Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-08-2022
Exécuté par ademc (28-08-2022 13:35:32)
Exécuté depuis C:\Users\ademc\Desktop\Antivir
Microsoft Windows 11 Professionnel Version 21H2 22000.856 (X64) (2021-12-29 16:44:47)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
ademc (S-1-5-21-286367191-1329303105-1402877350-1001 - Administrator - Enabled) => C:\Users\ademc
Administrateur (S-1-5-21-286367191-1329303105-1402877350-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-286367191-1329303105-1402877350-503 - Limited - Disabled)
Invité (S-1-5-21-286367191-1329303105-1402877350-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-286367191-1329303105-1402877350-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788.2 - Adobe Inc.)
Adobe Photoshop 2022 (HKLM-x32\...\PHSP_23_1) (Version: 23.1.0.143 - Adobe Inc.)
Adobe Premiere Pro 2022 (HKLM-x32\...\PPRO_22_1_2) (Version: 22.1.2 - Adobe Inc.)
ASUS Dial Control Panel Toolkit (HKLM\...\{A01CF1E6-8E7C-4986-8A1F-F1D28E3138B8}) (Version: 1.2.5.0 - ASUSTek COMPUTER INC.)
Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.11.0 - Badlion)
Biblio Manuels version 3.9.9 (HKLM-x32\...\24E53B05-258A-419A-B2FE-F3F059C85B4C_is1) (Version: 3.9.9 - Sejer)
CPUID CPU-Z 2.01 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.01 - CPUID, Inc.)
CurseForge (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.205.1.5800 - Overwolf app)
Discord (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Documentation Manager (HKLM\...\{2E843C78-FE5B-446C-A2AC-DE311FE1D78A}) (Version: 22.140.0.3 - Intel Corporation) Hidden
DriversCloud.com (HKLM\...\{C825674B-9D11-4148-B939-EA3564741D54}) (Version: 11.2.5.0 - Cybelsoft)
Dynamic Application Loader Host Interface Service (HKLM\...\{57E7F403-0CDB-4D34-8AB7-069EB1A389AF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON WF-7720 Series Printer Uninstall (HKLM\...\EPSON WF-7720 Series) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.102 - Google LLC)
Honeygain (HKLM-x32\...\{B4657D1D-16B3-4EFD-84FA-E4107A7B69A9}) (Version: 0.11.10.0 - Honeygain) <==== ATTENTION
Intel Software Package (HKLM-x32\...\{e1d93543-7ba0-4927-aa7f-09c5fc7f25df}) (Version: 8.7.10600.20700 - Intel) Hidden
Intel Software Package (HKLM-x32\...\{fb6ae7d1-efc5-4e76-b065-007ac6cb18b3}) (Version: 8.7.10700.22502 - Intel) Hidden
Intel(R) Dynamic Tuning (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.7.10700.22502 - Intel Corporation)
Intel(R) Icls (HKLM\...\{491C4B62-F0B3-4AD2-852A-C61F65C01BD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1399D5E5-AF60-406D-BBA9-9DF92F2AC593}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2216.16.0.2805 - Intel Corporation)
Intel(R) Management Engine Driver (HKLM\...\{421D9767-3134-4510-9237-79D93FF37F3F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME WMI Provider (HKLM\...\{3B1BDB47-C042-4A07-9868-234F832027BE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{531F2CB2-5A78-49E5-A71B-FFF7C7CDC32C}) (Version: 30.100.2020.7 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000140-0220-1036-84C8-B8D95FA3C8C3}) (Version: 22.140.0.4 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{b3bbf46b-6ffd-4f54-8d1f-26206cfe1739}) (Version: 22.140.0.3 - Intel Corporation) Hidden
Java 8 Update 341 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
LatencyMon 7.20 (HKLM\...\LatencyMon_is1) (Version: 7.20 - Resplendence Software Projects Sp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.7.290502 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\{B49685C9-32FA-4194-A43F-DAF6BD60F2EC}) (Version: 2.3.0.78 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.78 - LogMeIn, Inc.)
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.15427.20210 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 104.0.1293.70 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Teams) (Version: 1.4.00.22976 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.70.2 - Microsoft Corporation)
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA Pilote graphique 516.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.59 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20148 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.113.50894 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.204.0.1 - Overwolf Ltd.)
Parsec (HKLM-x32\...\Parsec) (Version: 150-82a - Parsec Cloud Inc.)
Python 3.10.1 (64-bit) (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{af822d5e-759c-4e77-9696-3cc835cd54a9}) (Version: 3.10.1150.0 - Python Software Foundation)
Python 3.10.1 Core Interpreter (64-bit) (HKLM\...\{862831D8-A2FD-4ED5-B9B9-C8C3ECA1CAE8}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Development Libraries (64-bit) (HKLM\...\{A17FBEFC-ABDD-4E5E-AAA5-CC503ACF648F}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Documentation (64-bit) (HKLM\...\{DD75DEC5-89C0-4E54-88A2-83DCCA026F3A}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Executables (64-bit) (HKLM\...\{4F07CBC9-1051-41FC-978D-EECA76E4D547}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 pip Bootstrap (64-bit) (HKLM\...\{167746E3-B9B3-4964-803A-F893F1FC56C9}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Standard Library (64-bit) (HKLM\...\{98A2C72D-7929-414D-995B-4E47D8307C93}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Tcl/Tk Support (64-bit) (HKLM\...\{5A807757-F64E-46D3-ABD1-B4907BB75B72}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Test Suite (64-bit) (HKLM\...\{0393EBB7-8F16-42DC-9B63-F1552F481B92}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Utility Scripts (64-bit) (HKLM\...\{FD9B0798-B88D-4148-9159-6206EACD7C47}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{7DE12550-BE09-44DD-BDB4-0EC26BA89DAF}) (Version: 3.10.7644.0 - Python Software Foundation)
qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project)
Revo Uninstaller 2.3.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.5 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 12.2.0 (HKLM\...\SteelSeries GG) (Version: 12.2.0 - SteelSeries ApS)
Stellarium 0.21.3 (HKLM\...\Stellarium_is1) (Version: 0.21.3 - Stellarium team)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.22976 - Microsoft Corporation)
TI Connect CE (HKLM\...\{A78344DE-134F-4818-9B9E-1753F7F1F6F9}) (Version: 5.6.3.2278 - Texas Instruments Inc.)
