Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-09-2020 Exécuté par dandi (06-09-2020 21:09:30) Exécuté depuis C:\Users\dandi\Desktop Windows 10 Pro Version 2004 19041.488 (X64) (2020-08-08 06:11:14) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-687335461-1389871760-2583120190-500 - Administrator - Disabled) dandi (S-1-5-21-687335461-1389871760-2583120190-1001 - Administrator - Enabled) => C:\Users\dandi DefaultAccount (S-1-5-21-687335461-1389871760-2583120190-503 - Limited - Disabled) Invité (S-1-5-21-687335461-1389871760-2583120190-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-687335461-1389871760-2583120190-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) @BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0420.1 - GIGABYTE) Hidden @BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.20.0420.1 - GIGABYTE) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.012.20043 - Adobe Systems Incorporated) APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.0506.1 - GIGABYTE) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.20.0506.1 - GIGABYTE) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) calibre (HKLM-x32\...\{09CF108A-927D-492C-9D42-54D5F7678096}) (Version: 4.22.0 - Kovid Goyal) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.69 - Piriform) Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft) CPUID HWMonitor 1.40 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.40 - CPUID, Inc.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1371 - Disc Soft Ltd) Discord (HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\Discord) (Version: 0.0.307 - Discord Inc.) EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0601.1 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.20.0601.1 - GIGABYTE) ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden ENE RGB HAL (HKLM\...\{8DA1B230-D82E-4A24-9237-363E2E1E2695}) (Version: 1.0.21.0 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{bb670f8d-3d66-4f36-8e60-02b71bb0a4e9}) (Version: 1.0.21.0 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{26b207d1-1f37-4df9-8b3f-aeebbca6bb85}) (Version: 1.00.04 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{B937FE60-4887-4C53-8C57-8821CBA819FD}) (Version: 1.1.279.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse) GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.20.0406.1 - GIGABYTE) Hidden GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.20.0406.1 - GIGABYTE) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.83 - Google LLC) GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE) Horizon Zero Dawn (HKLM-x32\...\{1EBCDB93-5079-4244-BB4B-573AC2AD01DB}_is1) (Version: 1.0.0.0 - Guerrilla) Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation) Intel(R) Network Connections 25.1.0.5 (HKLM\...\PROSetDX) (Version: 25.1.0.5 - Intel) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Microsoft Flight Simulator (HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\Microsoft Flight Simulator) (Version: - HOODLUM) Microsoft OneDrive (HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Mises à jour NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.98 - MSI) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.34 - NVIDIA Corporation) NVIDIA Pilote graphique 452.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 452.06 - NVIDIA Corporation) NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden NZXT CAM 4.10.1 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.10.1 - NZXT, Inc.) OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.82.43225 - Electronic Arts, Inc.) Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8302 - Realtek Semiconductor Corp.) Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2) (Version: 1.0.1311.16 - Rockstar Games) RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.20.0708.1 - GIGABYTE) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games) RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.1.0.170 - Samsung Electronics) Skype version 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.9.4 - TeamViewer) Uplay (HKLM-x32\...\Uplay) (Version: 112.3 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN) War Thunder Launcher 1.0.3.249 (HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) WinRAR 5.91 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) WRC 9 FIA World Rally Championship v.1.0 (HKLM-x32\...