Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-10-2021 Exécuté par ademc (29-10-2021 11:19:23) Exécuté depuis C:\Users\ademc\Bureau Microsoft Windows 10 Professionnel Version 21H1 19043.1288 (X64) (2021-06-05 13:27:41) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) ademc (S-1-5-21-4270959914-934749494-1876883624-1001 - Administrator - Enabled) => C:\Users\ademc Administrateur (S-1-5-21-4270959914-934749494-1876883624-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4270959914-934749494-1876883624-503 - Limited - Disabled) Invité (S-1-5-21-4270959914-934749494-1876883624-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-4270959914-934749494-1876883624-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated) Adobe After (HKLM\...\{6A915992-D887-4897-82F5-950EDD12DEB1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0) (Version: 17.0 - Adobe Systems Incorporated) Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_0) (Version: 14.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated) Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0) (Version: 14.0 - Adobe Systems Incorporated) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23367 - Microsoft Corporation) ASUS Dial Control Panel Toolkit (HKLM\...\{A01CF1E6-8E7C-4986-8A1F-F1D28E3138B8}) (Version: 1.0.24.0 - ASUSTek COMPUTER INC.) Badlion Client (HKLM\...\1de14785-dd8c-5cd2-aae8-d4a376f81d78) (Version: 3.3.3 - Badlion) Biblio Manuels version 3.9.5 (HKLM-x32\...\24E53B05-258A-419A-B2FE-F3F059C85B4C_is1) (Version: 3.9.5 - Sejer) BitTorrent (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\BitTorrent) (Version: 7.10.5.45857 - BitTorrent Inc.) Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) CPUID CPU-Z 1.91 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.91 - CPUID, Inc.) CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.) Désinstallation de l'imprimante EPSON WF-7720 Series (HKLM\...\EPSON WF-7720 Series) (Version: - Seiko Epson Corporation) Discord (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Documentation Manager (HKLM\...\{5A87092D-1128-4C00-9495-4312AEA73AEF}) (Version: 21.120.2.1 - Intel Corporation) Hidden Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team) DriversCloud.com (HKLM\...\{0337BFA9-63C1-41A6-BB12-85690990C119}) (Version: 11.0.3.0 - Cybelsoft) Dynamic Application Loader Host Interface Service (HKLM\...\{A28339C8-E641-4CCE-A316-56F405D1C245}) (Version: 1.0.0.0 - Intel Corporation) Hidden educadhoc (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\educadhoc) (Version: 8.0.6 - Hachette-livre) Epic Games Launcher (HKLM-x32\...\{6653362F-9365-4A3C-9BF8-71494529DE06}) (Version: 1.1.236.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) EPSON Scan PDF EXtensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.02 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) GeoGebra Classic (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\GeoGebra_6) (Version: 6.0.639 - International GeoGebra Institute) Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC) iCloud Outlook (HKLM\...\{58EF239A-565E-4854-9769-DE7BB82ED781}) (Version: 11.4.0.12 - Apple Inc.) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Intel(R) Graphics Driver Software (HKLM-x32\...\{8b5a8e04-659a-4407-b2e1-04ad55a2e72e}) (Version: 3.11.1.0 - Intel) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2101.15.0.2080 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000040-0220-1036-84C8-B8D95FA3C8C3}) (Version: 22.40.0.2 - Intel Corporation) Intel® Processor Identification Utility (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\Utilitaire d'identification du processeur Intel® 6.1.0731) (Version: 6.1.0731 - Intel Corporation) Intel® Software Installer (HKLM-x32\...\{a6cf16a4-9aef-469b-98af-71b15f60a233}) (Version: 21.120.2.1 - Intel Corporation) Hidden Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation) Kurumlar için Microsoft 365 Uygulamaları - tr-tr (HKLM\...\O365ProPlusRetail - tr-tr) (Version: 16.0.14430.20306 - Microsoft Corporation) LatencyMon 6.71 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lelivrescolaire.fr 2.2.0 (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\c67a9f72-d1bb-52d3-9c54-357bfe189dcd) (Version: 2.2.0 - Lelivrescolaire.fr Éditions) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.10.8013 - Logitech) Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.14430.20306 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.61.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{810F1419-7760-402E-8772-B4054FAA2B72}) (Version: 1.0.0.0 - Mojang) Minecraft Note Block Studio (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\Minecraft Note Block Studio) (Version: - ) Node.js (HKLM\...\{36AAFE4E-38A2-4721-86FC-4A700EEFDE08}) (Version: 12.18.1 - Node.js Foundation) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote graphique 496.