Twitch (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VALORANT (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.26.0.1 - Voicemod S.L.)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-08-27] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-12-30] (Adobe Systems Incorporated)
AudioWizard -> C:\Program Files\WindowsApps\ICEpower.AudioWizard_1.5.28.0_x64__dxp88312j1fgj [2022-01-04] (ICEpower)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2022-01-04] (INTEL CORP) [Startup Task]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.412.0_x64__v10z8vjag6ke6 [2022-08-24] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1026.0_x64__8j3eq9eme6ctt [2022-04-04] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-30] (Microsoft Studios) [MS Ad]
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.28.0_x64__8wekyb3d8bbwe [2022-08-24] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy [2022-07-25] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-07-01] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.8.204.0_x64__dt26b99r8h8gj [2021-12-29] (Realtek Semiconductor Corp)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.541.422.0_x86__55nm5eh3cm0pr [2022-08-27] (ROBLOX Corporation)
ScreenXpert -> C:\Program Files\WindowsApps\B9ECED6F.ScreenPadMaster_3.0.7.0_x64__qmba6cd70vzyy [2022-08-15] (ASUSTeK COMPUTER INC.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0 [2022-08-26] (Spotify AB) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-1B055C631BF3} -> [Creative Cloud Files] => C:\Users\ademc\Creative Cloud Files [2021-12-30 03:03]
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ademc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21161.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2021-10-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2021-10-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a6c8d8415ff0e012\nvshext.dll [2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\ademc\Desktop\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\Desktop\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2021-09-25 07:00 - 2021-09-25 07:00 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2021-12-30 01:29 - 2021-12-26 16:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Windows\System32\enppmon.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk:7661CCE9BF [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk:638138415C [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2022.lnk:C56174E6CE [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [10]
AlternateDataStreams: C:\Users\Public\Documents\OptiFine_1.8.9_HD_U_M5.jar:AF94E65249 [10]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_341\bin\ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\sharepoint.com -> hxxps://grandest-files.sharepoint.com
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2021-06-05 14:08 - 2022-08-27 23:19 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
Network Binding:
=============
VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Hamachi: VMware Bridge Protocol -> vmware_bridge (disabled)
Wi-Fi: VMware Bridge Protocol -> vmware_bridge (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "SteelSeriesGG"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_78142A25BE9ED8681F0DAB2B3BD7F1DB"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "LGHUB"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Samsung DeX"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Voicemod"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Overwolf"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{69D1C595-8842-4C58-90DF-A32632DBD52B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4039EDC9-0BB6-466E-AB3B-8C9FF9F3DAA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3D0262AB-FF25-4637-807D-821DA2A8BC6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{AF3EC4FA-DDA1-48E9-A610-2064F6FC2617}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{59B338FF-CEC2-4E82-919B-2CA5C6B4866F}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{9D282CEE-AC20-466C-A745-BBD6FD0C2417}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [TCP Query User{058D5E2D-5BC8-4125-A16C-2D3549A20A8A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{39B6C4BA-82C5-43F4-8222-B5987912D206}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{79FFDAD7-8432-4CD5-BB10-89B68B311985}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{244F4FBA-AB78-450E-AA20-F9CB93B530CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2B7E5641-E374-4393-A625-16BBF2677DBC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{47D3F36D-9CD5-4371-B67A-4EEB2F6F5FDF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2FF04054-D537-49F1-8423-C7D5F12E5517}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé]
FirewallRules: [{8028BF96-D303-40C1-BCD4-807FA2552EF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé]
FirewallRules: [{B5285BAA-10BB-4240-98C2-8F1CC9FE72E5}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{F3915289-9402-440C-8097-DC672AE36007}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{05AD71FE-8B08-4862-92FB-F3FD3435D407}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{6FDF7921-809F-4C1B-9868-EC214D851C60}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{71980BA2-4B15-4E39-82DC-E7F012061AA9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{BA915FEB-8E58-4C08-9A2E-883D43979A18}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{F4EA2014-D582-4A7C-8ABC-53080D287A4D}] => (Allow) C:\Program Files\Parsec\parsecd.exe (Parsec Cloud, Inc. -> Parsec)
FirewallRules: [{FF4A6571-C900-40B8-A82F-AE8A943411C6}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [{5256E99F-5EBF-4C20-BAD4-6CE011E436C1}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [TCP Query User{5887B482-BD9A-4F35-94A3-AE6A3A4B71BA}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{0A7BC0D9-81D4-4BAE-B738-438F2E7EE11B}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{C0881CA6-D960-40EF-AB08-89A6B7A2EF19}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{833EE7A6-2160-4DED-84E4-CAF2473AA4B7}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{1B1B34C0-0644-44A9-BE8B-CA04C86F64A0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E4F80E90-7050-4B28-87BE-0BFDE74D507A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B7A3C7EC-8FC8-4D08-B73F-1CC6821C503C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{04B856B0-B592-4107-9EEC-44ED10978052}C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe] => (Allow) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [UDP Query User{FAFDA281-6E17-4618-9D88-C500C5AB79F6}C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe] => (Allow) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{C6DBACBA-4D02-4283-A6E8-04AB6E99B661}] => (Block) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{32449F10-90E2-42DD-BADA-CB3B9B3C0C33}] => (Block) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{3E4CB5CE-EFED-4037-A2D9-9FBF2FDF2091}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
