Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 25-11-2019 01
Exécuté par THOMAS (29-11-2019 10:52:26)
Exécuté depuis C:\Users\THOMAS\Downloads
Windows 10 Home Version 1903 18362.476 (X64) (2019-09-26 07:54:28)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-549508586-3479748442-19949589-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-549508586-3479748442-19949589-503 - Limited - Disabled)
Invité (S-1-5-21-549508586-3479748442-19949589-501 - Limited - Disabled)
THOMAS (S-1-5-21-549508586-3479748442-19949589-1002 - Administrator - Enabled) => C:\Users\THOMAS
WDAGUtilityAccount (S-1-5-21-549508586-3479748442-19949589-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

@BIOS B15.0630.1 (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE) Hidden
@BIOS B15.0630.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.)
Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft)
AOC G-Menu (HKLM\...\{177B7213-4D12-49AD-9746-C532580D6D52}) (Version: 1.1.002 - Portrait Displays, Inc.)
APP Center (HKLM-x32\...\{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.15.0916 - Gigabyte) Hidden
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.15.0916 - Gigabyte)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ASUS PCE-AC56 WLAN Card Utilities/Driver (HKLM-x32\...\{FD792656-6D10-4876-AB24-A845232B7527}) (Version: 2.0.9.0 - ASUS)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU)
Blade & Soul (HKLM-x32\...\{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blood and Wine (HKLM-x32\...\1441620909_is1) (Version: 1.32 - GOG.com)
Bloodstained: Ritual of the Night (HKLM-x32\...\Bloodstained: Ritual of the Night_is1) (Version: - )
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
Cheat Engine 6.8.3 (HKLM-x32\...\Cheat Engine 6.8.3_is1) (Version: - Cheat Engine)
CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0232 - Disc Soft Ltd)
Deluge 1.3.14 (HKLM-x32\...\Deluge) (Version: - )
Discord (HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dragon Age™ : Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
f.lux (HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\Flux) (Version: - f.lux Software LLC)
Free DLC program (16 DLC) (HKLM-x32\...\1430743168_is1) (Version: 1.32 - GOG.com)
Gameforge Live 2.0.13 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.13 - Gameforge)
Geeks3D FurMark 1.20.8.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version: - )
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
GRIS (HKLM-x32\...\GRIS_is1) (Version: - )
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Hearts of Stone (HKLM-x32\...\1441355562_is1) (Version: 1.32 - GOG.com)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.303 - )
K-Lite Mega Codec Pack 12.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP)
Magic Bullet Suite 64-bit (HKLM\...\{93488C33-D8D6-472A-83BB-F71603355CF0}) (Version: 11.1.0 - Red Giant Software) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{93488C33-D8D6-472A-83BB-F71603355CF0}) (Version: 11.1.0 - Red Giant Software)
Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Office Home and Business Premium - fr-fr (HKLM\...\HomeBusinessPipcRetail - fr-fr) (Version: 16.0.12130.20390 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{4549ceb8-695a-42eb-a183-4820d542a15f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mirror's Edge™ Catalyst (HKLM-x32\...\{12228a0d-f6ad-4691-82af-d2c643424468}) (Version: 1.0.3.47248 - Electronic Arts)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.3.0.0 - Electronic Arts)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 3.0 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 3.0 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 3.0 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 3.0 - NewBlue)
NewBlue ColorFast for Windows (HKLM-x32\...\NewBlue ColorFast for Windows) (Version: 3.0 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Light Blends for Windows (HKLM-x32\...\NewBlue Light Blends for Windows) (Version: 3.0 - NewBlue)
NewBlue Light Effects for Windows (HKLM-x32\...\NewBlue Light Effects for Windows) (Version: 3.0 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 2.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 3.0 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 3.0 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 3.0 - NewBlue)
NewBlue plug-ins bundle patch build 121206 (HKLM\...\NewBlue plug-ins bundle patch build 121206_is1) (Version: 3.0.0.0 - NewBlue Inc.)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials IV for Windows (HKLM-x32\...\NewBlue Video Essentials IV for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.23 - Black Tree Gaming)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.2.6.1 - Duodian Technology Co. Ltd.)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 436.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.30 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12130.20390 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20390 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12130.20390 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12130.20390 - Microsoft Corporation) Hidden
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.55.33574 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{91efab76-b7f0-4423-af53-76746901100a}) (Version: latest - ppy Pty Ltd)
Panneau de configuration NVIDIA 436.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.30 - NVIDIA Corporation) Hidden
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.0 beta r2607 - )
Rappelz Equation version 0.1 (HKLM-x32\...\{6E528278-481A-4023-A01F-888F5FAAB676}_is1) (Version: 0.1 - Equation, Inc.)
Rappelz_FR version 9.5 (HKLM-x32\...\{3845473F-1ECD-46B3-BAD2-7B6D9B8BEBF2}_is1) (Version: 9.5 - WEBZEN)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Shadow of the Tomb Raider (HKLM-x32\...\Shadow of the Tomb Raider_is1) (Version: - )
Sony Preset Manager 2.0 (HKLM-x32\...\{DB941B05-96AB-4AC9-B4CE-B428B9E049F3}) (Version: 2.0.93 - Sony)
STAR WARS Jedi - Fallen Order™ (HKLM-x32\...\{D00A89F1-2D8C-4589-B1D1-73A6544E3B1F}) (Version: 1.0.1.0 - Electronic Arts, Inc.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.5 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarParse (HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\{fxApplication}}_is1) (Version: 1.0 - Ixale)
Super macro 3.1 (HKLM-x32\...\Super macro) (Version: 3.1 - )
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com)
TunnelBear (HKLM-x32\...\{31fb4219-f2b2-4675-b02e-573096775251}) (Version: 4.1.0.0 - TunnelBear)
TunnelBear (HKLM-x32\...\{DAA6ADBF-9408-41CE-B5F0-3E9BB722B002}) (Version: 4.1.0.0 - TunnelBear) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{344F3227-F502-4219-9DC4-1967E586FAFA}) (Version: 2.51.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vegas Pro 13.0 (64-bit) (HKLM\...\{1F535D6E-0BC8-11E5-B2CB-F04DA23A5C58}) (Version: 13.0.453 - Sony)
VEGAS Pro 16.0 (HKLM\...\{3DAD5FC0-FE3E-11E8-8727-00155D6302F2}) (Version: 16.0.352 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
WPS Office (11.2.0.9052) (HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\Kingsoft Office) (Version: 11.2.0.9052 - Kingsoft Corp.)

