073A3202B0FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A8555CF2-7073-4A38-966B-C439C1FDCE99}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C473EA69-1469-4BB6-B6D8-489C01794A2A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{55F26AA9-7D20-4B3E-820D-A856A350B3BC}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBAF6391-AFF0-4257-8DB1-2DBB101C0DC8}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD0BDC2E-2211-4BA7-8381-297E4850420D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{0ADD6EBE-0F0D-433C-AAB2-402578E2BD98}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3692A653-34B4-48E3-817D-45AC8014BD63}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E055B96F-EFB3-4070-8548-C7F0B683C974}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{05AEC5E3-B6FF-4196-BB19-9C7EC389E90F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A2149324-E6EE-4A74-BA0E-56B292CF7676}] => (Allow) D:\Jeux\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [Fichier non signé]
FirewallRules: [{7F851394-35E7-4DC3-8398-A0D773BB11B3}] => (Allow) D:\Jeux\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [Fichier non signé]
FirewallRules: [{87FCD5DD-2E5B-41C2-8299-44CB2A93054E}] => (Allow) D:\Jeux\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Fichier non signé]
FirewallRules: [{A727B863-8D52-4F67-AB7E-5A56AB1131DD}] => (Allow) D:\Jeux\Steam\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Fichier non signé]
FirewallRules: [{4387D65A-79A0-4301-8B0C-90BAA7ED64C9}] => (Allow) D:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{8DB3B103-4519-475A-9083-075B4A3FE541}] => (Allow) D:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{B2B4D1E3-8029-4F73-A8C2-F6A197BA6EEC}] => (Allow) D:\Jeux\Steam\steamapps\common\Battlerite\Battlerite.exe (Stunlock Studios AB -> )
FirewallRules: [{8D7057EC-40D4-43A3-9C19-CB22CA9AD78D}] => (Allow) D:\Jeux\Steam\steamapps\common\Battlerite\Battlerite.exe (Stunlock Studios AB -> )
FirewallRules: [{D332C0FE-EA31-47C8-A4F5-AFB3C9090C94}] => (Allow) D:\Jeux\Steam\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Fichier non signé]
FirewallRules: [{4E5152D7-6BD7-4D72-957B-4BA06216242B}] => (Allow) D:\Jeux\Steam\steamapps\common\Yu-Gi-Oh! Duel Links\dlpc.exe () [Fichier non signé]
FirewallRules: [{0E4422BF-F70C-4C3C-A770-223E07CE69CA}] => (Allow) D:\Jeux\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> )
FirewallRules: [{4B4714B3-C284-4FEE-A2EB-269FDB9FB5EB}] => (Allow) D:\Jeux\Steam\steamapps\common\Underlords\game\bin\win64\underlords.exe (Valve -> )
FirewallRules: [{F5137464-299B-448D-B594-704EE33F6D53}] => (Allow) D:\Jeux\Steam\steamapps\common\Frostpunk\Frostpunk.exe (Marek Ziemak -> 11 bit studios S.A.)
FirewallRules: [{FDEC864A-8CC4-4708-A1E2-3A2E2B897761}] => (Allow) D:\Jeux\Steam\steamapps\common\Frostpunk\Frostpunk.exe (Marek Ziemak -> 11 bit studios S.A.)
FirewallRules: [{08B8F777-2BCD-43E2-8956-0F6D34BAD232}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A5C12AA-3C49-41CF-90D4-2731FC46B076}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Points de restauration =========================

30-03-2020 04:39:43 Point de contrôle planifié
08-04-2020 06:46:46 Point de contrôle planifié
16-04-2020 00:32:37 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (04/18/2020 06:06:17 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3584,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/18/2020 06:00:07 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15236,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/18/2020 05:49:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SecHealthUI.exe, version : 10.0.18362.752, horodatage : 0x5e70487e
Nom du module défaillant : SecHealthUIDataModel.dll, version : 10.0.18362.752, horodatage : 0x5e7047ab
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000001c352
ID du processus défaillant : 0x3874
Heure de début de l’application défaillante : 0x01d61532ed83f4c8
Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Chemin d’accès du module défaillant: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
ID de rapport : 4f2746f9-e3c8-45f6-a82d-08df0b98deab
Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.18362.449_neutral__cw5n1h2txyewy
ID de l’application relative au package défaillant : SecHealthUI

Error: (04/18/2020 05:44:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7140,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/18/2020 05:35:31 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (04/18/2020 05:35:31 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (04/18/2020 05:28:28 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13960,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (04/18/2020 04:54:58 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3868,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Erreurs système:
=============
Error: (04/18/2020 05:41:11 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-7HHKAVH)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (04/18/2020 05:35:29 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-7HHKAVH)
Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service BcastDVRUserService_8e18db avec les arguments « Non disponible » pour exécuter le serveur :
Windows.Media.Capture.Internal.AppCaptureShell

Error: (04/18/2020 05:35:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service utilisateur de diffusion et GameDVR_8e18db n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (04/18/2020 05:35:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service utilisateur de diffusion et GameDVR_8e18db.