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.13 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-041F-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden Oracle VM VirtualBox 6.1.16 (HKLM\...\{8084939A-142E-4CD2-8947-2706210D81F5}) (Version: 6.1.16 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.106.49298 - Electronic Arts, Inc.) Python 3.8.0 (32-bit) (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\{37ec7371-0827-49f1-be8a-63c158184b9c}) (Version: 3.8.150.0 - Python Software Foundation) Python 3.8.0 Core Interpreter (32-bit) (HKLM-x32\...\{8C9832C5-C3B1-4596-B8E9-F32ED263FC56}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Development Libraries (32-bit) (HKLM-x32\...\{5618017B-A985-45EB-9253-E5287C8EC89E}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Documentation (32-bit) (HKLM-x32\...\{36FB0376-2B32-4BD4-A75C-865B56AA8021}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Executables (32-bit) (HKLM-x32\...\{4623ABA8-AE5C-4799-B9F4-ECE858AE5429}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 pip Bootstrap (32-bit) (HKLM-x32\...\{F9A73836-C424-41DA-A8E6-9438FC6F30F5}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Standard Library (32-bit) (HKLM-x32\...\{9A26DCB3-CCB9-4BCD-B9A6-00613011F5C9}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Tcl/Tk Support (32-bit) (HKLM-x32\...\{978278A0-0090-4A9C-8610-001061A495AF}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Test Suite (32-bit) (HKLM-x32\...\{C66B9C40-21E1-4CEC-A34F-130346F298A9}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python 3.8.0 Utility Scripts (32-bit) (HKLM-x32\...\{0D64158A-8DFB-46E6-B455-3A6F73D5E412}) (Version: 3.8.150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{7DBA9B7D-924F-4CE8-8AE8-65977EF62744}) (Version: 3.8.6860.0 - Python Software Foundation) Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games) RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden Samsung DeX (HKLM-x32\...\{589A31D3-C347-4F23-A3B8-98E7603C3DCA}) (Version: 2.0.0.21 - Samsung Electronics Co., Ltd.) Hidden Samsung DeX (HKLM-x32\...\{a57d934a-f197-4680-96f3-6b7b837ab1fa}) (Version: 2.0.0.21 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.43.0 - Samsung Electronics Co., Ltd.) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 10.0.0 (HKLM\...\SteelSeries GG) (Version: 10.0.0 - SteelSeries ApS) Stellarium 0.21.0 (HKLM\...\Stellarium_is1) (Version: 0.21.0 - Stellarium team) Streamlabs OBS (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.21.1 - General Workings, Inc.) Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.24753 - Microsoft Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH) Twitch (HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) Uplay (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft) Utilitaire d'identification du processeur Intel® (HKLM-x32\...\{223AE01C-7F7D-4485-A5D2-A27A873414B3}) (Version: 6.1.0731 - Intel Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Packages: ========= AudioWizard -> C:\Program Files\WindowsApps\ICEpower.AudioWizard_1.5.28.0_x64__dxp88312j1fgj [2020-05-15] (ICEpower) Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-08-07] (INTEL CORP) [Startup Task] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-22] (Microsoft Corporation) Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-21] (INTEL CORP) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1020.0_x64__8j3eq9eme6ctt [2021-09-03] (INTEL CORP) LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-12-08] (LinkedIn) MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.0.25.0_x64__qmba6cd70vzyy [2021-10-28] (ASUSTeK COMPUTER INC.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-24] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.212.0_x64__dt26b99r8h8gj [2020-09-22] (Realtek Semiconductor Corp) Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.8.5.0_x64__wyx1vj98g3asy [2021-10-25] (Samsung Electronics Co, Ltd.) ScreenXpert -> C:\Program Files\WindowsApps\B9ECED6F.ScreenPadMaster_2.2.9.0_x64__qmba6cd70vzyy [2021-10-22] (ASUSTeK COMPUTER INC.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-14] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ademc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{1BAB2385-585A-485F-8387-2F38CDE17BB0} -> [Photos iCloud] => C:\Users\ademc\Images\iCloud Photos\Photos CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\ademc\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{930e604a-cc01-4d06-8d7a-5a07914f3afb}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2019\CamtasiaStudio.exe" -ToastActivated => Pas de fichier CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\ademc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4270959914-934749494-1876883624-1001_Classes\CLSID\{CE0AE5CD-6657-4D44-9586-E24B7B2212AD} -> [iCloud Drive] => C:\Users\ademc\iCloudDrive ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_1efab149a3626196\OptaneShellExt.dll [2021-02-25] (Intel(R) Rapid Storage