\WRC 9 FIA World Rally Championship_is1) (Version: - ) Packages: ========= Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-10] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-21] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-08-08] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.11.217.0_x64__dt26b99r8h8gj [2020-08-08] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0 [2020-09-04] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-08] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-08] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_aadb297915f8b5a1\nvshext.dll [2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2019-08-05 19:50 - 2019-08-05 19:50 - 000009216 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\Phison.dll 2020-08-10 17:53 - 2020-07-30 19:15 - 001899520 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll 2020-08-10 17:53 - 2020-07-30 19:15 - 000115712 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll 2020-08-10 17:53 - 2020-07-30 19:15 - 006668800 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll 2020-09-04 09:16 - 2017-08-02 14:48 - 000237568 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll 2020-01-15 15:40 - 2020-01-15 15:40 - 000185856 _____ () [Fichier non signé] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll 2020-08-08 09:28 - 2020-08-08 09:28 - 001230336 _____ () [Fichier non signé] C:\Riot Games\League of Legends\ffmpeg.dll 2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll 2019-04-15 16:24 - 2019-04-15 16:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV2.DLL 2019-10-29 09:26 - 2019-10-29 09:26 - 000445952 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll 2018-09-11 19:53 - 2018-09-11 19:53 - 000237056 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll 2020-06-18 08:01 - 2020-06-18 08:01 - 002057216 _____ (GIGABYTE) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll 2020-06-18 08:01 - 2020-06-18 08:01 - 002057728 _____ (GIGABYTE) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll 2018-07-15 13:15 - 2018-07-15 13:15 - 003664696 _____ (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll 2018-07-15 13:15 - 2018-07-15 13:15 - 000291128 _____ (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Windows\system32\StartMenuHelper64.dll 2020-08-08 09:16 - 2020-08-29 15:00 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2020-08-08 09:16 - 2020-08-29 15:00 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2020-08-08 09:16 - 2020-08-29 15:00 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2020-08-29 15:00 - 2020-08-29 15:00 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll 2019-07-04 18:06 - 2019-07-04 18:06 - 001988608 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll 2017-10-05 15:26 - 2017-10-05 15:26 - 002247168 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll 2018-12-08 08:22 - 2018-12-08 08:22 - 002059264 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll 2020-07-06 19:33 - 2020-07-06 19:33 - 000478720 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll 2020-05-08 14:55 - 2020-05-08 14:55 - 002107392 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll 2017-07-24 16:36 - 2017-07-24 16:36 - 000481792 _____ (TODO: <公司名稱>) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\SDKDLL.dll 2020-09-04 09:16 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer sites de confiance/sensibles ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-687335461-1389871760-2583120190-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dandi\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\601846.jpg DNS Servers: 1.1.1.2 - 1.0.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "RtkAudUService" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\StartupFolder: => "windows.lnk" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "Gaijin.Net Updater" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "NZXT.CAM" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-687335461-1389871760-2583120190-1001\...\StartupApproved\Run: => "EpicGamesLauncher" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{E9DF62D6-C31F-48D1-AA8A-C8B160699C01}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{1BE3EB39-095B-48CB-AC53-633A1EB13740}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{CE38D783-3391-4E78-B2A7-F8A84A099AFF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{D11C05BF-5DAC-4371-9498-268FA453B698}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{D910642D-1636-447C-86A5-D85C91AE20EE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{CC6797AC-D6AB-4AC5-BF5A-DE014B9EDD73}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{4E0E3904-3F25-4277-9922-32C98BF0B87D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{8471C28D-7722-4F37-AB27-BB0E2D89904B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [TCP