FirewallRules: [{62798B97-49A3-4017-853E-B0A3C22B594E}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
FirewallRules: [TCP Query User{7379C913-CA28-44D6-9418-7CD6567C1F09}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{1EA9D159-E429-45B8-A063-3AE7ACA7B198}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [{B2C7AB91-97FB-42B6-8302-3C57BBD09137}] => (Block) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [{BF003D85-D5EE-4CEB-A7E7-9E5840B81E84}] => (Block) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [TCP Query User{1F57EDB8-F246-4D02-9140-EACC3442BF79}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [UDP Query User{2AE56D36-5FB4-49B5-9109-7662233CDDE9}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{26EB4ABC-770B-460B-A44E-84823F4198BC}] => (Block) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{87CB71BE-46B3-472B-A186-BD20D35FE2D0}] => (Block) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [TCP Query User{7405061C-7394-428B-8FCE-75F4B2BFB8B1}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [UDP Query User{6722934D-2294-4394-92E6-F321E027D319}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [{272E0283-30D4-4D00-A07C-52ACBD1A2CA0}] => (Block) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [{1713FF8B-BB46-4BB7-ABB1-1F907421BDDE}] => (Block) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [TCP Query User{4A327AD6-8EF8-4722-A72A-6E77C7D38CDF}C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc)
FirewallRules: [UDP Query User{4F4BCAE2-B58B-4D08-8F1E-C7B6FA2A7BED}C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc)
FirewallRules: [{D1BB6A5C-249B-4EB2-A6DE-910298A38D20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Poppy Playtime\PlaytimeLauncher\PlaytimeLauncher.exe => Pas de fichier
FirewallRules: [{C2B37047-A37F-4FAB-84CA-49560A08654D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Poppy Playtime\PlaytimeLauncher\PlaytimeLauncher.exe => Pas de fichier
FirewallRules: [{3F719D90-2F43-4ABD-8160-86C31462779D}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{DD9D544F-780E-4123-A657-F2D3E68D9584}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{A1B8BBC0-58DD-42FC-BA60-D04B4C9D6377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{4CA365F0-A837-4570-9408-78D8C6477BB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{17F6E54B-5D8F-4FCF-916C-4935E8F01738}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9F741636-BEC2-4B4C-BD28-D152AA79DADB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3D13DBC4-64E0-4CA6-96EE-FF20FF4C0673}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{EC200589-4F8C-4D87-A60F-693196BE57F8}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{1404A255-F9A1-4F5F-95B5-FCD15DE39630}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{3EE11051-4477-4308-97DB-70498E08912A}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [TCP Query User{A3ECE8B2-8A36-4761-BCE2-EBDEA19E90E1}C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{C68FB2CC-0250-4FEE-9B0E-38305A4F5FD7}C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{2CF1C325-79F9-4A6F-88B7-D1F7839BD74B}] => (Block) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{6CEE6DA3-120C-4A73-8622-886A3A90EAFB}] => (Block) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{A3060FD9-0D21-4AEC-B490-FD9FD16A3E57}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D13DD181-B942-46E4-A060-5CDBD5F49DE7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4EDAD363-13F2-488A-B2A9-AC4CDFB945E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1E81D550-2478-485A-AA9D-F3639F9DBAF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{6BE5E6F3-83C1-4C13-8A73-7F61F66D7C25}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{69075845-5F85-4B89-A6E7-881B757E05AF}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [{F45B9DFC-13CF-48F0-96A4-EA5F274B4507}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6F1EFB98-78A9-4DC7-AE09-636B8988A149}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A00CAB82-F425-4BD7-B219-CB27D3DF1797}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6DC6D4B3-087B-45F7-8F32-D118F0B2E1F5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{819FD609-EE7C-4CF7-92AD-E680C8EB8F8B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3C97B3D2-BCEA-4E8C-AFA8-E1DB237F64A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A243E132-FB71-46AE-A04C-2A195F85402B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0F75D4DF-C6E2-4273-8E98-512DE7E51E7C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A9E93448-2AE6-4E9F-AEF8-DEA756CA0DFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5C9E1650-ED2F-4723-BC48-F93922D73E1E}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{4CC63CE3-9785-4C92-B0A8-BCE7FA658F43}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{E7D604AC-CA30-4A85-BC18-852F5BAC9FE5}C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{691D04C1-39F1-4161-B211-6CE7F7C3FB6B}C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{FF7A003C-45B1-4791-B407-AE56DEE81105}] => (Block) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{F53FEC5B-4233-4F75-ACAF-A9C3966C3788}] => (Block) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{959E80B9-63AF-46DB-8A77-8DA3E79D9576}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{2D85CF1D-09DA-41D7-B8DC-37F1357E0562}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{782326BA-C808-4EF7-B091-02D81091130F}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{73F94608-1ACA-49CC-99E9-4786929C5D4C}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{22D60359-B778-4070-B3A5-1A8D89CBCF99}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E7FAF36E-079E-4600-9BEC-FFE35BC12B00}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Points de restauration =========================
24-08-2022 12:12:19 Point de contrôle planifié
25-08-2022 21:15:29 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103
27-08-2022 17:52:05 Programme d’installation pour les modules Windows
27-08-2022 18:26:37 Removed Adobe Acrobat DC.
