Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-10-2021 Exécuté par user (01-11-2021 09:56:16) Exécuté depuis C:\Users\user\Downloads Microsoft Windows 11 Famille Version 21H2 22000.282 (X64) (2021-10-16 03:43:46) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2552352709-2022222001-3759235135-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2552352709-2022222001-3759235135-503 - Limited - Disabled) Invité (S-1-5-21-2552352709-2022222001-3759235135-501 - Limited - Disabled) user (S-1-5-21-2552352709-2022222001-3759235135-1001 - Administrator - Enabled) => C:\Users\user WDAGUtilityAccount (S-1-5-21-2552352709-2022222001-3759235135-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton Security (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1285 - Microsoft Corporation) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Belgium e-ID middleware 5.0.17 (build 5498) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A75498}) (Version: 5.0.5498 - Belgian Government) Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) Discord (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.4.3 - DEV47APPS) Dynamic Application Loader Host Interface Service (HKLM\...\{DF094182-7FEF-4EE4-AC15-F8CC43844A12}) (Version: 1.0.0.0 - Intel Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{5C415481-ECCD-4875-AF77-A97B79825F2C}) (Version: 1.1.298.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Express Zip - Compresseur de fichiers (HKLM-x32\...\ExpressZip) (Version: 8.12 - NCH Software) FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.70.56204 - Electronic Arts) FiveM (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) FMOD Studio 2.01.08 (64bit) (HKLM\...\FMOD Studio 2.01.08 (64bit)) (Version: - Firelight Technologies Pty Ltd) FMOD Studio API Windows (HKLM-x32\...\FMOD Studio API Windows) (Version: - Firelight Technologies Pty Ltd) Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.) Focusrite Thunderbolt 4.25.0.335 (HKLM\...\Focusrite Thunderbolt_is1) (Version: 4.25.0.335 - Focusrite Audio Engineering Ltd.) Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.) FormatFactory 5.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.7.5.0 - Free Time) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.1.1.37576 - Foxit Software Inc.) Google Chrome (HKLM\...\{11E2201F-7EBD-39EB-945A-EC3ADB254A01}) (Version: 95.0.4638.54 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.0 - Rockstar Games) HWiNFO64 Version 7.00 (HKLM\...\HWiNFO64_is1) (Version: 7.00 - Martin Malik - REALiX) Intel(R) Chipset Device Software (HKLM-x32\...\{66879245-162d-47f5-bac4-840156a7c01e}) (Version: 10.1.18263.8193 - Intel(R) Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1952.14.0.1465 - Intel Corporation) Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation) JetBrains dotCover 2021.2.2 (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\{e0b1c9b0-9540-5e20-8a2f-3524e9a06db0}) (Version: 2021.2.2 - JetBrains s.r.o.) JetBrains dotMemory 2021.2.2 (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\{41109cb0-ef67-5b7b-96d3-23797d822c32}) (Version: 2021.2.2 - JetBrains s.r.o.) JetBrains dotPeek 2021.2.2 (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\{546640b4-6e04-545d-94f9-f7ce6cff2993}) (Version: 2021.2.2 - JetBrains s.r.o.) JetBrains dotTrace 2021.2.2 (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\{2d5368a1-3297-5a09-87f5-79a5b4864a3c}) (Version: 2021.2.2 - JetBrains s.r.o.) JetBrains ETW Service (HKLM-x32\...\{DEA96022-4B1D-4D5F-B590-4625EAFFF810}) (Version: 212.16.26.0 - JetBrains s.r.o) Hidden JetBrains Rider 2021.2.2 (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\{e2d2761c-f4ec-5bb3-aad5-521b644d1fdc}) (Version: 2021.2.2 - JetBrains s.r.o.) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.40 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.0.4491.49903 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 5.0.4 (x64) (HKLM-x32\...\{ff817559-f11f-4faa-af52-26feb4b46fff}) (Version: 5.0.4.29817 - Microsoft Corporation) Mods Studio 2 (HKLM-x32\...\Mods Studio 2) (Version: - ) Mods Studio 2 v2021.01 (HKLM-x32\...\Mods Studio 2 v2021.01) (Version: - ) Monopoly Plus (HKLM-x32\...\Uplay Install 3774) (Version: - Ubisoft) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 92.0 (x64 fr)) (Version: 92.