Query User{AC08ADA2-2BE5-4971-AB38-E3483DBC3B48}C:\users\dandi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\dandi\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{A282F8F9-1017-41DB-8478-7959C07F6C64}C:\users\dandi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\dandi\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{A311F17D-90FE-493F-8208-7A74FC3DD855}] => (Allow) D:\Steam\steamapps\common\Eco\Eco.exe () [Fichier non signé] FirewallRules: [{640CEF4C-A45C-43AD-BB35-7C35D2081EF2}] => (Allow) D:\Steam\steamapps\common\Eco\Eco.exe () [Fichier non signé] FirewallRules: [{F0474794-4CC2-46DE-A003-D1545ED2750B}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{CC0CE704-1B4E-4573-AAE4-EBAFF7204B11}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{0C5CC002-E94B-408C-B967-7013E05F0264}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{BD7A22CE-6057-40E4-A946-EA9B217D79EE}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{7B94FA3A-2EF1-4510-9A5E-D265DAFE0A96}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{F966865A-5BA6-44D8-815E-EC043346C06C}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{47D3402B-56A8-4A1C-9BF1-65326AAA8A4F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5ECB75FA-5588-457A-AF0C-8F833617DE7B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{F515E787-4F3D-40B5-83C3-2FF5A5850E2D}D:\steam\steamapps\common\war thunder\launcher.exe] => (Allow) D:\steam\steamapps\common\war thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{FB1B09C7-5E76-4AE5-9F6A-7FA0CD77F313}D:\steam\steamapps\common\war thunder\launcher.exe] => (Allow) D:\steam\steamapps\common\war thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [TCP Query User{50F5494C-C1EF-49A7-A08A-A11003FA0EF4}D:\hyper scape\hyperscape.exe] => (Allow) D:\hyper scape\hyperscape.exe => Pas de fichier FirewallRules: [UDP Query User{53E1B93B-4CAB-4436-9147-1495A175B842}D:\hyper scape\hyperscape.exe] => (Allow) D:\hyper scape\hyperscape.exe => Pas de fichier FirewallRules: [{1ECD1128-9FF5-4D6A-AC16-81CF27AA6D66}] => (Allow) E:\Steam\steamapps\common\Blackwake\Blackwake.exe () [Fichier non signé] FirewallRules: [{EEC82851-9EC5-4E56-A6E8-CBDDF4C27323}] => (Allow) E:\Steam\steamapps\common\Blackwake\Blackwake.exe () [Fichier non signé] FirewallRules: [{C064C9A0-ED53-4435-B324-8064CAF3ED22}] => (Allow) E:\Steam\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{63E06084-7A08-4599-99AE-50E0667F20D7}] => (Allow) E:\Steam\steamapps\common\Deadside\Deadside.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [TCP Query User{0ED57094-F55A-4825-9B50-604F14BEBEF7}D:\microsoft flight simulator\flightsimulator.exe] => (Allow) D:\microsoft flight simulator\flightsimulator.exe (Asobo Studio) [Fichier non signé] FirewallRules: [UDP Query User{0B70CBDB-8A15-42EF-8291-C3039E5C41FF}D:\microsoft flight simulator\flightsimulator.exe] => (Allow) D:\microsoft flight simulator\flightsimulator.exe (Asobo Studio) [Fichier non signé] FirewallRules: [{6909AFE8-7FFA-4A89-A566-5948B982CD79}] => (Allow) E:\Steam\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{1BDCA974-5A90-48F7-86C9-F38BE3A33938}] => (Allow) E:\Steam\steamapps\common\Deadside\Deadside\Binaries\Win64\Deadside-Win64-Shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{C570A500-AEC8-4FB7-8C56-B7A2EB541E2B}] => (Allow) E:\Steam\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{69679E80-06E6-4684-8041-11E40BAB1FF7}] => (Allow) E:\Steam\steamapps\common\Deadside\EasyAntiCheat\EasyAntiCheat_x64.dll (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{0C75B45F-BA7A-4D66-A327-1CA3A22DD070}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{2F587193-EB8C-4FEB-B495-EA8E09BF0535}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [TCP Query User{89B4D969-A85D-48DD-A2E5-0DF65897E91C}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) FirewallRules: [UDP Query User{B045DF96-B871-4122-A190-9C26D65EA088}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) FirewallRules: [{120FB78B-E492-4FFA-A7A6-DEF5BF9D6EB8}] => (Allow) LPort=9009 FirewallRules: [{D2415729-4954-432D-A052-6BD5257868D1}] => (Allow) LPort=9009 FirewallRules: [{7E64485A-6560-45CA-AB5D-60E83FCDB284}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{A7FB2069-438A-4084-8F21-2BD2EA406B16}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{74158DC7-A06E-43D1-BACA-D3C46F8F3055}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A8D958E7-D854-4AAA-8A9B-A8D19ABC4B95}] => (Allow) LPort=9009 FirewallRules: [{9D2C8D4A-A057-4F93-B059-3B5403BB8E02}] => (Allow) LPort=9009 FirewallRules: [{7DBE9EB8-FE52-4073-85EB-CD40C6542C97}] => (Allow) LPort=26789 FirewallRules: [{6BBF81E8-98B4-4DD9-BED8-A504D50BBAF9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BBD13AF9-A7FE-472B-AB30-0A1823369773}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{D81F5825-44E9-48E5-9013-A1350CED1807}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{4565C379-2F2D-45E7-A02B-9312A22421BB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{DDAF6C4D-B88C-4030-BFD3-5CD350E39A5E}] => (Allow) LPort=9009 FirewallRules: [{B0D39368-0DB4-46D7-B4FA-327AB3A36F0E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3509464B-1707-4BAE-AE50-CFBD26FACA89}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2E640615-2E46-4BC5-9F43-EF4E248BEADE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6E9421D1-209F-4042-A897-5DE5D34DC408}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{48A766C8-6229-46B0-8C29-826D5BBE8E26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{05E5B6C0-26A0-413B-95AC-6A509ECB5ECB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{37CEC4CE-6142-460B-AD74-DD4CEF174A03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DB853F74-A8F9-41C4-A498-C684E23842DB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8C35B85C-ED7F-47C2-9D22-FB24B5C29977}] => (Allow) LPort=9009 FirewallRules: [{818C2F5B-656A-4EEE-AAD8-6B6E317B5210}] => (Allow) LPort=9009 FirewallRules: [{278BCF06-4A1A-4C22-9873-058FA3F46E37}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{406534EF-DF28-41F8-8110-91D2B0FAC128}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{74FE587D-6585-4BBE-BE3B-3884F4BB9CA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{27B0A28F-356D-4EFC-BFF2-3A0250CCA7EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{940A2E29-3922-485F-84C0-985396C29997}C:\program files (x86)\drake hollow\drakehollow\binaries\win64\drakehollow-win64-shipping.exe] => (Allow) C:\program files (x86)\drake hollow\drakehollow\binaries\win64\drakehollow-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{E36B4E56-9C5F-4C86-862E-D37EA05E001D}C:\program files (x86)\drake hollow\drakehollow\binaries\win64\drakehollow-win64-shipping.exe] => (Allow) C:\program files (x86)\drake hollow\drakehollow\binaries\win64\drakehollow-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{D0CE9476-FBD0-4529-A6C2-B1A4A5DD7432}C:\users\dandi\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\dandi\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{7F568654-8B35-4E61-9C21-42CA0501476E}C:\users\dandi\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\dandi\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{A37234A7-0199-4BE6-BD68-07911A0ECD69}] => (Allow) LPort=9009 FirewallRules: [{D6561112-086C-431F-A742-E59D88CBA236}] => (Allow) LPort=9009 FirewallRules: [{5E9F3B5B-9C75-4767-A447-6C0631CAC325}] => (Allow) LPort=9009 FirewallRules: [{842BCCB6-A75A-464B-A6B3-02BF801B7938}] => (Allow) LPort=9009 ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:118.72 GB) (Free:25.1 GB) (21%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: NVIDIA High Definition Audio Description: NVIDIA High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: NVHDA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Description: NVIDIA Virtual Audio Device (Wave Extensible) (WDM) Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: nvvad_WaveExtensible Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Realtek High Definition Audio Description: Realtek High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: IntcAzAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (09/06/2020 12:15:21 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Données 2 (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 12:15:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Velociraptor (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 12:15:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Données (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 11:52:54 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Données (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 11:52:53 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Velociraptor (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 11:52:53 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Données 2 (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 10:49:22 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Données (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (09/06/2020 10:38:25 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Velociraptor (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (09/06/2020 08:42:39 