27-08-2022 18:45:41 Installed Adobe Acrobat DC.
28-08-2022 11:52:28 Revo Uninstaller's restore point - RegRun Reanimator
28-08-2022 11:54:16 Revo Uninstaller's restore point - Malwarebytes version 4.5.14.210
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Périphérique système de base
Description: Périphérique système de base
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (08/28/2022 12:20:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante dwm.exe, version : 10.0.22000.1, horodatage : 0x7cbe2305
Nom du module défaillant : dwmcore.dll, version : 10.0.22000.832, horodatage : 0x3f5d7ed5
Code d’exception : 0x8898008d
Décalage d’erreur : 0x000000000011fb94
ID du processus défaillant : 0x684
Heure de début de l’application défaillante : 0x01d8bac04aa75993
Chemin d’accès de l’application défaillante : C:\Windows\system32\dwm.exe
Chemin d’accès du module défaillant: C:\Windows\system32\dwmcore.dll
ID de rapport : c356d4ec-c801-4ebe-95d3-99bbf298f498
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (08/28/2022 11:52:37 AM) (Source: VSS) (EventID: 12289) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur inattendue DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000250,0x00530190,0000000000000000,0,00000279A1C0A780,4096,[0]). hr = 0x800701b1, Un périphérique qui n’existe pas a été spécifié.
.
Opération :
Interroger des clichés instantanés
Error: (08/28/2022 11:52:28 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {f6d838ad-840f-46d6-9f36-8371b4f2e188}
Error: (08/28/2022 11:26:22 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (08/28/2022 11:26:22 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (08/27/2022 11:22:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Badlion Client.exe, version : 3.11.0.0, horodatage : 0x627be4f7
Nom du module défaillant : Badlion Client.exe, version : 3.11.0.0, horodatage : 0x627be4f7
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0000000003969065
ID du processus défaillant : 0x2940
Heure de début de l’application défaillante : 0x01d8ba5aa43a392f
Chemin d’accès de l’application défaillante : C:\Program Files\Badlion Client\Badlion Client.exe
Chemin d’accès du module défaillant: C:\Program Files\Badlion Client\Badlion Client.exe
ID de rapport : 5f6bcd71-ab9f-4b3a-9944-6eb279ad7275
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (08/27/2022 06:45:36 PM) (Source: MsiInstaller) (EventID: 1013) (User: ADEM-PC)
Description: Product: Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 -- A later version of Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 is already installed.
Error: (08/25/2022 11:33:39 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Erreurs système:
=============
Error: (08/28/2022 01:27:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:27:38 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:12:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:12:38 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:57:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:57:37 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:42:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:42:37 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Windows Defender:
================
Date: 2022-08-28 12:20:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {DEC69E6B-6CB6-4E95-A49E-1AC94881F770}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-08-27 18:45:06
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\AdobeAcrobatDC\AcrobatActivation\Keygen.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Users\ademc\Desktop\Nouveau dossier\Adobe Acrobat Pro DC (2021.007.20095)\Adobe Acrobat Pro DC (2021.007.20095)\Adobe.Acrobat.Pro.DC.v2021.007.20095.exe
Version de la veille de sécurité : AV: 1.373.1055.0, AS: 1.373.1055.0, NIS: 1.373.1055.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:33:48
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tnega!MSR&threatid=2147754624&enterprise=0
Nom : Trojan:Win32/Tnega!MSR
ID : 2147754624
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\WLlcq14A.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
Version de la veille de sécurité : AV: 1.373.1051.0, AS: 1.373.1051.0, NIS: 1.373.1051.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:33:35
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0
Nom : Trojan:Win32/Wacatac.H!ml
ID : 2147814523
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\eFoZHDV6.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
Version de la veille de sécurité : AV: 1.373.1051.0, AS: 1.373.1051.0, NIS: 1.373.1051.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:00:06
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A0D7280E-8F1B-4FF4-98C6-FEFCD081E439}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
CodeIntegrity:
===============
Date: 2022-08-28 12:20:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-08-28 12:15:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ad50285c3647623\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-08-28 11:54:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. UX481FL.308 07/02/2020
Carte mère: ASUSTeK COMPUTER INC. UX481FL
Processeur: Intel(R) Core(TM) i7-10510U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 16182.23 MB
Mémoire physique - RAM - disponible: 8242.16 MB
Mémoire virtuelle totale: 18614.23 MB
Mémoire virtuelle disponible: 8992.3 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:952.82 GB) (Free:589.44 GB) (Model: NVMe SAMSUNG MZVLB1T0) (Protected) NTFS
\\?\Volume{3a67c860-4f4a-07bf-1000-5763d3e2c1e4}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{766a6d0e-2cbd-4fde-b03f-ce509dbc9e60}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 70772A7E)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
==================== Fin de Addition.txt =======================
Exécuté par ademc (28-08-2022 13:35:32)
Exécuté depuis C:\Users\ademc\Desktop\Antivir
Microsoft Windows 11 Professionnel Version 21H2 22000.856 (X64) (2021-12-29 16:44:47)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
ademc (S-1-5-21-286367191-1329303105-1402877350-1001 - Administrator - Enabled) => C:\Users\ademc
Administrateur (S-1-5-21-286367191-1329303105-1402877350-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-286367191-1329303105-1402877350-503 - Limited - Disabled)
Invité (S-1-5-21-286367191-1329303105-1402877350-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-286367191-1329303105-1402877350-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788.2 - Adobe Inc.)