Technology -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_1efab149a3626196\OptaneShellExt.dll [2021-02-25] (Intel(R) Rapid Storage Technology -> ) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_482c2283ad63881a\nvshext.dll [2021-10-07] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\ademc\Bureau\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi ShortcutWithArgument: C:\Users\ademc\Bureau\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod ShortcutWithArgument: C:\Users\ademc\Bureau\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gaaefhdnfcememjbgiogiajpcohdnddg ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gaaefhdnfcememjbgiogiajpcohdnddg ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi ShortcutWithArgument: C:\Users\ademc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gaaefhdnfcememjbgiogiajpcohdnddg ==================== Modules chargés (Avec liste blanche) ============= 2020-03-06 00:11 - 2020-03-06 00:11 - 000021504 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2021-04-06 04:24 - 2021-04-06 04:24 - 002146304 _____ (Holtek Semiconductor Inc.) [Fichier non signé] C:\Program Files\SteelSeries\GG\HIDDLL.dll 2021-04-06 04:24 - 2021-04-06 04:24 - 002284032 _____ (Holtek) [Fichier non signé] C:\Program Files\SteelSeries\GG\ISPDLL.dll 2021-05-18 16:32 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2021-08-07 19:57 - 2021-08-07 19:59 - 042803200 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.dll 2020-11-06 02:00 - 2020-11-06 02:00 - 000182784 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\EFXLM16A.DLL 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2021-01-14 19:12 - 2021-01-14 19:12 - 001282048 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-01-14 19:12 - 2021-01-14 19:12 - 000279040 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2021-01-14 19:12 - 2021-01-14 19:12 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-10-20 19:19 - 2021-01-14 19:12 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-4270959914-934749494-1876883624-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-4270959914-934749494-1876883624-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-4270959914-934749494-1876883624-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//asus17win10.msn.com/?pc=ASTE SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKU\S-1-5-21-4270959914-934749494-1876883624-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2020-03-06] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-13] (Microsoft Corporation -> Microsoft Corporation) Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - Pas de fichier (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\sharepoint.com -> hxxps://grandest-files.sharepoint.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 06:49 - 2021-09-10 21:09 - 000000965 _____ C:\WINDOWS\system32\drivers\etc\hosts 46.101.101.27 ip-46-101-101-27.lazerpenguin.com167.172.97.60 ip-167-172-97-60.lazerpenguin.com167.172.107.21 ip-167-172-107-21.lazerpenguin.com 2020-01-27 14:56 - 2020-10-08 11:53 - 000000580 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\nodejs\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-4270959914-934749494-1876883624-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ademc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "Razer Synapse" HKLM\...\StartupApproved\Run32: => "FUFAXRCV" HKLM\...\StartupApproved\Run32: => "FUFAXSTM" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\StartupFolder: => "Folding@home.lnk" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "Samsung DeX" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "LGHUB" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "CiscoMeetingDaemon" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-4270959914-934749494-1876883624-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{B268A432-7DA5-4A6D-949A-A5E4ABDE319A}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{97EB10BC-3369-4FB2-AC12-8B5F7403E933}] => (Allow) C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{1631985F-CC41-4F5C-AC93-582E45B494EA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6138C0F0-0D19-4DBF-A15B-C59F8DE27B88}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{14B9BB55-CE0E-44FA-87FB-311CC795F6FE}C:\users\ademc\téléchargements\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe] => (Allow) C:\users\ademc\téléchargements\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe => Pas de fichier FirewallRules: [TCP Query User{A8AA461F-03CD-4B9D-8813-AC3E964E0BDF}C:\users\ademc\téléchargements\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe] => (Allow) C:\users\ademc\téléchargements\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe => Pas de fichier FirewallRules: [UDP Query