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.0.1 - Mozilla) Mozilla Thunderbird 78.8.0 (x64 fr) (HKLM\...\Mozilla Thunderbird 78.8.0 (x64 fr)) (Version: 78.8.0 - Mozilla) Nefarius Virtual Gamepad Emulation Bus Driver (HKLM\...\{93D91F60-7C94-4A79-863F-EA713D2EB3F3}) (Version: 1.17.333.0 - Nefarius Software Solutions e.U.) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.4 - Notepad++ Team) NVIDIA Broadcast (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIABroadcast) (Version: 1.1.0.21 - NVIDIA Corporation) NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.92 - NVIDIA Corporation) NVIDIA Pilote graphique 496.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.49 - NVIDIA Corporation) OpenOffice 4.1.9 (HKLM-x32\...\{E660B309-2B8D-4C8A-8FA6-4FCF79844E04}) (Version: 4.19.9805 - Apache Software Foundation) paint.net (HKLM\...\{5BBA370F-0F66-4ABA-B003-B343021135ED}) (Version: 4.3.2 - dotPDN LLC) PassFab for RAR 9.4.4.0 (HKLM-x32\...\{PassFabforRAR}_is1) (Version: 9.4.4.0 - PassFab, Inc.) PassFab for ZIP 8.2.2.0 (HKLM-x32\...\{PassFabforZIP}_is1) (Version: 8.2.2.0 - PassFab, Inc.) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8911.1 - Realtek Semiconductor Corp.) Recovery Toolbox for RAR 3.0 (HKLM-x32\...\Recovery Toolbox for RAR_is1) (Version: - File Master LLC) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.44.403 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.9 - Rockstar Games) SaveEdit & JobSync Tool 1.41.õ, 1.42.õ (HKLM-x32\...\SaveEdit & JobSync Tool 1.41.õ, 1.42.õ) (Version: 1.41.õ, 1.42.õ - JobSync) SoftMaker Office 2021 (HKLM\...\{2847114B-5174-4F64-8E22-44DCDFEA77EF}) (Version: 21.0.5174 - SoftMaker Software GmbH) Solitaire XP version 1.0 (HKLM-x32\...\{2187FAB6-013A-4983-825F-F57F7BBBA373}_is1) (Version: 1.0 - SOLITAIREXP.COM) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Streamlabs OBS 0.27.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.27.1 - General Workings, Inc.) Touch Portal version 2.3.010 (HKLM-x32\...\Touch Portal_is1) (Version: 2.3.010 - Touch Portal VoF) TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team) TrucksBook Client version 1.4.0 (HKLM-x32\...\TrucksBook Client_is1) (Version: 1.4.0 - TrucksBook) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft) uTorrent Web (HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\utweb) (Version: 1.2.3 - BitTorrent, Inc.) Visual Studio Community 2022 RC (HKLM-x32\...\50716db4) (Version: 17.0.0 RC3 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) vs_CoreEditorFonts (HKLM-x32\...\{648AB86C-577C-4F84-A608-231AA2E7175B}) (Version: 17.0.31821 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{CCFBC305-8495-4A7D-B20F-BB0439A12AFB}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{60C647C8-7865-410D-A947-E98578028922}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{38371BF8-3A6A-4C76-B2C5-403CF3FA711B}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{05499988-0BF6-47FD-8D8B-4DF4D9D37165}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellsharedmsi (HKLM-x32\...\{7FEC4935-AB34-488D-BF33-38C816525040}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellx64msi (HKLM\...\{EFF69C65-9C29-46D2-B1F2-3B07C82C7958}) (Version: 17.0.31808 - Microsoft Corporation) Hidden WavePad - Éditeur audio (HKLM-x32\...\WavePad) (Version: 12.22 - NCH Software) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Wondershare FilmoraPro (HKLM\...\{92F289A8-A52F-4779-8382-4B91055D7D8D}) (Version: 2.3.10723.54848 - Wondershare) You Don't Know Jack version beta 1 (HKLM-x32\...\{EB8BBFCB-DBFC-4CAD-BD74-2384749720D2}_is1) (Version: beta 1 - Abandonware-France) Packages: ========= DTS Custom for Asus -> C:\Program Files\WindowsApps\DTSInc.DTSCustomforAsus_2.1.1.0_x64__t5j2fzbtdg37r [2021-03-08] (DTS, Inc.) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-31] (Microsoft Studios) [MS Ad] Movie Maker - Video Editor -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_3.3.3.0_x64__bzg06mxvgh4fa [2021-10-12] (V3TApps) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-27] (NVIDIA Corp.) Picsart - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PICSART-PHOTOSTUDIO_9.4.0.0_x64__crhqpqs3x1ygc [2021-10-17] (PicsArt Inc.