Adobe Photoshop 2022 (HKLM-x32\...\PHSP_23_1) (Version: 23.1.0.143 - Adobe Inc.)
Adobe Premiere Pro 2022 (HKLM-x32\...\PPRO_22_1_2) (Version: 22.1.2 - Adobe Inc.)
ASUS Dial Control Panel Toolkit (HKLM\...\{A01CF1E6-8E7C-4986-8A1F-F1D28E3138B8}) (Version: 1.2.5.0 - ASUSTek COMPUTER INC.)
Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.11.0 - Badlion)
Biblio Manuels version 3.9.9 (HKLM-x32\...\24E53B05-258A-419A-B2FE-F3F059C85B4C_is1) (Version: 3.9.9 - Sejer)
CPUID CPU-Z 2.01 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.01 - CPUID, Inc.)
CurseForge (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.205.1.5800 - Overwolf app)
Discord (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Documentation Manager (HKLM\...\{2E843C78-FE5B-446C-A2AC-DE311FE1D78A}) (Version: 22.140.0.3 - Intel Corporation) Hidden
DriversCloud.com (HKLM\...\{C825674B-9D11-4148-B939-EA3564741D54}) (Version: 11.2.5.0 - Cybelsoft)
Dynamic Application Loader Host Interface Service (HKLM\...\{57E7F403-0CDB-4D34-8AB7-069EB1A389AF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON WF-7720 Series Printer Uninstall (HKLM\...\EPSON WF-7720 Series) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.102 - Google LLC)
Honeygain (HKLM-x32\...\{B4657D1D-16B3-4EFD-84FA-E4107A7B69A9}) (Version: 0.11.10.0 - Honeygain) <==== ATTENTION
Intel Software Package (HKLM-x32\...\{e1d93543-7ba0-4927-aa7f-09c5fc7f25df}) (Version: 8.7.10600.20700 - Intel) Hidden
Intel Software Package (HKLM-x32\...\{fb6ae7d1-efc5-4e76-b065-007ac6cb18b3}) (Version: 8.7.10700.22502 - Intel) Hidden
Intel(R) Dynamic Tuning (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.7.10700.22502 - Intel Corporation)
Intel(R) Icls (HKLM\...\{491C4B62-F0B3-4AD2-852A-C61F65C01BD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1399D5E5-AF60-406D-BBA9-9DF92F2AC593}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2216.16.0.2805 - Intel Corporation)
Intel(R) Management Engine Driver (HKLM\...\{421D9767-3134-4510-9237-79D93FF37F3F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME WMI Provider (HKLM\...\{3B1BDB47-C042-4A07-9868-234F832027BE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{531F2CB2-5A78-49E5-A71B-FFF7C7CDC32C}) (Version: 30.100.2020.7 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000140-0220-1036-84C8-B8D95FA3C8C3}) (Version: 22.140.0.4 - Intel Corporation)
Intel® Software Installer (HKLM-x32\...\{b3bbf46b-6ffd-4f54-8d1f-26206cfe1739}) (Version: 22.140.0.3 - Intel Corporation) Hidden
Java 8 Update 341 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
LatencyMon 7.20 (HKLM\...\LatencyMon_is1) (Version: 7.20 - Resplendence Software Projects Sp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.7.290502 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\{B49685C9-32FA-4194-A43F-DAF6BD60F2EC}) (Version: 2.3.0.78 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.78 - LogMeIn, Inc.)
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.15427.20210 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 104.0.1293.70 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Teams) (Version: 1.4.00.22976 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.70.2 - Microsoft Corporation)
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA Pilote graphique 516.59 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.59 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15427.20148 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15427.20178 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.113.50894 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.204.0.1 - Overwolf Ltd.)
Parsec (HKLM-x32\...\Parsec) (Version: 150-82a - Parsec Cloud Inc.)
Python 3.10.1 (64-bit) (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{af822d5e-759c-4e77-9696-3cc835cd54a9}) (Version: 3.10.1150.0 - Python Software Foundation)
Python 3.10.1 Core Interpreter (64-bit) (HKLM\...\{862831D8-A2FD-4ED5-B9B9-C8C3ECA1CAE8}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Development Libraries (64-bit) (HKLM\...\{A17FBEFC-ABDD-4E5E-AAA5-CC503ACF648F}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Documentation (64-bit) (HKLM\...\{DD75DEC5-89C0-4E54-88A2-83DCCA026F3A}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Executables (64-bit) (HKLM\...\{4F07CBC9-1051-41FC-978D-EECA76E4D547}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 pip Bootstrap (64-bit) (HKLM\...\{167746E3-B9B3-4964-803A-F893F1FC56C9}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Standard Library (64-bit) (HKLM\...\{98A2C72D-7929-414D-995B-4E47D8307C93}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Tcl/Tk Support (64-bit) (HKLM\...\{5A807757-F64E-46D3-ABD1-B4907BB75B72}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Test Suite (64-bit) (HKLM\...\{0393EBB7-8F16-42DC-9B63-F1552F481B92}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python 3.10.1 Utility Scripts (64-bit) (HKLM\...\{FD9B0798-B88D-4148-9159-6206EACD7C47}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{7DE12550-BE09-44DD-BDB4-0EC26BA89DAF}) (Version: 3.10.7644.0 - Python Software Foundation)
qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project)
Revo Uninstaller 2.3.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.5 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 12.2.0 (HKLM\...\SteelSeries GG) (Version: 12.2.0 - SteelSeries ApS)
Stellarium 0.21.3 (HKLM\...\Stellarium_is1) (Version: 0.21.3 - Stellarium team)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.22976 - Microsoft Corporation)
TI Connect CE (HKLM\...\{A78344DE-134F-4818-9B9E-1753F7F1F6F9}) (Version: 5.6.3.2278 - Texas Instruments Inc.)