User{1FEA34A2-2345-47FD-913A-E3F04DEBD592}C:\users\ademc\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{5C750FFA-7E67-4353-8C6A-5B9F84A62F56}C:\users\ademc\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [{4A62CC43-FC00-4BED-BC98-B94A8D7D2E9C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FC4A6389-4465-4130-A20A-B3F09F35AFD8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{6CA0DCF3-6547-41BC-B282-1E6A179CC7C0}C:\users\ademc\bureau\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\ademc\bureau\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{2F07C0C9-799D-4535-94FD-9CDA363A449E}C:\users\ademc\bureau\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\ademc\bureau\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{041A9F63-9150-49C2-BDAC-1E38794A2943}C:\users\ademc\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ademc\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{F87E3B74-25C8-4EAC-843E-9D6B9B34AAE5}C:\users\ademc\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ademc\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{4514F74E-FA03-48BC-9A0B-9FB9E9F3F586}C:\users\ademc\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{20D942AE-4B87-4BED-B320-C288B3E219FD}C:\users\ademc\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{F21C9F74-5165-4392-9A73-215E8060FFD8}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{9FAA1F74-7036-4DEB-A9DD-4BB6900E4487}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [{0319FD8D-D8DC-4986-BB31-D9C96F7AFEE7}] => (Allow) C:\Users\ademc\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{8B5105A7-CEB1-4986-BFE3-E8A4935CD19A}] => (Allow) C:\Users\ademc\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{3960DAB8-E9FE-45D7-8547-F0346E7E54F9}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Inc.) FirewallRules: [{73489FF1-5CFE-4E4D-918B-6038A29FC240}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Inc.) FirewallRules: [{55646E55-EF87-4180-90E1-5925953B5EF1}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_lichelper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{70A3048A-6328-4645-B363-F34CCE7FDF04}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_licensing_helper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{726AC006-96AD-4A90-B463-C5D8DAE449FF}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\AASIapp.exe (Adobe Inc. -> Adobe Inc.) FirewallRules: [{FEEF076D-87A1-4496-9972-B4CBFA12C212}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_lichelper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{619A9432-95DF-49F3-AA62-B1F37ECEFFB1}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_licensing_helper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{9EC307E2-1932-4C55-8EDB-A2BEA2722E5A}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\AASIapp.exe (Adobe Inc. -> Adobe Inc.) FirewallRules: [{3D1B70FB-CD46-4095-A759-BFF5BE973D42}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_licutil.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{9C926BF7-A77E-46C2-B9DB-C86AE010BB77}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_licutil.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{F55E1165-BAB5-4D95-9C43-E36808D13AC6}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{069C34B7-54FE-40F1-A33C-8ADDEC10FAC5}] => (Block) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{9F816A5B-1CA2-4AA0-9788-E3236266180D}] => (Block) C:\Program Files\Adobe\Adobe Premiere Pro 2020\Adobe Premiere Pro.exe (Adobe Inc. -> Adobe) FirewallRules: [{CD2B315A-0F41-4CCE-AF9A-119CDFF1F764}] => (Block) C:\Program Files\Adobe\Adobe Premiere Pro 2020\Adobe Premiere Pro.exe (Adobe Inc. -> Adobe) FirewallRules: [{0C1F45E8-1126-4E2D-9878-DEEE232E35C7}] => (Block) C:\Program Files\Adobe\Adobe Media Encoder 2020\Adobe Media Encoder.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [{91B7E9B3-CD41-483C-B3E3-CDCE83264BA3}] => (Block) C:\Program Files\Adobe\Adobe Media Encoder 2020\Adobe Media Encoder.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [{353405FA-BFE1-4E38-8CF7-6FA779D22F8A}] => (Block) C:\Program Files\Adobe\Adobe Photoshop CC 2019\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) [Fichier non signé] FirewallRules: [{25410230-E0BD-4E2B-85CF-6F4E90FDA29F}] => (Block) C:\Program Files\Adobe\Adobe Photoshop CC 2019\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) [Fichier non signé] FirewallRules: [{99E34EB4-F00D-442C-AB36-C29211315DC6}] => (Block) C:\Program Files\Adobe\Adobe After Effects 2020\Support Files\AfterFX.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{34AD70F4-FAD8-4ABE-A6EE-C52E709F747E}] => (Block) C:\Program Files\Adobe\Adobe After Effects 2020\Support Files\AfterFX.