Error: (04/18/2020 05:35:29 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-7HHKAVH)
Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service BcastDVRUserService_8e18db avec les arguments « Non disponible » pour exécuter le serveur :
Windows.Media.Capture.Internal.AppCaptureShell

Error: (04/18/2020 05:35:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service utilisateur de diffusion et GameDVR_8e18db n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (04/18/2020 05:35:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service utilisateur de diffusion et GameDVR_8e18db.

Error: (04/18/2020 05:35:29 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-7HHKAVH)
Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service BcastDVRUserService_8e18db avec les arguments « Non disponible » pour exécuter le serveur :
Windows.Media.Capture.Internal.AppCaptureShell


Windows Defender:
===================================
Date: 2020-04-18 05:39:09.014
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Senzu\AppData\Roaming\brave\File System\007\p\00\00000000; containerfile:_C:\Users\Senzu\Downloads\OFFICE 2013 PROFESSIONNEL + CRACK.zip; file:_C:\Program Files\KMSpico\cert\installAll.cmd; file:_C:\Program Files\KMSpico\scripts\UnInstall_Service.cmd; file:_C:\Users\Senzu\AppData\Roaming\brave\File System\007\p\00\00000000->OFFICE 2013 PROFESSIONNEL + CRACK/KMSpico9.3 final [heldigard]/KMSpico_setup.exe; file:_C:\Users\Senzu\Downloads\OFFICE 2013 PROFESSIONNEL + CRACK.zip->OFFICE 2013 PROFESSIONNEL + CRACK/KMSpico9.3 final [heldigard]/KMSpico_setup.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.313.1773.0, AS: 1.313.1773.0, NIS: 1.313.1773.0
Version du moteur : AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-18 05:36:37.001
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe de modifier la mémoire.
Heure de détection : 2020-04-18T03:36:37.001Z
Utilisateur : DESKTOP-7HHKAVH\Senzu
Chemin d'accès : \Device\CdRom0
Nom du processus : C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
Version de la veille de sécurité : 1.313.1773.0
Version du moteur : 1.1.16900.4
Version du produit : 4.18.2003.8

Date: 2020-04-18 02:25:37.034
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Senzu\AppData\Roaming\brave\File System\007\p\00\00000000; containerfile:_C:\Users\Senzu\Downloads\OFFICE 2013 PROFESSIONNEL + CRACK.zip; file:_C:\Program Files\KMSpico\cert\installAll.cmd; file:_C:\Program Files\KMSpico\scripts\UnInstall_Service.cmd; file:_C:\Users\Senzu\AppData\Roaming\brave\File System\007\p\00\00000000->OFFICE 2013 PROFESSIONNEL + CRACK/KMSpico9.3 final [heldigard]/KMSpico_setup.exe; file:_C:\Users\Senzu\Downloads\OFFICE 2013 PROFESSIONNEL + CRACK.zip->OFFICE 2013 PROFESSIONNEL + CRACK/KMSpico9.3 final [heldigard]/KMSpico_setup.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : DESKTOP-7HHKAVH\Senzu
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.313.1773.0, AS: 1.313.1773.0, NIS: 1.313.1773.0
Version du moteur : AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-18 02:14:41.741
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe de modifier la mémoire.
Heure de détection : 2020-04-18T00:14:41.741Z
Utilisateur : DESKTOP-7HHKAVH\Senzu
Chemin d'accès : \Device\CdRom0
Nom du processus : C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
Version de la veille de sécurité : 1.313.1773.0
Version du moteur : 1.1.16900.4
Version du produit : 4.18.2003.8

Date: 2020-04-18 02:01:25.926
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe de modifier la mémoire.
Heure de détection : 2020-04-18T00:01:25.926Z
Utilisateur : DESKTOP-7HHKAVH\Senzu
Chemin d'accès : \Device\CdRom0
Nom du processus : C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
Version de la veille de sécurité : 1.313.1773.0
Version du moteur : 1.1.16900.4
Version du produit : 4.18.2003.8

CodeIntegrity:
===================================

Date: 2020-04-17 23:24:57.360
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:42.667
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:40.181
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:39.851
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:37.825
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:37.635
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:37.611
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-04-17 23:24:37.563
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. ALASKA - 1072009 11/08/2016
Motherboard: ASUSTeK COMPUTER INC. X99-E
Processeur: Intel(R) Core(TM) i7-6850K CPU @ 3.60GHz
Pourcentage de mémoire utilisée: 34%
Mémoire physique - RAM - totale: 32678.88 MB
Mémoire physique - RAM - disponible: 21373.41 MB
Mémoire virtuelle totale: 37542.88 MB
Mémoire virtuelle disponible: 25039.84 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:475.54 GB) (Free:235.62 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.5 GB) (Free:590.46 GB) NTFS
Drive e: (G71-VNW1028) (CDROM) (Total:3.86 GB) (Free:0 GB) CDFS
Drive f: (STORE N GO) (Removable) (Total:14.83 GB) (Free:6.5 GB) FAT32

\\?\Volume{1631bad7-1e12-41cb-a5df-301acc9a938a}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{187d8ead-626c-4e45-b327-6dfa5cbbbcbb}\ () (Fixed) (Total:0.84 GB) (Free:0.39 GB) NTFS
\\?\Volume{567a6ab2-730f-4059-9df5-98d64c27fb86}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 14.8 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=14.8 GB) - (Type=0C)

==================== Fin de Addition.txt =======================