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.215.0_x64__dt26b99r8h8gj [2021-03-08] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0 [2021-10-31] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B4CA0}\localserver32 -> C:\Program Files\SoftMaker Office 2021\PlanMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B7456}\localserver32 -> C:\Program Files\SoftMaker Office 2021\Presentations.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{0295691A-D674-4904-805C-BDFE165B771B}\localserver32 -> C:\Program Files\SoftMaker Office 2021\TextMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\user\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{30291A01-707C-11d0-B457-4446490043BF}\localserver32 -> C:\Program Files\SoftMaker Office 2021\TextMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{399254F2-670F-11D1-8092-0080ADB44B5C}\localserver32 -> C:\Program Files\SoftMaker Office 2021\PlanMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{399254F3-670F-11D1-8092-0080ADB44B5C}\localserver32 -> C:\Program Files\SoftMaker Office 2021\PlanMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{8a087491-5264-11d4-95F6-00A0CC3CCA14}\localserver32 -> C:\Program Files\SoftMaker Office 2021\PlanMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) CustomCLSID: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001_Classes\CLSID\{bf608490-5373-11d0-8efb-4446490043bf}\localserver32 -> C:\Program Files\SoftMaker Office 2021\TextMaker.exe (SoftMaker Software GmbH -> SoftMaker Software GmbH) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-03-15] (Notepad++ -> ) ContextMenuHandlers1: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2021-06-25] () [Fichier non signé] ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_3bab16edc4978b17\nvshext.dll [2021-10-21] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [ExpressZip] -> {8EEA165E-0B8B-4BA7-9796-50214C767171} => C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll [2021-06-25] () [Fichier non signé] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Public\Desktop\You Don't Know Jack.lnk -> C:\Users\user\AppData\Roaming\Abandonware-France\YouDontKnowJack\lancer.bat () ==================== Modules chargés (Avec liste blanche) ============= 2021-06-25 14:36 - 2021-06-25 14:36 - 000089088 _____ () [Fichier non signé] C:\Program Files (x86)\NCH Software\ExpressZip\ezcm64.dll 2021-03-11 19:28 - 2020-08-17 14:10 - 000090112 _____ (Bernhard Millauer,Uwe Mayer, Konrad Mattheis) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\WPFLocalizeExtension.dll 2021-03-11 19:28 - 2020-01-29 04:08 - 000013824 _____ (bloomtom) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\HttpProgress.dll 2021-04-02 08:39 - 2021-03-15 19:39 - 001198080 _____ (DotNetProjects) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\DotNetProjects.Wpf.Extended.Toolkit.dll 2021-03-11 19:28 - 2021-01-28 05:14 - 000334336 _____ (GitHub Community) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\Microsoft.Win32.TaskScheduler.dll 2021-04-02 08:39 - 2021-01-22 00:48 - 000014848 _____ (hardcodet.net) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\H.NotifyIcon.dll 2021-03-11 19:28 - 2021-01-22 00:48 - 000037376 _____ (hardcodet.net) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\Hardcodet.Wpf.TaskbarNotification.dll 2021-10-20 07:18 - 2021-10-20 07:18 - 000137152 _____ (Microsoft Windows -> Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll 2021-03-11 19:28 - 2021-03-24 22:05 - 000820736 _____ (NLog) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\NLog.dll 2021-03-11 19:28 - 2020-08-16 16:22 - 000037376 _____ (Uwe Mayer,Konrad Mattheis,Bernhard Millauer) [Fichier non signé] [Fichier en cours d'utilisation] C:\Users\user\Desktop\bear\DS4Windows\XAMLMarkupExtensions.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [8964] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.arccosine.com/ SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-2552352709-2022222001-3759235135-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-06-12] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-06-12] (Oracle America, Inc. -> Oracle Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\;C:\Program Files (x86)\Touch Portal\plugins\adb\platform-tools;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\Desktop\bear\10888927_978744415489981_94580310385681059_n.