Twitch (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VALORANT (HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.26.0.1 - Voicemod S.L.)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-08-27] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-12-30] (Adobe Systems Incorporated)
AudioWizard -> C:\Program Files\WindowsApps\ICEpower.AudioWizard_1.5.28.0_x64__dxp88312j1fgj [2022-01-04] (ICEpower)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2022-01-04] (INTEL CORP) [Startup Task]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.412.0_x64__v10z8vjag6ke6 [2022-08-24] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1026.0_x64__8j3eq9eme6ctt [2022-04-04] (INTEL CORP)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-30] (Microsoft Studios) [MS Ad]
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.28.0_x64__8wekyb3d8bbwe [2022-08-24] (Microsoft Studios)
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy [2022-07-25] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-07-01] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.8.204.0_x64__dt26b99r8h8gj [2021-12-29] (Realtek Semiconductor Corp)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.541.422.0_x86__55nm5eh3cm0pr [2022-08-27] (ROBLOX Corporation)
ScreenXpert -> C:\Program Files\WindowsApps\B9ECED6F.ScreenPadMaster_3.0.7.0_x64__qmba6cd70vzyy [2022-08-15] (ASUSTeK COMPUTER INC.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0 [2022-08-26] (Spotify AB) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-1B055C631BF3} -> [Creative Cloud Files] => C:\Users\ademc\Creative Cloud Files [2021-12-30 03:03]
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ademc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21161.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
CustomCLSID: HKU\S-1-5-21-286367191-1329303105-1402877350-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2021-10-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2021-10-21] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a6c8d8415ff0e012\nvshext.dll [2022-06-24] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\ademc\Desktop\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\Desktop\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Twitter.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2021-09-25 07:00 - 2021-09-25 07:00 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2021-12-30 01:29 - 2021-12-26 16:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Windows\System32\enppmon.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk:7661CCE9BF [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk:638138415C [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2022.lnk:C56174E6CE [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [10]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [10]
AlternateDataStreams: C:\Users\Public\Documents\OptiFine_1.8.9_HD_U_M5.jar:AF94E65249 [10]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_341\bin\ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_341\bin\jp2ssv.dll [2022-07-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-09-25] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\sharepoint.com -> hxxps://grandest-files.sharepoint.com
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2021-06-05 14:08 - 2022-08-27 23:19 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
Network Binding:
=============
VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Hamachi: VMware Bridge Protocol -> vmware_bridge (disabled)
Wi-Fi: VMware Bridge Protocol -> vmware_bridge (enabled)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "SteelSeriesGG"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_78142A25BE9ED8681F0DAB2B3BD7F1DB"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "LGHUB"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Samsung DeX"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Voicemod"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-286367191-1329303105-1402877350-1001\...\StartupApproved\Run: => "Overwolf"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{69D1C595-8842-4C58-90DF-A32632DBD52B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4039EDC9-0BB6-466E-AB3B-8C9FF9F3DAA5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3D0262AB-FF25-4637-807D-821DA2A8BC6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{AF3EC4FA-DDA1-48E9-A610-2064F6FC2617}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{59B338FF-CEC2-4E82-919B-2CA5C6B4866F}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{9D282CEE-AC20-466C-A745-BBD6FD0C2417}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [TCP Query User{058D5E2D-5BC8-4125-A16C-2D3549A20A8A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{39B6C4BA-82C5-43F4-8222-B5987912D206}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{79FFDAD7-8432-4CD5-BB10-89B68B311985}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{244F4FBA-AB78-450E-AA20-F9CB93B530CE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2B7E5641-E374-4393-A625-16BBF2677DBC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{47D3F36D-9CD5-4371-B67A-4EEB2F6F5FDF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2FF04054-D537-49F1-8423-C7D5F12E5517}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé]
FirewallRules: [{8028BF96-D303-40C1-BCD4-807FA2552EF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé]
FirewallRules: [{B5285BAA-10BB-4240-98C2-8F1CC9FE72E5}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{F3915289-9402-440C-8097-DC672AE36007}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{05AD71FE-8B08-4862-92FB-F3FD3435D407}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{6FDF7921-809F-4C1B-9868-EC214D851C60}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{71980BA2-4B15-4E39-82DC-E7F012061AA9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{BA915FEB-8E58-4C08-9A2E-883D43979A18}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{F4EA2014-D582-4A7C-8ABC-53080D287A4D}] => (Allow) C:\Program Files\Parsec\parsecd.exe (Parsec Cloud, Inc. -> Parsec)
FirewallRules: [{FF4A6571-C900-40B8-A82F-AE8A943411C6}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [{5256E99F-5EBF-4C20-BAD4-6CE011E436C1}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé]
FirewallRules: [TCP Query User{5887B482-BD9A-4F35-94A3-AE6A3A4B71BA}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{0A7BC0D9-81D4-4BAE-B738-438F2E7EE11B}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{C0881CA6-D960-40EF-AB08-89A6B7A2EF19}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{833EE7A6-2160-4DED-84E4-CAF2473AA4B7}] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{1B1B34C0-0644-44A9-BE8B-CA04C86F64A0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E4F80E90-7050-4B28-87BE-0BFDE74D507A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B7A3C7EC-8FC8-4D08-B73F-1CC6821C503C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{04B856B0-B592-4107-9EEC-44ED10978052}C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe] => (Allow) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [UDP Query User{FAFDA281-6E17-4618-9D88-C500C5AB79F6}C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe] => (Allow) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{C6DBACBA-4D02-4283-A6E8-04AB6E99B661}] => (Block) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{32449F10-90E2-42DD-BADA-CB3B9B3C0C33}] => (Block) C:\program files\common files\adobe\adobe desktop common\hex\adobe cef helper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{3E4CB5CE-EFED-4037-A2D9-9FBF2FDF2091}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