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{3FD5B2D4-31A0-4BEA-A412-17611E9990F8}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Inc.) FirewallRules: [{053D8DD1-4D5B-41BD-A2C4-390DFB9BCB96}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Inc.) FirewallRules: [{896CD8F1-7C49-4AF4-9C66-00D5E1757CB6}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{34C44BE4-69CD-4549-9F38-5964DE4062F9}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{AA26C5D6-D570-49D2-9631-BCBE3A83D1EE}] => (Allow) C:\Users\ademc\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => Pas de fichier FirewallRules: [{73FE82BE-76BA-4DF1-9737-FF0D736C88D2}] => (Allow) C:\Users\ademc\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => Pas de fichier FirewallRules: [UDP Query User{C2200720-B51D-487D-AEA7-AE4675C03F2F}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.) FirewallRules: [TCP Query User{5626063E-B52F-40F7-A87B-1BC86E42B21A}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe (Streamlabs (General Workings, Inc.) -> General Workings, Inc.) FirewallRules: [{3B856FC6-237C-4AEA-AC80-5DAE1EAD672E}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{472FA602-CAB2-48BC-818F-4E58D5633C62}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{4AFDF0ED-047A-416C-9C5E-67EE446651DC}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{43F3BA6F-AB2A-46B8-8CE4-AE2583568295}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{28198BA0-A6BD-414F-A2FF-705AB136E357}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Fichier non signé] FirewallRules: [{091A2682-F666-4858-A9F1-7F4AFE9A1F94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [Fichier non signé] FirewallRules: [UDP Query User{61E5D392-6BA5-4367-BA1D-EE9D4958F2A1}C:\users\ademc\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{A840AC5B-CED8-4B18-A451-3C5779F87939}C:\users\ademc\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{3871393B-FE43-4FBC-939C-872BB5763FB1}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{4AB85D98-08EF-437A-9D07-0F3132161CF5}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{871275A1-4492-4D08-B0A7-4F64A521B811}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{15B10622-DD79-4BF8-9DA3-A919F5972C5C}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{21C573C2-4B80-45E9-B2BB-4CFD31193D08}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [{EFF94947-4057-4D6F-BA20-A5D83617E042}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [TCP Query User{89DFCFE3-A807-4320-A9F4-44EA47B1AE38}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{0DCD3F4A-AE3F-47BC-A70D-C2C136B13325}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{B22F8211-ADDF-4458-82FC-6DBA3D8CB4D9}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{21DF5247-5644-458B-9D65-4CFC6871D086}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Pas de fichier FirewallRules: [{C9FCBE09-F0A0-4790-8BC8-EA5AC2A9C13D}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe => Pas de fichier FirewallRules: [{2D0DF2DF-71E8-40C7-9443-7D0DDBE4A20D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{1A050A7A-9D6F-483D-8BD8-8D8A2DDA8F6B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{EE9814EE-CA11-4700-87AD-E61A46966DCC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{DBDCCC6A-E97E-4C4C-BBE9-8D6979F24890}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{9268BD37-7DCC-4F04-91FA-5941D737BBB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{D10C48E2-1258-49CC-9152-728E1BC855BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{E8EC1E1C-2D59-4427-91C7-93D49D28D8AC}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{4B3C0712-1B80-4E75-A013-C35B4570A065}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Pas de fichier FirewallRules: [{78A186AE-49FE-4936-B60F-D7BC73FC1A59}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{D2468F5F-EC92-4276-BECB-195A92B8E36D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{031A704D-F35D-4F11-B4A9-C332791CAEAE}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe => Pas de fichier FirewallRules: [{1A0576FB-8064-422A-A946-0B1A6FE3EF9C}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_cdacbd58a24d27d4\ASUSLinkRemote\LinktoMyASUS_Agent-remote.exe => Pas de fichier FirewallRules: [{5DAD6A15-9A57-4E70-90E8-4247075E93CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{A3EE3B68-90A5-4FE0-882B-C2F116AD66AE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{3C53BD0C-8766-486A-A845-A4CEF9B9F8F1}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe => Pas de fichier FirewallRules: [{D17D79A0-C779-465C-916C-F8B6EB25F27D}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe => Pas de fichier FirewallRules: [TCP Query User{B512F783-FF38-4D57-AE56-56EBF6E37398}C:\program files (x86)\letsview\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\letsview\letsview\wxmcast.exe => Pas de fichier FirewallRules: [UDP Query User{1154DF8F-C4AD-410F-A465-AA3633E58490}C:\program files (x86)\letsview\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\letsview\letsview\wxmcast.exe => Pas de fichier FirewallRules: [{92331ED4-BC65-4B9C-90AE-0C441FE64BBA}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier FirewallRules: [{D9883E0F-71AD-402F-9427-68596ABD19B8}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier FirewallRules: [TCP Query User{883E4A59-EA2D-4767-9BA5-0A7CC8AB0AD0}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => Pas de fichier FirewallRules: [UDP Query User{96ABFD48-1BEB-4328-AC21-544273D9AB35}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => Pas de fichier FirewallRules: [TCP Query User{C4D9F843-88AE-4B2C-A34A-ABBCF6038C7C}C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{E8EC792D-0630-4A85-9984-BFDE64111337}C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{68741BC9-B81A-4F81-8253-49F4F0B50F1D}C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{5AC7F433-BD7F-4959-8A64-0B51557ABD02}C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\ademc\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{5F52DC26-3F6D-4468-B04C-6D8E3ED962A1}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{07C2552B-FBB6-471D-B9C2-A14193AC7D29}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [{C7EE91E8-0E63-44A2-B1A9-8759B2F6CC5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A606F6AC-3E4A-4081-A54D-D29381CDFEB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A774422A-25CD-4F61-B064-F0CA6ADE09BD}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe => Pas de fichier FirewallRules: [{043F5A0C-21F1-4FAA-84CF-A8C5296DF69C}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe => Pas de fichier FirewallRules: [{DDA7CE07-F37F-4FCB-870C-A54371B09560}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé] FirewallRules: [{9922CD0F-537C-4382-B606-2791ADC1D1FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Aimtastic\Aimtastic.exe () [Fichier non signé] FirewallRules: [TCP Query User{41197D5A-A204-4E56-A19A-90EFC1FCBA5A}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{8E272642-4C89-46E9-B5B3-8CA7B7214B8E}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{10E13BFD-AE8C-4026-9B55-9170FC5A80AE}C:\alphaantileak\aal\bin\server\alphaantileak.exe] => (Allow) C:\alphaantileak\aal\bin\server\alphaantileak.exe (Constantin Schreiber -> ) FirewallRules: [UDP Query User{5DB0224F-470F-4704-AF97-084F4D812E1E}C:\alphaantileak\aal\bin\server\alphaantileak.exe] => (Allow) C:\alphaantileak\aal\bin\server\alphaantileak.exe (Constantin Schreiber -> ) FirewallRules: [TCP Query User{3A6AF36B-7FA1-49C1-8448-ED64FD55EC5F}C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{9B704F28-292A-406B-840B-0B3893190635}C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{E4B0E32C-93E1-40CD-B60E-9C21C7507610}C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{16510C12-B4DF-4C09-B83B-A0D65C3668B8}C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\ademc\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{768E1883-618D-4129-9088-D9030DD81A1B}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe FirewallRules: [UDP Query User{1BC40038-2C9D-4ABF-8648-8CA89CF4708D}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe FirewallRules: [TCP Query User{4EAFCBB9-609A-4CAC-A843-CCDA1DFDF8AA}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion) FirewallRules: [UDP Query User{135E4F90-80BD-4424-AA05-B1D61EFBE243}C:\program files\badlion client\badlion client.exe] => (Allow) C:\program files\badlion client\badlion client.exe (Turtle Entertainment Online, Inc. -> Badlion) FirewallRules: [TCP Query User{D6368182-CD14-499C-885C-9A98209F61C1}C:\programdata\badlionclient\jre1.16.0_1\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.16.0_1\bin\javaw.exe FirewallRules: [UDP Query User{85ABD2CA-E8C3-4703-9C42-DE4D0BE11A28}C:\programdata\badlionclient\jre1.16.0_1\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.16.0_1\bin\javaw.exe FirewallRules: [TCP Query User{630E2BF3-B77A-4C51-AA66-C282A44066C2}C:\program files\adobe\adobe photoshop cc 2019\required\cep\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe photoshop cc 2019\required\cep\cephtmlengine\cephtmlengine.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [UDP Query User{3AF5AD5E-5F71-4964-BE66-FA56EA794E4C}C:\program files\adobe\adobe photoshop cc 2019\required\cep\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe photoshop cc 2019\required\cep\cephtmlengine\cephtmlengine.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [TCP Query User{52612340-1257-47B4-B9EF-39B1D8CDCB3D}C:\program files\adobe\adobe premiere pro 2020\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2020\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc) FirewallRules: [UDP Query User{9191871B-FAEC-4790-92B6-5DD9F169723A}C:\program files\adobe\adobe premiere pro 2020\cephtmlengine\cephtmlengine.exe] => (Block) C:\program files\adobe\adobe premiere pro 2020\cephtmlengine\cephtmlengine.exe (Adobe Inc. -> Adobe Inc) FirewallRules: [{76B282C6-2FD5-4094-A3A2-5FCB961E9230}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E2467EDA-1FC9-4601-AC32-DC4FEDAA596A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C4ED88BB-8B9B-4516-B0DC-2687C5987EAF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{13FAF363-DDFB-485B-B4CE-0E39557BA636}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{689641A6-177B-4896-96C8-63FF2B543016}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{549838E3-C65B-4479-9ADA-A2CC02DACC56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D2A03488-2C61-4987-974E-601762E4DB9F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{64734D48-CCB6-49C8-8C3B-3370D0E6367A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2CF42EB2-4F4C-4ACF-9721-572B535FA63A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4FA535D2-7873-4DFE-B132-11DAF0F209FD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{63C4A8EF-2E3F-492B-A471-489619E05327}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6F7B6D64-4D28-4BA7-B1A6-DEDAD46B2E3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F1F1F22B-A29C-4E72-BFD5-3A01B0C88C5A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{DCFB0240-D670-4CCD-A826-6008C7734F95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8D5075BE-EA48-4FF8-BE3B-73B45EA876BC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{771A5C5A-003F-4182-98EC-9DA65E799984}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.8.5.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{DDE1BFED-B33B-4C9F-B63F-B28956A6666E}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.8.5.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{5FD5460F-80D8-43FF-AB51-99DE2CA0A4CD}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.8.5.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{628068E5-A426-4E15-A4EA-A8309F380F9B}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.8.5.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (Samsung Electronics CO., LTD. -> ) FirewallRules: [{5856E0F5-CAB7-45E7-8691-2991D77F649F}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{0A552313-001E-446A-AD89-D9DCB2CEAF1B}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{53065789-E19C-4C26-A177-FACEE6C69A2C}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{17AFDDB0-5ED9-4CE1-8522-3E023C7BC46E}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) FirewallRules: [{5DA584DC-0F4E-442A-BB96-1C2F613E5775}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) ==================== Points de restauration ========================= 24-10-2021 15:54:19 Revo Uninstaller's restore point - Adobe Genuine Service 24-10-2021 15:56:57 Revo Uninstaller's restore point - Voicemod 28-10-2021 23:29:54 Installed DriversCloud.com 28-10-2021 23:30:14 Installed DriversCloud.com 29-10-2021 11:15:10 Revo Uninstaller's restore point - Nox APP Player 29-10-2021 11:15:45 Revo Uninstaller's restore point - Nox APP Player ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/29/2021 11:15:10 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {4a33194f-4831-4e10-bb89-23175fa489e2} Error: (10/28/2021 11:29:49 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur inattendue DeviceIoControl(\\?\Volume{dbf504c3-0dd3-48bf-b9ea-75ee56bcafd8} - 000000000000026C,0x0053c008,00000247D9C065D0,0,00000247D9C07600,4096,[0]). hr = 0x80070005, Accès refusé. . Opération : Traitement de EndPrepareSnapshots Contexte : Contexte d’exécution: System Provider Error: (10/28/2021 11:29:39 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur inattendue DeviceIoControl(\\?\Volume{dbf504c3-0dd3-48bf-b9ea-75ee56bcafd8} - 0000000000000238,0x0053c008,00000247D9C065D0,0,00000247D9C07600,4096,[0]). hr = 0x80070005, Accès refusé. . Opération : Traitement de EndPrepareSnapshots Contexte : Contexte d’exécution: System Provider Error: (10/28/2021 11:29:28 PM) (Source: VSS) (EventID: 12289) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur inattendue DeviceIoControl(\\?\Volume{dbf504c3-0dd3-48bf-b9ea-75ee56bcafd8} - 0000000000000230,0x0053c008,00000247D9C065D0,0,00000247D9C07600,4096,[0]). hr = 0x80070005, Accès refusé. . Opération : Traitement de EndPrepareSnapshots Contexte : Contexte d’exécution: System Provider Error: (10/28/2021 11:25:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AsusInitialService.exe, version : 2.0.8.0, horodatage : 0x60989bdd Nom du module défaillant : ntdll.dll, version : 10.0.19041.1288, horodatage : 0xa280d1d6 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000ff199 ID du processus défaillant : 0x164c Heure de début de l’application défaillante : 0x01d7cbe88e00bd27 Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\DriverStore\FileRepository\asusscreenxpertbase.inf_amd64_2d33d03a5678f27a\AsusScreenXpertBase\AsusInitialService.