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "egui" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "utweb" HKU\S-1-5-21-2552352709-2022222001-3759235135-1001\...\StartupApproved\Run: => "BakkesMod" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{E0EC66F1-87C7-4E70-B25B-5BAE467F174D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NOKBAK\NOKBAK.exe () [Fichier non signé] FirewallRules: [{E4B19E85-016E-464C-8633-2821D217C3DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NOKBAK\NOKBAK.exe () [Fichier non signé] FirewallRules: [{215C246E-2CAB-4AB6-A8AC-BAF6AA154555}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [Fichier non signé] FirewallRules: [{B952596B-5A3A-4A9C-A012-7AB2387D2F12}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Flashing Lights\flashinglights.exe () [Fichier non signé] FirewallRules: [UDP Query User{3D0ACD9C-0E96-452D-B1E3-4C162FAD7B52}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{3B9BE691-9589-4346-ADB0-E1790B4BB095}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{9ADA0639-9FAD-4E9C-B2C4-E38DC4A14178}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{8C1B7BE6-AF27-41D6-9FE7-1BFCA01A7CB2}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{6C35D076-77B1-483A-8624-0C4C143B0A51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (Pipeworks Inc) [Fichier non signé] FirewallRules: [{4A022E94-5CB5-4990-9A78-6F72F77E0178}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (Pipeworks Inc) [Fichier non signé] FirewallRules: [{82DAE9B7-6150-4580-8B6A-AF47044F003D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Police Simulator Patrol Officers\Boston.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{210F497C-EBF4-49E2-A26F-6CC4B1AFA313}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Police Simulator Patrol Officers\Boston.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{F8876C34-16B1-4CE4-9FE5-7F2A61CA572E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Days Gone\BendGame\Binaries\Win64\DaysGone.exe (Sony Interactive Entertainment LLC) [Fichier non signé] FirewallRules: [{BA6F495F-C542-49B9-AC06-09A12AEEDF89}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Days Gone\BendGame\Binaries\Win64\DaysGone.exe (Sony Interactive Entertainment LLC) [Fichier non signé] FirewallRules: [{8FE26E3B-B294-4D38-9737-7175A0393218}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Green Hell\GH.exe () [Fichier non signé] FirewallRules: [{01B9AEE9-B921-492E-A429-6E94FF0A4435}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Green Hell\GH.exe () [Fichier non signé] FirewallRules: [{B00A2D65-58A7-4A9D-913B-D51491FBB4FF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{AD3A36CA-DC69-47B7-AB2B-1307610EC65A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F653439A-5E3E-4664-AAD9-E231B215A695}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CF387667-7257-4B44-A08A-00153C68DE37}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{11E5428D-031F-4237-A9EB-367FA980577E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{FBAC04CB-46D9-49D2-AEF6-9A3809048E54}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animal Shelter Demo\playway-launcher-win32-ia32\playway-launcher.exe (Pway Sp. z o.o. (Piotr "Xeno" Adamczyk)) [Fichier non signé] FirewallRules: [{0463BA78-D948-43F1-840A-814164253602}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animal Shelter Demo\playway-launcher-win32-ia32\playway-launcher.exe (Pway Sp. z o.o. (Piotr "Xeno" Adamczyk)) [Fichier non signé] FirewallRules: [{616466B0-82A7-44F4-954A-9C64A4E9FBA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé] FirewallRules: [{50567446-A934-4130-AD63-129A3803EB56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé] FirewallRules: [{607F5BD8-06B2-4BA7-BDE0-6697C8275C81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé] FirewallRules: [{05A83A2C-2FA0-4E16-9672-6A833792A4C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé] FirewallRules: [UDP Query User{BFCB8985-CDE8-490C-B101-9F25D45AD63C}C:\program files (x86)\origin games\fifa 21\fifa21.exe] => (Allow) C:\program files (x86)\origin games\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{01654FF7-D1F3-4668-AF80-AE920DE26CD6}C:\program files (x86)\origin games\fifa 21\fifa21.exe] => (Allow) C:\program files (x86)\origin