FirewallRules: [{62798B97-49A3-4017-853E-B0A3C22B594E}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod)
FirewallRules: [TCP Query User{7379C913-CA28-44D6-9418-7CD6567C1F09}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [UDP Query User{1EA9D159-E429-45B8-A063-3AE7ACA7B198}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [{B2C7AB91-97FB-42B6-8302-3C57BBD09137}] => (Block) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [{BF003D85-D5EE-4CEB-A7E7-9E5840B81E84}] => (Block) C:\program files\badlion client\badlion client.exe (ESL Gaming Online, Inc. -> Badlion)
FirewallRules: [TCP Query User{1F57EDB8-F246-4D02-9140-EACC3442BF79}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [UDP Query User{2AE56D36-5FB4-49B5-9109-7662233CDDE9}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{26EB4ABC-770B-460B-A44E-84823F4198BC}] => (Block) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [{87CB71BE-46B3-472B-A186-BD20D35FE2D0}] => (Block) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe
FirewallRules: [TCP Query User{7405061C-7394-428B-8FCE-75F4B2BFB8B1}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [UDP Query User{6722934D-2294-4394-92E6-F321E027D319}C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [{272E0283-30D4-4D00-A07C-52ACBD1A2CA0}] => (Block) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [{1713FF8B-BB46-4BB7-ABB1-1F907421BDDE}] => (Block) C:\programdata\badlionclient\jdk-17.0.1_12\bin\javaw.exe
FirewallRules: [TCP Query User{4A327AD6-8EF8-4722-A72A-6E77C7D38CDF}C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc)
FirewallRules: [UDP Query User{4F4BCAE2-B58B-4D08-8F1E-C7B6FA2A7BED}C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2022\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc)
FirewallRules: [{D1BB6A5C-249B-4EB2-A6DE-910298A38D20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Poppy Playtime\PlaytimeLauncher\PlaytimeLauncher.exe => Pas de fichier
FirewallRules: [{C2B37047-A37F-4FAB-84CA-49560A08654D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Poppy Playtime\PlaytimeLauncher\PlaytimeLauncher.exe => Pas de fichier
FirewallRules: [{3F719D90-2F43-4ABD-8160-86C31462779D}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{DD9D544F-780E-4123-A657-F2D3E68D9584}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{A1B8BBC0-58DD-42FC-BA60-D04B4C9D6377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{4CA365F0-A837-4570-9408-78D8C6477BB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{17F6E54B-5D8F-4FCF-916C-4935E8F01738}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9F741636-BEC2-4B4C-BD28-D152AA79DADB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3D13DBC4-64E0-4CA6-96EE-FF20FF4C0673}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{EC200589-4F8C-4D87-A60F-693196BE57F8}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{1404A255-F9A1-4F5F-95B5-FCD15DE39630}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [{3EE11051-4477-4308-97DB-70498E08912A}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.1.5.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (ASUSTeK COMPUTER INC.) [Fichier non signé]
FirewallRules: [TCP Query User{A3ECE8B2-8A36-4761-BCE2-EBDEA19E90E1}C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{C68FB2CC-0250-4FEE-9B0E-38305A4F5FD7}C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{2CF1C325-79F9-4A6F-88B7-D1F7839BD74B}] => (Block) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{6CEE6DA3-120C-4A73-8622-886A3A90EAFB}] => (Block) C:\users\ademc\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{A3060FD9-0D21-4AEC-B490-FD9FD16A3E57}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D13DD181-B942-46E4-A060-5CDBD5F49DE7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22183.300.1431.9295_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4EDAD363-13F2-488A-B2A9-AC4CDFB945E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1E81D550-2478-485A-AA9D-F3639F9DBAF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{6BE5E6F3-83C1-4C13-8A73-7F61F66D7C25}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{69075845-5F85-4B89-A6E7-881B757E05AF}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [{F45B9DFC-13CF-48F0-96A4-EA5F274B4507}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6F1EFB98-78A9-4DC7-AE09-636B8988A149}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A00CAB82-F425-4BD7-B219-CB27D3DF1797}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6DC6D4B3-087B-45F7-8F32-D118F0B2E1F5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{819FD609-EE7C-4CF7-92AD-E680C8EB8F8B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3C97B3D2-BCEA-4E8C-AFA8-E1DB237F64A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A243E132-FB71-46AE-A04C-2A195F85402B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0F75D4DF-C6E2-4273-8E98-512DE7E51E7C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A9E93448-2AE6-4E9F-AEF8-DEA756CA0DFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.192.647.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5C9E1650-ED2F-4723-BC48-F93922D73E1E}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{4CC63CE3-9785-4C92-B0A8-BCE7FA658F43}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [TCP Query User{E7D604AC-CA30-4A85-BC18-852F5BAC9FE5}C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{691D04C1-39F1-4161-B211-6CE7F7C3FB6B}C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{FF7A003C-45B1-4791-B407-AE56DEE81105}] => (Block) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{F53FEC5B-4233-4F75-ACAF-A9C3966C3788}] => (Block) C:\users\ademc\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{959E80B9-63AF-46DB-8A77-8DA3E79D9576}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{2D85CF1D-09DA-41D7-B8DC-37F1357E0562}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSSwitch\AsusSwitchNet.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{782326BA-C808-4EF7-B091-02D81091130F}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{73F94608-1ACA-49CC-99E9-4786929C5D4C}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{22D60359-B778-4070-B3A5-1A8D89CBCF99}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_6d80c4e5e6c9db97\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E7FAF36E-079E-4600-9BEC-FFE35BC12B00}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Points de restauration =========================
24-08-2022 12:12:19 Point de contrôle planifié
25-08-2022 21:15:29 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103
27-08-2022 17:52:05 Programme d’installation pour les modules Windows
27-08-2022 18:26:37 Removed Adobe Acrobat DC.