Packages:
=========
Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-11-11] (Microsoft Studios) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-24] (Microsoft Corporation) [MS Ad]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-549508586-3479748442-19949589-1002_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\THOMAS\AppData\Local\Kingsoft\WPS Office\11.2.0.9052\office6\kwpsmenushellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-549508586-3479748442-19949589-1002: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\THOMAS\AppData\Local\Kingsoft\WPS Office\11.2.0.9052\office6\kwpsmenushellext64.dll [2019-11-20] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-549508586-3479748442-19949589-1002: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\THOMAS\AppData\Local\Kingsoft\WPS Office\11.2.0.9052\office6\kwpsmenushellext64.dll [2019-11-20] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\windows\system32\lagarith.dll [148992 2011-12-07] ( ) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.X264] => C:\windows\system32\x264vfw64.dll [3571200 2015-02-28] (x264vfw project) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.XVID] => C:\windows\system32\xvidvfw.dll [309248 2015-12-18] () [Fichier non signé]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3591680 2015-02-28] (x264vfw project) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [282112 2015-12-18] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Fichier non signé]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\THOMAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl

==================== Modules chargés (Avec liste blanche) =============

2019-11-05 14:55 - 2019-11-05 14:55 - 000030720 _____ () [Fichier non signé] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2016-03-22 16:53 - 2016-03-22 16:53 - 000093184 _____ () [Fichier non signé] C:\Program Files\Rainmeter\Plugins\PerfMon.DLL
2016-03-22 16:53 - 2016-03-22 16:53 - 000108544 _____ () [Fichier non signé] C:\Program Files\Rainmeter\Plugins\PowerPlugin.DLL
2016-05-11 16:16 - 2016-05-11 16:16 - 000015872 _____ () [Fichier non signé] C:\Users\THOMAS\AppData\Roaming\Rainmeter\Plugins\ActiveNet.DLL
2016-10-27 21:32 - 2016-09-27 15:29 - 000489984 _____ (Newtonsoft) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\Newtonsoft.Json.dll
2016-05-11 18:32 - 2019-06-11 07:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll
2016-05-11 18:32 - 2019-06-11 07:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll
2016-05-11 18:32 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-11-14 10:28 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-11-14 10:28 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-11-14 10:28 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-11-14 10:28 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-11-14 10:28 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll
2016-10-27 21:32 - 2016-10-10 08:50 - 000072704 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppCollect.dll
2016-10-27 21:32 - 2016-10-10 08:50 - 000331776 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppCommon.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer sites de confiance/sensibles ==========

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE restricted site: HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\skype.com -> hxxps://apps.skype.com