games\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{1267F777-88C1-477F-9BC6-C2B1256D0EE3}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C6937A48-5F94-49B1-8EF1-46FA64E2D3C7}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{49CD91B2-81C7-41D9-ADCA-C438A1125ACD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animal Shelter Demo\Animal Shelter.exe () [Fichier non signé] FirewallRules: [{C977AAFF-EAB7-4F45-9AD6-A102751E367B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Animal Shelter Demo\Animal Shelter.exe () [Fichier non signé] FirewallRules: [UDP Query User{D8F48F8E-08B0-4C19-829E-1515BBA79F0B}C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{DB504E16-3D97-43BF-A2DB-4AD4B157E466}C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{5A8A3124-2B6E-485D-A2E9-D183F8C30DBE}C:\program files (x86)\steam\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [Fichier non signé] FirewallRules: [TCP Query User{EEFB914A-5D0D-4942-9C4C-1C4EC90C1FDF}C:\program files (x86)\steam\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\tekken 7\tekkengame\binaries\win64\tekkengame-win64-shipping.exe (BANDAI NAMCO Entertainment Inc.) [Fichier non signé] FirewallRules: [{C32237C9-D503-4133-8252-DCEE5353D721}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TEKKEN 7\TEKKEN 7.exe () [Fichier non signé] FirewallRules: [{87E2BE5D-743F-4A9B-BDD5-8ED3F027F22F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TEKKEN 7\TEKKEN 7.exe () [Fichier non signé] FirewallRules: [UDP Query User{4F0CA934-5E4D-4BF4-8D9B-2707045AA0AB}C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{E7F5CD3F-B2BD-4306-8E8C-949A5CFEC15F}C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [{590CCFA7-9488-4D0A-8C09-46190BE73DC4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\THE GAME OF LIFE - The Official 2016 Edition\TheGameOfLife.exe (Marmalade Technologies Ltd) [Fichier non signé] FirewallRules: [{95FB0E52-89B2-475E-A792-EAF02910F4E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\THE GAME OF LIFE - The Official 2016 Edition\TheGameOfLife.exe (Marmalade Technologies Ltd) [Fichier non signé] FirewallRules: [UDP Query User{A1CA2825-0E12-498B-A06A-D04F56CB8E90}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_291\bin\javaw.exe FirewallRules: [TCP Query User{61950C38-DDD3-4C3E-A342-1217A80EE9A2}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_291\bin\javaw.exe FirewallRules: [UDP Query User{BAFDA43E-5682-4DA5-80C9-D6F71881A913}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{DB63120F-8EA7-4F66-956A-0DB6E6BF6686}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{0DBAA8C3-A463-45F3-9F46-39DE8B45C0D4}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{CEB31A0A-A9E2-42C0-AF3F-4A3345EA377E}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8C21F57D-BB8A-4650-A7DF-8DFD97346EAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cell to Singularity\CellToSingularity.exe () [Fichier non signé] FirewallRules: [{29570069-23C9-437F-A66F-4791AAD2C34A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cell to Singularity\CellToSingularity.exe () [Fichier non signé] FirewallRules: [{D025FE80-9312-465C-99D2-57B4BB4C5336}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RIDE 4\ride4.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{1299F3DD-2C2C-4E31-9F35-72552D0B3418}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RIDE 4\ride4.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{0E6F1477-4063-4CB4-8360-C7C99978D342}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Little Nightmares\Atlas\Binaries\Win64\LittleNightmares.exe (Tarsier Studios) [Fichier non signé] FirewallRules: [{D3E8B4BE-626F-4444-8DC2-4B9E85635BB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Little Nightmares\Atlas\Binaries\Win64\LittleNightmares.exe (Tarsier Studios) [Fichier non signé] FirewallRules: [{ED2B6850-CB8E-40F2-861E-F0555948BAFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gas Station Simulator Demo\GSS2.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{7F6D660E-6C9D-4CE9-A86F-0073CE4CA988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gas Station Simulator Demo\GSS2.