27-08-2022 18:45:41 Installed Adobe Acrobat DC.
28-08-2022 11:52:28 Revo Uninstaller's restore point - RegRun Reanimator
28-08-2022 11:54:16 Revo Uninstaller's restore point - Malwarebytes version 4.5.14.210
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Périphérique système de base
Description: Périphérique système de base
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (08/28/2022 12:20:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante dwm.exe, version : 10.0.22000.1, horodatage : 0x7cbe2305
Nom du module défaillant : dwmcore.dll, version : 10.0.22000.832, horodatage : 0x3f5d7ed5
Code d’exception : 0x8898008d
Décalage d’erreur : 0x000000000011fb94
ID du processus défaillant : 0x684
Heure de début de l’application défaillante : 0x01d8bac04aa75993
Chemin d’accès de l’application défaillante : C:\Windows\system32\dwm.exe
Chemin d’accès du module défaillant: C:\Windows\system32\dwmcore.dll
ID de rapport : c356d4ec-c801-4ebe-95d3-99bbf298f498
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (08/28/2022 11:52:37 AM) (Source: VSS) (EventID: 12289) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur inattendue DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 0000000000000250,0x00530190,0000000000000000,0,00000279A1C0A780,4096,[0]). hr = 0x800701b1, Un périphérique qui n’existe pas a été spécifié.
.
Opération :
Interroger des clichés instantanés
Error: (08/28/2022 11:52:28 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {f6d838ad-840f-46d6-9f36-8371b4f2e188}
Error: (08/28/2022 11:26:22 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (08/28/2022 11:26:22 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (08/27/2022 11:22:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Badlion Client.exe, version : 3.11.0.0, horodatage : 0x627be4f7
Nom du module défaillant : Badlion Client.exe, version : 3.11.0.0, horodatage : 0x627be4f7
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0000000003969065
ID du processus défaillant : 0x2940
Heure de début de l’application défaillante : 0x01d8ba5aa43a392f
Chemin d’accès de l’application défaillante : C:\Program Files\Badlion Client\Badlion Client.exe
Chemin d’accès du module défaillant: C:\Program Files\Badlion Client\Badlion Client.exe
ID de rapport : 5f6bcd71-ab9f-4b3a-9944-6eb279ad7275
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (08/27/2022 06:45:36 PM) (Source: MsiInstaller) (EventID: 1013) (User: ADEM-PC)
Description: Product: Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 -- A later version of Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 is already installed.
Error: (08/25/2022 11:33:39 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Erreurs système:
=============
Error: (08/28/2022 01:27:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:27:38 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:12:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 01:12:38 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:57:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:57:37 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:42:48 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/28/2022 12:42:37 PM) (Source: DCOM) (EventID: 10001) (User: ADEM-PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.22000.120.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Windows Defender:
================
Date: 2022-08-28 12:20:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {DEC69E6B-6CB6-4E95-A49E-1AC94881F770}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-08-27 18:45:06
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\AdobeAcrobatDC\AcrobatActivation\Keygen.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Users\ademc\Desktop\Nouveau dossier\Adobe Acrobat Pro DC (2021.007.20095)\Adobe Acrobat Pro DC (2021.007.20095)\Adobe.Acrobat.Pro.DC.v2021.007.20095.exe
Version de la veille de sécurité : AV: 1.373.1055.0, AS: 1.373.1055.0, NIS: 1.373.1055.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:33:48
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tnega!MSR&threatid=2147754624&enterprise=0
Nom : Trojan:Win32/Tnega!MSR
ID : 2147754624
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\WLlcq14A.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
Version de la veille de sécurité : AV: 1.373.1051.0, AS: 1.373.1051.0, NIS: 1.373.1051.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:33:35
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0
Nom : Trojan:Win32/Wacatac.H!ml
ID : 2147814523
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ademc\AppData\Local\Temp\eFoZHDV6.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : Adem-PC\ademc
Nom du processus : C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
Version de la veille de sécurité : AV: 1.373.1051.0, AS: 1.373.1051.0, NIS: 1.373.1051.0
Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2
Date: 2022-08-27 18:00:06
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A0D7280E-8F1B-4FF4-98C6-FEFCD081E439}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
CodeIntegrity:
===============
Date: 2022-08-28 12:20:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-08-28 12:15:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ad50285c3647623\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-08-28 11:54:02
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. UX481FL.308 07/02/2020
Carte mère: ASUSTeK COMPUTER INC. UX481FL
Processeur: Intel(R) Core(TM) i7-10510U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 16182.23 MB
Mémoire physique - RAM - disponible: 8242.16 MB
Mémoire virtuelle totale: 18614.23 MB
Mémoire virtuelle disponible: 8992.3 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:952.82 GB) (Free:589.44 GB) (Model: NVMe SAMSUNG MZVLB1T0) (Protected) NTFS
\\?\Volume{3a67c860-4f4a-07bf-1000-5763d3e2c1e4}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{766a6d0e-2cbd-4fde-b03f-ce509dbc9e60}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 70772A7E)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
==================== Fin de Addition.txt =======================