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-10-30 08:24 - 2019-11-14 23:30 - 000001126 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 keystone.mwbsys.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-549508586-3479748442-19949589-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\THOMAS\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\550113.jpg
DNS Servers: 208.67.222.222 - 208.67.220.220
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Uninstall 17.3.6816.0313\amd64"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Uninstall 17.3.6816.0313"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Uninstall 17.3.6390.0509\amd64"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Uninstall 17.3.6390.0509"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-549508586-3479748442-19949589-1002\...\StartupApproved\Run: => "cacaoweb"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{E9DE06E1-E835-4319-9B0B-EDE8C34C0991}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 1800\Bin\Win64\Anno1800.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{6939D3FA-8BD3-47CB-BFAA-7976FCA64130}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9E9F548A-2D3A-4CB9-9209-E82E540612F0}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{11BBF743-FCB0-4006-9C89-59D53B095C5C}] => (Block) E:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{3C451760-9F9E-4779-814C-4E8F0CC4477F}] => (Block) E:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{49BF7CD0-8758-4F1E-B9E4-8AFEAD7E6990}E:\the sims 4\game\bin\ts4_x64.exe] => (Allow) E:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{6329C09C-B34E-4EF7-96EF-44E222815776}E:\the sims 4\game\bin\ts4_x64.exe] => (Allow) E:\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{4F8A0407-889F-4A82-83DA-A7866058861E}] => (Block) C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [{310184E2-977B-4119-B884-4597D1235368}] => (Block) C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [UDP Query User{2BAD3E97-F5B7-4295-84ED-B4D8C1A14E6B}C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [TCP Query User{D942CCD6-13E8-4DD7-8BE6-63BBD4115013}C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\thomas\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [{3CE79AA4-947F-420D-A50F-9928D0FC8D68}] => (Block) E:\anno 1404 gold edition\tools\anno4web.exe Pas de fichier
FirewallRules: [{BB6A184E-1206-4655-BF96-E6CD5D1D7609}] => (Block) E:\anno 1404 gold edition\tools\anno4web.exe Pas de fichier
FirewallRules: [UDP Query User{595F47A9-AFBC-47B2-86EC-81BB1677E19F}E:\anno 1404 gold edition\tools\anno4web.exe] => (Allow) E:\anno 1404 gold edition\tools\anno4web.exe Pas de fichier
FirewallRules: [TCP Query User{A1241321-2A94-41CA-ABF5-EA50153AB68B}E:\anno 1404 gold edition\tools\anno4web.exe] => (Allow) E:\anno 1404 gold edition\tools\anno4web.exe Pas de fichier
FirewallRules: [{3AA5331E-FCBF-4219-9F71-2679906A897E}] => (Allow) E:\SteamLibrary\steamapps\common\Game Dev Tycoon\nw.exe (Greenheart Games Pty. Ltd. -> )
FirewallRules: [{A6E86C86-9E85-4F27-AF12-8B94AE3F3EBB}] => (Allow) E:\SteamLibrary\steamapps\common\Game Dev Tycoon\nw.exe (Greenheart Games Pty. Ltd. -> )
FirewallRules: [{914BF9EF-03C8-4CEB-A6BC-461890B8FA2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Devil May Cry 5\DevilMayCry5.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{1CDBAFF6-702D-45FE-BAAF-C644EF65EAC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Devil May Cry 5\DevilMayCry5.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{A7814716-B6CB-4F2F-B181-CB595B93FD60}] => (Block) C:\program files\vegas\vegas pro 16.0\vegas160.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.)
FirewallRules: [{9DBB661D-0770-4900-B64E-016015F6F5E5}] => (Block) C:\program files\vegas\vegas pro 16.0\vegas160.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.)
FirewallRules: [UDP Query User{56FEE3FF-AEA3-4C70-85F9-B6C327701362}C:\program files\vegas\vegas pro 16.0\vegas160.exe] => (Allow) C:\program files\vegas\vegas pro 16.0\vegas160.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.)
FirewallRules: [TCP Query User{9E3A5D92-CFCE-463F-955B-29BBB45A6B6A}C:\program files\vegas\vegas pro 16.0\vegas160.exe] => (Allow) C:\program files\vegas\vegas pro 16.0\vegas160.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.)
FirewallRules: [{02100C90-7560-4F44-B175-17961E77D6BD}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
FirewallRules: [{E3BB3BF4-8ED7-4F79-A875-88700602BB54}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{0718B13A-18EB-488E-B03F-531EBBA44EC2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{15563983-BC69-411C-B0FF-452B8986AA69}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4DA05392-D396-4CBA-A4BB-732C8B18DF62}] => (Allow) LPort=5558
FirewallRules: [{423EE1D6-A384-43D0-B548-9D02A22CD778}] => (Allow) LPort=5556
FirewallRules: [{EAA104B9-C348-4FD9-942F-1294FA7F2768}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5A2E6967-7343-489E-B305-451D9F6FA2AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E84102F7-835D-40F8-BF29-6B980DC80AF0}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{DF32CEC1-3073-419E-A779-1AFADDC20083}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{6ABAC596-8653-402C-A2DC-5F8FDA18D8FF}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{254070AE-6AE2-4AD3-B7EE-EF77936A4707}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{04C50DF5-4F01-4D57-BC07-7E56D99D3DB1}] => (Allow) E:\GameforgeLive\gfl_client.exe Pas de fichier