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 09:00:37 le ‎06/‎09/‎2020 n’était pas prévu. Error: (09/06/2020 03:17:23 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-U270JCE) Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service BcastDVRUserService_27ee36 avec les arguments « Non disponible » pour exécuter le serveur : Windows.Media.Capture.Internal.AppCaptureShell Error: (09/06/2020 03:17:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service utilisateur de diffusion et GameDVR_27ee36 n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (09/06/2020 03:17:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (60000 millisecondes) a été atteint lors de l’attente de la connexion du service Service utilisateur de diffusion et GameDVR_27ee36. Error: (09/05/2020 10:17:51 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-U270JCE) Description: Le serveur {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/05/2020 10:17:51 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-U270JCE) Description: Le serveur {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/05/2020 10:17:51 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-U270JCE) Description: Le serveur {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/05/2020 10:17:32 AM) (Source: volmgr) (EventID: 49) (User: ) Description: Échec de la configuration du fichier d'échange pour le vidage sur incident. Vérifiez qu'un fichier d'échange est présent sur la partition de démarrage et qu'il est assez grand pour contenir toute la mémoire physique. Windows Defender: =================================== Date: 2020-09-06 20:01:46.2140000Z Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {5B55CC11-9371-42BE-8B38-606461E9A9B8} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-09-06 11:10:37.2530000Z Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/WinActivator&threatid=2147719814&enterprise=0 Nom : HackTool:Win32/WinActivator ID : 2147719814 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Windows\Setup\SCRIPTS\hwid.kms38.gen.mk6.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Utilisateur Utilisateur : DESKTOP-U270JCE\dandi Nom du processus : Unknown Version de la veille de sécurité : AV: 1.323.606.0, AS: 1.323.606.0, NIS: 1.323.606.0 Version du moteur : AM: 1.1.17400.5, NIS: 1.1.17400.5 Date: 2020-09-04 21:20:19.0840000Z Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {1FC06F64-E838-4339-A5AC-92C252208A1E} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-08-09 10:44:11.7110000Z Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/CryptInject!MTB&threatid=2147729509&enterprise=0 Nom : Trojan:MSIL/CryptInject!MTB ID : 2147729509 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\dandi\AppData\Local\windows.exe; file:_C:\Users\dandi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windows.lnk; startup:_C:\Users\dandi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windows.lnk Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.321.990.0, AS: 1.321.990.0, NIS: 1.321.990.0 Version du moteur : AM: 1.1.17300.4, NIS: 1.1.17300.4 CodeIntegrity: =================================== Date: 2020-09-06 20:42:48.4830000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 20:42:43.0640000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:22.7030000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:22.7010000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:22.7000000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:22.6980000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:22.6790000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-09-06 00:28:17.0700000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. F16a 11/28/2019 Carte mère: Gigabyte Technology Co., Ltd. Z370 AORUS Ultra Gaming-CF Processeur: Intel(R) Core(TM) i7-8700K CPU @ 3.70GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 16322.3 MB Mémoire physique - RAM - disponible: 10923.41 MB Mémoire virtuelle totale: 33730.3 MB Mémoire virtuelle disponible: 25291.81 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:118.72 GB) (Free:25.1 GB) NTFS Drive d: (Données 2) (Fixed) (Total:2794.39 GB) (Free:2203.61 GB) NTFS Drive e: (Velociraptor) (Fixed) (Total:232.88 GB) (Free:38.82 GB) NTFS Drive f: (Données) (Fixed) (Total:931.51 GB) (Free:292.8 GB) NTFS \\?\Volume{3433e7c5-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS \\?\Volume{3433e7c5-0000-0000-0000-40b11d000000}\ () (Fixed) (Total:0.47 GB) (Free:0.08 GB) NTFS ==================== MBR & Table des partitions ==================== ==================== Fin de Addition.txt =======================