Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04-09-2019 Exécuté par admin (05-09-2019 16:35:43) Exécuté depuis C:\Users\admin\Desktop Windows 10 Home Version 1903 18362.329 (X64) (2019-09-03 23:12:22) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= admin (S-1-5-21-3052920385-2028197988-2174407810-1002 - Administrator - Enabled) => C:\Users\admin Administrateur (S-1-5-21-3052920385-2028197988-2174407810-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3052920385-2028197988-2174407810-503 - Limited - Disabled) Invité (S-1-5-21-3052920385-2028197988-2174407810-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3052920385-2028197988-2174407810-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09} AS: McAfee VirusScan (Enabled - Up to date) {4DE344F8-6897-65B4-CED0-82B3AF2591B4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.238 - Adobe) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated) Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version: - ) Epic Games Launcher (HKLM-x32\...\{466EA30A-9B38-4AD2-A6B0-18D6E0C1A848}) (Version: 1.1.206.0 - Epic Games, Inc.) IC Markets cTrader - 2 (HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\adc49d1d01a64dad) (Version: 3.5.65534.35623 - IC Markets cTrader) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.92 - McAfee, LLC.) McAfee® Internet Security (HKLM-x32\...\MSC) (Version: 16.0 R20 - McAfee, Inc.) Microsoft OneDrive (HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\OneDriveSetup.exe) (Version: 19.123.0624.0005 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mozilla Firefox 68.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 68.0.2 (x64 en-US)) (Version: 68.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.4 - Mozilla) NordVPN (HKLM-x32\...\{135A06CE-0901-4493-A417-756A592C760E}) (Version: 6.23.11 - NordVPN) Hidden NordVPN (HKLM-x32\...\NordVPN 6.23.11) (Version: 6.23.11 - NordVPN) NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN) NoVirusThanks Hidden Process Finder v1.1 (HKLM\...\NoVirusThanks Hidden Process Finder_is1) (Version: 1.1.0.0 - NoVirusThanks Company Srl) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) OANDA Desktop (HKLM-x32\...\{9A7FFB86-E934-4358-9AB6-75BE35E24A4F}) (Version: 2.12.3.1 - OANDA) OpenVPN 2.4.6-I602 (HKLM\...\OpenVPN) (Version: 2.4.6-I602 - OpenVPN Technologies, Inc.) Opera Stable 63.0.3368.53 (HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\Opera 63.0.3368.53) (Version: 63.0.3368.53 - Opera Software) Panneau de configuration NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC) PowerISO (HKLM-x32\...\PowerISO) (Version: 7.4 - Power Software Ltd) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Trine 3 The Artifacts of Power (HKLM-x32\...\Trine 3 The Artifacts of Power_is1) (Version: - ) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN) Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WinDirStat 1.1.2 (HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\WinDirStat) (Version: - ) Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation) WRC FIA World Rally Championship (HKLM-x32\...\{1E445925-273D-4186-88A0-B8D1B6B119E2}) (Version: 1.00.0000 - Black Bean Games) Hidden WRC FIA World Rally Championship (HKLM-x32\...\{B6E3F2A0-DDBB-4F0A-BA7C-09138605DDAC}) (Version: 1.00.0000 - Black Bean Games) WRC3 version 1.0 (HKLM-x32\...\{B4BF2667-112C-45EF-B8CB-1168E4EB5BA8}_is1) (Version: 1.0 - Milestone Srl) Packages: ========= Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1590.2.0_x86__kgqvnymyfvs32 [2019-09-05] (king.com) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.3340.0_x64__rz1tebttyb220 [2019-09-04] (Dolby Laboratories) Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-01-17] (Fitbit) Mail and Calendar -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad] Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-08-07] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Studios) [MS Ad] MSN Weather -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-22] (Microsoft Corporation) [MS Ad] Photo Editor | Polarr -> C:\Program Files\WindowsApps\613EBCEA.PolarrPhotoEditorAcademicEdition_5.6.0.0_x64__jb41c8remg0x2 [2019-08-27] (Polarr) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3052920385-2028197988-2174407810-1002_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2019-06-28] (McAfee, LLC. -> McAfee, LLC.) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\New programs\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\New programs\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2019-06-28] (McAfee, LLC. -> McAfee, LLC.) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\New programs\PowerISO\PWRISOSH.DLL [2019-04-18] (Power Software Limited -> Power Software Ltd) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2018-07-24 14:50 - 2018-07-24 14:50 - 000217887 _____ () [Fichier non signé] C:\New programs\Resources\Binaries\64bit\liblzo2-2.dll 2018-07-24 14:50 - 2018-07-24 14:50 - 000119167 _____ () [Fichier non signé] C:\New programs\Resources\Binaries\64bit\libpkcs11-helper-1.dll 2019-01-21 13:55 - 2019-01-21 13:55 - 000251392 _____ () [Fichier non signé] C:\New programs\x86\Liberation.Native.Firewall.dll 2019-08-18 15:23 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2018-07-24 14:50 - 2018-07-24 14:50 - 003028053 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\New programs\Resources\Binaries\64bit\libcrypto-1_1-x64.dll 2018-07-24 14:50 - 2018-07-24 14:50 - 000625540 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\New programs\Resources\Binaries\64bit\libssl-1_1-x64.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-01-17 16:09 - 2019-08-07 00:19 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\Downloads\bird-recovered.jpg DNS Servers: 103.86.99.99 - 103.86.96.96 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Block) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\StartupApproved\Run: => "OPENVPN-GUI" HKU\S-1-5-21-3052920385-2028197988-2174407810-1002\...