FirewallRules: [{18CE81FF-1D78-47BA-B621-ACACAB1C1782}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{6FEBF738-051A-466A-8645-2219E45D6CCF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{FF4001EF-3215-484C-B727-D3130141F4E0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{2559347C-EEDB-4095-9B78-848E2E9C49A0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{89264672-14CD-4DCC-BE0A-F23D9F87B45C}] => (Allow) E:\SteamLibrary\steamapps\common\Special Edition\DevilMayCry4SpecialEdition.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{B05E973F-E8BB-4CE3-B359-0EB8AE4FE28E}] => (Allow) E:\SteamLibrary\steamapps\common\Special Edition\DevilMayCry4SpecialEdition.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{0DF5A0A7-353C-4584-9BAB-A1CD52E93399}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe (Oracle Corporation -> )
FirewallRules: [{C1BEC911-9F0C-4DE6-A376-F1AAB0405251}] => (Block) C:\users\thomas\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{66A940E0-AC58-46F2-9930-B0FFB6E465F9}C:\users\thomas\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\thomas\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{735A17B4-2E13-4C6C-9F68-05F6BF93ADCA}C:\users\thomas\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\thomas\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{AEBEB2E2-8D40-44CF-846E-159BAF03B961}E:\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) E:\gameforgelive\games\fra_fra\tera\tera-launcher.exe Pas de fichier
FirewallRules: [TCP Query User{B2D3E770-28D6-43AB-B12C-8F4AA91971FF}E:\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) E:\gameforgelive\games\fra_fra\tera\tera-launcher.exe Pas de fichier
FirewallRules: [{F4D0B84C-A8D4-42CF-8E0C-30CD6725C0AD}] => (Allow) E:\OriginLibrary\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{5C572111-0CF6-4B54-B4A5-C71678AFC009}] => (Allow) E:\OriginLibrary\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{FF95CE72-218C-4F1A-BF8D-67A995F3F4DC}] => (Block) C:\program files\sony\vegas pro 13.0\vegas130.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Fichier non signé]
FirewallRules: [{024EEB05-BAA8-45E4-A457-1E12FAA6A4D0}] => (Block) C:\program files\sony\vegas pro 13.0\vegas130.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{25D9FB50-D96A-434C-AA2B-65C8244AD672}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Allow) C:\program files\sony\vegas pro 13.0\vegas130.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{5A5DE238-5929-41C2-A71F-31E1A59356EB}C:\program files\sony\vegas pro 13.0\vegas130.exe] => (Allow) C:\program files\sony\vegas pro 13.0\vegas130.exe (Sony Creative Software Inc -> Sony Creative Software Inc.) [Fichier non signé]
FirewallRules: [{3AE90929-4F62-4D8F-A366-641AB9B7CBD7}] => (Allow) E:\OriginLibrary\Need for Speed\NFS16_trial.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{35A31DE7-122E-4345-8D62-97A46FCF6BF0}] => (Allow) E:\OriginLibrary\Need for Speed\NFS16_trial.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{53754987-C61D-433D-BFB8-AD19B96FD7FC}] => (Allow) E:\OriginLibrary\Need for Speed\NFS16.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{A81FA3BC-0984-4BAC-BEC3-0D4A6C4B31A7}] => (Allow) E:\OriginLibrary\Need for Speed\NFS16.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{012E7B0F-95E3-47C1-9491-E59CA60BCD27}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0C72FFB3-9A8C-4E3F-AAB2-473762DC225D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8387E1AB-D31B-4616-B84C-D19C82D4E8AD}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{50BFDA98-C9E9-4D4A-890E-9C2F8FC7618D}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FDC2D9FC-F858-4D55-9523-E6FF88CBE6B6}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{8782C16E-BEDA-435F-9770-4A081EB197F2}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [TCP Query User{71D56AA6-B678-48AC-B69E-838FDE993092}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [UDP Query User{79B0B5FF-D7BE-4AC4-9D18-14588EE2389F}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [{C442E7B4-F568-489F-9842-8377E0E68122}] => (Block) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [{0393B681-D872-4E93-AD8F-99ABB00FEFEE}] => (Block) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [TCP Query User{4D70D264-BD2F-440D-8948-C4F0F2574B2C}E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe] => (Allow) E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe (Saber Interactive) [Fichier non signé]
FirewallRules: [UDP Query User{54B25B33-A047-4D55-A3BE-46A087201A8A}E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe] => (Allow) E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe (Saber Interactive) [Fichier non signé]
FirewallRules: [{0C204D79-9051-46DF-A585-09DF4B24B3D9}] => (Block) E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe (Saber Interactive) [Fichier non signé]
FirewallRules: [{ECF0EE91-2051-42AD-B090-F4D3340D97D5}] => (Block) E:\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe (Saber Interactive) [Fichier non signé]
FirewallRules: [{D73C3C51-AE3B-430E-A662-456ED5FA3D15}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{C7F4EC83-017D-4432-8D22-A8DEA0B3A913}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{F9789AED-E0AE-4170-889D-87D377E4FC4C}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6B4A67D4-E5E5-4B24-9D06-5403A28C02ED}] => (Block) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{7747857D-26D1-4634-ABCC-F298803B9BD3}] => (Block) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0A4ED395-BC1A-41DD-BD99-9125C5130EBD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D5A8C7F2-D5C9-4C2B-A986-B62947A6C322}] => (Allow) E:\OriginLibrary\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{EA60497E-C464-4C0E-8AF1-F6101351695B}] => (Allow) E:\OriginLibrary\Jedi Fallen Order\SwGame\Binaries\Win64\starwarsjedifallenorder.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{B0327075-D466-4BBA-8CC7-6E151F365136}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