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : b6bc085f-fa6b-4cca-bb7a-af344f9912d2 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/25/2021 06:25:04 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (10/24/2021 11:38:46 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (10/24/2021 04:09:27 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Erreurs système: ============= Error: (10/29/2021 11:07:01 AM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (10/28/2021 11:25:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service ASUS ScreenXpert s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (10/28/2021 12:42:22 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service SecurityHealthService avec les arguments « Non disponible » pour exécuter le serveur : {8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0} Error: (10/28/2021 10:19:01 AM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (10/25/2021 07:04:05 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (10/25/2021 07:04:04 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (10/25/2021 06:54:04 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (10/25/2021 06:44:05 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Windows Defender: ================ Date: 2021-10-29 11:15:20 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Presenoker&threatid=242420&enterprise=0 Nom : PUA:Win32/Presenoker ID : 242420 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Program Files (x86)\Nox\bin\Nox_unload.exe->[RSRCEmb] Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : ADEM-PC\ademc Nom du processus : C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe Version de la veille de sécurité : AV: 1.353.25.0, AS: 1.353.25.0, NIS: 1.353.25.0 Version du moteur : AM: 1.1.18700.4, NIS: 1.1.18700.4 Date: 2021-10-28 23:40:35 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Presenoker&threatid=242420&enterprise=0 Nom : PUA:Win32/Presenoker ID : 242420 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Program Files (x86)\Nox\bin\Nox_unload.exe->[RSRCEmb] Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : ADEM-PC\ademc Nom du processus : C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe Version de la veille de sécurité : AV: 1.351.1238.0, AS: 1.351.1238.0, NIS: 1.351.1238.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-28 23:29:28 Description: L'accès contrôlé aux dossiers a empêché C:\Windows\System32\msiexec.exe de modifier la mémoire. Heure de détection : 2021-10-28T21:29:28.397Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\HarddiskVolume3 Nom du processus : C:\Windows\System32\msiexec.exe Version de la veille de sécurité : 1.351.1238.0 Version du moteur : 1.1.18600.4 Version du produit : 4.18.2109.6 Date: 2021-10-28 23:29:28 Description: L'accès contrôlé aux dossiers a empêché C:\Windows\System32\svchost.exe de modifier la mémoire. Heure de détection : 2021-10-28T21:29:28.397Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\HarddiskVolume1 Nom du processus : C:\Windows\System32\svchost.exe Version de la veille de sécurité : 1.351.1238.0 Version du moteur : 1.1.18600.4 Version du produit : 4.18.2109.6 Date: 2021-10-28 23:29:28 Description: L'accès contrôlé aux dossiers a empêché C:\Windows\System32\VSSVC.exe de modifier la mémoire. Heure de détection : 2021-10-28T21:29:28.397Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\HarddiskVolume1 Nom du processus : C:\Windows\System32\VSSVC.exe Version de la veille de sécurité : 1.351.1238.0 Version du moteur : 1.1.18600.4 Version du produit : 4.18.2109.6 Date: 2021-10-24 14:33:41 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : 1.351.976.0 Version précédente de la veille de sécurité : 1.351.925.0 Source de mise à jour : Utilisateur Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.18600.4 Version précédente du moteur : 1.1.18600.4 Code d’erreur : 0x80004004 Description de l’erreur : Opération abandonnée Date: 2021-10-24 14:33:41 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : 1.351.976.0 Version précédente de la veille de sécurité : 1.351.925.0 Source de mise à jour : Utilisateur Type de veille de sécurité : Anti-virus Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.18600.4 Version précédente du moteur : 1.1.18600.4 Code d’erreur : 0x80004004 Description de l’erreur : Opération abandonnée Date: 2021-10-07 13:18:45 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.349.2084.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.18500.10 Code d’erreur : 0x80072ee2 Description de l’erreur : Le délai imparti à l’opération est dépassé ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. UX481FL.308 07/02/2020 Carte mère: ASUSTeK COMPUTER INC. UX481FL Processeur: Intel(R) Core(TM) i7-10510U CPU @ 1.80GHz Pourcentage de mémoire utilisée: 48% Mémoire physique - RAM - totale: 16182.23 MB Mémoire physique - RAM - disponible: 8360.13 MB Mémoire virtuelle totale: 18614.23 MB Mémoire virtuelle disponible: 10166.31 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:952.87 GB) (Free:497.34 GB) (Protected) NTFS \\?\Volume{2739a99c-2c17-4436-8bfd-0810e55f77a5}\ () (Fixed) (Total:0.72 GB) (Free:0.05 GB) NTFS \\?\Volume{766a6d0e-2cbd-4fde-b03f-ce509dbc9e60}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 953.9 GB) (Disk ID: 70772A7E) Partition: GPT. ==================== Fin de Addition.txt =======================