\StartupApproved\Run: => "Steam" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{A504305B-4087-485A-90FE-FB4647BEA241}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{14DFAC64-835D-4F90-A23C-B3379E278E92}] => (Allow) C:\New programs\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{129C12C5-0F60-40ED-8057-025413D9CFD8}] => (Allow) C:\New programs\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{BB612734-04AE-46C7-80CD-7F64F8460E0B}] => (Allow) C:\New programs\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{C7231EAD-5531-4908-BA1B-D8BEB8D4D294}] => (Allow) C:\New programs\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{01B3268E-09A4-4005-A5BC-6B40267BC322}] => (Allow) C:\New programs\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{D9914A05-28BB-46F5-82A5-8A8B1EA870FF}] => (Allow) C:\New programs\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{27B8959A-DC6C-40F4-95CC-50697F4413B7}] => (Allow) C:\New programs\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{711AEF84-2D66-4357-9A7E-783E7734FAF2}] => (Allow) C:\New programs\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{7B5FE5D4-7684-4D0E-8511-CFFC5FA17936}] => (Allow) C:\New programs\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{789331CB-21E2-461B-BBC0-31F37921C58F}] => (Allow) C:\New programs\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Fichier non signé] FirewallRules: [{AB8B7EB0-4A0E-4D9A-8341-469970CC4070}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.) FirewallRules: [{0453F587-B072-4490-A2FD-F31FF5B0B307}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC. -> McAfee, LLC.) FirewallRules: [{FD88E5A8-11B3-44E6-BC5A-D1B021508CA3}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC. -> McAfee, LLC.) FirewallRules: [{ED54009F-B66E-4436-8D03-F613F3F8C2A2}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe Pas de fichier ==================== Points de restauration ========================= 04-09-2019 01:55:33 Windows Update 04-09-2019 01:56:15 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: TAP-Windows Adapter V9 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Mediatek Bluetooth Adaptor Description: Mediatek Bluetooth Adaptor Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: MediaTek, Inc. Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Microphone (High Definition Audio Device) Description: Audio Endpoint Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e} Manufacturer: Microsoft Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: HP Truevision HD Description: USB Video Device Class Guid: {ca3e7ab9-b4c3-4ae6-8251-579ef933890f} Manufacturer: Microsoft Service: usbvideo Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/04/2019 10:25:47 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: SÖLVREV) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (09/04/2019 10:25:45 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: SÖLVREV) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (09/04/2019 12:47:04 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 256) (User: ) Description: The Cryptographic Services service failed to initialize the Catalog Database. The error was: -2147418113 (0x8000ffff) : Défaillance irrémédiable . Error: (09/04/2019 12:47:02 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 256) (User: ) Description: The Cryptographic Services service failed to initialize the Catalog Database. The error was: -2147418113 (0x8000ffff) : Défaillance irrémédiable . Error: (09/04/2019 12:47:00 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 256) (User: ) Description: The Cryptographic Services service failed to initialize the Catalog Database. The error was: -2147418113 (0x8000ffff) : Défaillance irrémédiable . Error: (09/04/2019 12:46:48 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 256) (User: ) Description: The Cryptographic Services service failed to initialize the Catalog Database. The error was: -2147418113 (0x8000ffff) : Défaillance irrémédiable . Erreurs système: ============= Error: (09/04/2019 10:17:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The nordvpn-service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (09/04/2019 10:17:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (45000 milliseconds) while waiting for the nordvpn-service service to connect. Error: (09/04/2019 01:16:19 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: The server {209500FC-6B45-4693-8871-6296C4843751} did not register with DCOM within the required timeout. Error: (09/04/2019 12:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The nordvpn-service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (09/04/2019 12:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (45000 milliseconds) while waiting for the nordvpn-service service to connect. Error: (09/04/2019 12:52:13 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM within the required timeout. Error: (09/04/2019 12:50:13 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Service Liste des réseaux service terminated with the following error: The device is not ready. Error: (09/04/2019 12:50:12 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY) Description: The server {A47979D2-C419-11D9-A5B4-001185AD2B89} did not register with DCOM within the required timeout. CodeIntegrity: =================================== Date: 2019-09-05 07:17:10.121 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-05 07:17:10.115 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-05 07:17:10.107 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-05 07:17:10.102 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-05 07:17:10.090 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-04 10:45:14.278 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-04 10:45:14.219 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2019-09-04 10:21:00.549 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: Insyde F.63 06/10/2014 Motherboard: Hewlett-Packard 1967 Processeur: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz Pourcentage de mémoire utilisée: 55% Mémoire physique - RAM - totale: 16316.02 MB Mémoire physique - RAM - disponible: 7230.68 MB Mémoire virtuelle totale: 19260.02 MB Mémoire virtuelle disponible: 6255.39 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:907.78 GB) (Free:96.09 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:21.96 GB) (Free:2.22 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] \\?\Volume{a46a8eff-2b39-4f2e-beac-ea3e22f2f361}\ (WINRE) (Fixed) (Total:0.39 GB) (Free:0.11 GB) NTFS \\?\Volume{27ec9fcb-3204-404b-9e03-3ea10aa65711}\ () (Fixed) (Total:1 GB) (Free:0.39 GB) NTFS \\?\Volume{2def8a11-de32-40aa-afb4-852a8d597dff}\ () (Fixed) (Total:0.25 GB) (Free:0.15 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 1E1F4777) Partition: GPT. ==================== Fin de Addition.txt ============================