07-11-2019 13:26:46 Windows Update
13-11-2019 23:38:33 Windows Update
19-11-2019 19:25:37 Installed PingPlotter 5

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (11/29/2019 10:31:28 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3252,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/29/2019 10:24:11 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5480,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/29/2019 09:54:27 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10420,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/29/2019 09:13:05 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6576,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/29/2019 08:15:30 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7272,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/29/2019 07:57:30 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5664,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/28/2019 11:07:02 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3320,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/28/2019 10:46:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3268,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Erreurs système:
=============
Error: (11/29/2019 10:16:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Apple Mobile Device Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/29/2019 10:16:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Apple Mobile Device Service.

Error: (11/29/2019 07:45:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Apple Mobile Device Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/29/2019 07:45:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Apple Mobile Device Service.

Error: (11/28/2019 11:19:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Apple Mobile Device Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/28/2019 11:19:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Apple Mobile Device Service.

Error: (11/27/2019 10:05:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Apple Mobile Device Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/27/2019 10:05:51 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Apple Mobile Device Service.


Windows Defender:
===================================
Date: 2019-11-15 14:23:54.482
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {4D96B539-02BC-4C55-B6B1-3A537FCBE0EB}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-11-09 19:57:14.282
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {83DDF08F-AE8F-4B38-BA1F-D91B449EFFD4}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-11-07 13:32:15.646
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {BAB88DE5-2A6A-41B3-97B9-B5A6261DAE3B}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-11-06 17:59:47.826
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {14D0169D-7B50-4CDB-99B7-9B2832121EEB}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-11-05 15:06:22.070
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {20B09A36-015C-40C1-88B1-613FC9A7BB32}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

CodeIntegrity:
===================================

Date: 2019-10-05 13:35:55.337
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\THOMAS\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-10-05 13:35:55.313
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. F22 03/06/2017
Carte mère: Gigabyte Technology Co., Ltd. Z170X-UD3-CF
Processeur: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Pourcentage de mémoire utilisée: 25%
Mémoire physique - RAM - totale: 16339.64 MB
Mémoire physique - RAM - disponible: 12224.48 MB
Mémoire virtuelle totale: 18771.64 MB
Mémoire virtuelle disponible: 14095.27 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:237.01 GB) (Free:77.21 GB) NTFS
Drive e: (Disque) (Fixed) (Total:1862.89 GB) (Free:1172.57 GB) NTFS

\\?\Volume{f9a0c490-76eb-4fd5-9f2d-15e8799a5e7d}\ () (Fixed) (Total:0.85 GB) (Free:0.41 GB) NTFS
\\?\Volume{b7487721-e16d-4947-946e-3dc3a303b72c}\ (BOOT) (Fixed) (Total:0.48 GB) (Free:0.46 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: BE3CE4C3)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt =======================