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{9AB70CFA-49F3-4A60-A326-F9671C102847}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Monopoly Plus\Monopoly.exe (Ubisoft Entertainment -> Asobo Studio) FirewallRules: [{F27DFFAA-814D-4B09-808F-A4BB6744A85B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius III\Lucius3.exe () [Fichier non signé] FirewallRules: [{A16BE465-177F-42B0-B0AE-B6F9D84FF584}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius III\Lucius3.exe () [Fichier non signé] FirewallRules: [{ADE31D2F-F7EF-43E3-AD57-69ED2523C5C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LuciusII\LuciusII.exe () [Fichier non signé] FirewallRules: [{859075D9-D0F4-4798-BDF6-6F10CA60F270}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\LuciusII\LuciusII.exe () [Fichier non signé] FirewallRules: [{5AAF76BE-97E7-4483-A89F-13A920F88FE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius\Lucius.exe (Esenthel) [Fichier non signé] FirewallRules: [{F43F0B8D-3CD4-4183-A677-31B93B01C807}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lucius\Lucius.exe (Esenthel) [Fichier non signé] FirewallRules: [UDP Query User{57748AE7-D732-4010-8EB8-3AA55654778C}C:\program files\fmod soundsystem\fmod studio 2.01.08\fmod studio.exe] => (Allow) C:\program files\fmod soundsystem\fmod studio 2.01.08\fmod studio.exe (Firelight Technologies -> ) FirewallRules: [TCP Query User{3953636C-3D74-4408-BC3B-A5118947E4D4}C:\program files\fmod soundsystem\fmod studio 2.01.08\fmod studio.exe] => (Allow) C:\program files\fmod soundsystem\fmod studio 2.01.08\fmod studio.exe (Firelight Technologies -> ) FirewallRules: [UDP Query User{0FAA9702-0684-4343-9221-249278EA57AC}C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [Fichier non signé] FirewallRules: [TCP Query User{32B76DF6-9BF8-48E4-A446-F06E0F547AC1}C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\bus simulator 18\bussimulator18\binaries\win64\bussimulator18-win64-shipping.exe (stillalive studios GmbH) [Fichier non signé] FirewallRules: [{4C76B498-A6DB-40B0-80E9-F9B9B9C075FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bus Simulator 18\BusSimulator18.exe () [Fichier non signé] FirewallRules: [{9F0BD39D-4F8F-4D40-B260-B8439FB31EC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bus Simulator 18\BusSimulator18.exe () [Fichier non signé] FirewallRules: [{BEFAB94F-6000-48B2-9213-1C3BFC6A567C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{6A9F97BB-A299-40F5-936C-2F4383114915}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Train Station Renovation - First Job\TrainStationRenovation.exe () [Fichier non signé] FirewallRules: [{17E8FEBA-9247-4DF7-BD74-EA4B5B26A216}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Train Station Renovation - First Job\TrainStationRenovation.exe () [Fichier non signé] FirewallRules: [{60B71977-1366-49C4-B23E-A1165EB49A7D}] => (Allow) LPort=25555 FirewallRules: [{5D03831F-03C6-4F38-A010-DF7564B49877}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé] FirewallRules: [{33097564-5F0D-402F-B755-5DF4D80029AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé] FirewallRules: [UDP Query User{2DC97F68-8263-48CB-93BA-19EE883B9B06}C:\users\user\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{B39A2FCB-CE16-4F93-A24B-CEA1C650EC23}C:\users\user\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{3541082F-C414-4D66-9F51-F7F55852CB7D}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{6CA027C0-667F-4C74-9726-DE79517D4C0D}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{42BD0AE0-F648-4F1B-8D55-188B10F60E26}] => (Allow) C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe (Focusrite Audio Engineering Ltd.) [Fichier non signé] FirewallRules: [{AB832552-E225-459F-AB0B-B25C6C19AF53}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{1C8F2A6C-93BB-4B83-8506-BB5AEED69CD9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{F59695EC-C839-45C0-91F6-0652AEAFEE49}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{14013C75-720B-4278-87DE-2060C5F0B361}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{BD548303-9BB3-4E27-8664-FB9786F3997D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A7593B7D-1506-4362-AEDE-19373632D2F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{AA423DB3-7EE0-474F-85B5-E5CCBF9E7401}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7D10C8CD-DD31-4AB7-BF16-D09E78A14347}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{50E1252D-1787-4408-9DA0-3A50E7AFE431}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{83F3CD66-C3C5-4393-A83F-6044DA325B96}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{938A8CF8-D0C1-4E4A-9F1B-3A5BF8EE07DA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8F9F5411-691B-4EAB-92AA-207F081ED018}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CatSimulator\catsim.exe () [Fichier non signé] FirewallRules: [{C52BE02F-E1E7-4929-B420-4938B28B17D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CatSimulator\catsim.exe () [Fichier non signé] FirewallRules: [TCP Query User{E56789A5-6C22-48DB-978B-B1DC4331E7A1}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{10708BD7-17AE-4BD5-AB5B-C4633E0D8520}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [{A9505090-39F0-448C-8B96-59E16866B8B0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E3FDCA3B-4BC8-4361-8044-83B2D5F41DC8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{12251770-48AF-4D4E-AC65-EA7D4CFA5155}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1AC1C011-7500-4CE4-9339-D3EE18E677FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{94CCC268-BCFD-45DB-89BF-EB6E2F038867}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E8766FD0-9270-4D82-AE6C-BD023F6F47E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D350363B-F344-4116-A3FD-F0B2D598CC8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A455CCDF-063B-4CD6-8263-3708ED30AB8C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A4BD9C1D-9F35-47B7-9FA5-29985B2044D8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{02A71643-BF3B-417A-A573-0C54D0B22231}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D356E27F-B3E2-434D-A044-9743CB97B588}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{30A390B1-D9F8-47B0-9B78-1F16D75ECF01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3E412F8D-DEE4-4177-9C7A-600E4B73AC2E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D0365AE0-E1EA-445A-BD01-CF4796C619F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{815DF513-D8FD-42D1-8399-7E5BE6D31003}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{64825322-4324-4FD6-9ABA-602BA8EE3C4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{CFDE15AF-8136-4EE9-BE62-C68FB58382A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{174EA2B0-CD85-4E33-8062-D2CCF98E5B2D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{78F4BBA9-494D-448C-BA2E-698FEB64D95F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) ==================== Points de restauration ========================= 01-11-2021 08:43:16 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/01/2021 08:48:51 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (11/01/2021 08:48:51 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (11/01/2021 08:48:51 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (11/01/2021 08:48:51 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (11/01/2021 04:27:33 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante eurotrucks2.exe, version : 1.42.1.0, horodatage : 0x6170c02f Nom du module défaillant : trucksbook_64.dll, version : 0.0.0.0, horodatage : 0x606b1c31 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000058bd ID du processus défaillant : 0x3ffc Heure de début de l’application défaillante : 0x01d7ce96924f565a Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\plugins\trucksbook_64.dll ID de rapport : dbc238d1-467d-41e7-8c23-1fee3925f48e Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/31/2021 09:18:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante eurotrucks2.exe, version : 1.42.1.0, horodatage : 0x6170c02f Nom du module défaillant : trucksbook_64.dll, version : 0.0.0.0, horodatage : 0x606b1c31 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000058bd ID du processus défaillant : 0x361c Heure de début de l’application défaillante : 0x01d7ce870fbe3625 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\plugins\trucksbook_64.dll ID de rapport : 26b2b5d9-b11e-4334-b500-a58951d864b4 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/31/2021 07:38:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante eurotrucks2.exe, version : 1.42.1.0, horodatage : 0x6170c02f Nom du module défaillant : trucksbook_64.dll, version : 0.0.0.0, horodatage : 0x606b1c31 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000058bd ID du processus défaillant : 0x2684 Heure de début de l’application défaillante : 0x01d7ce84f5f5e40b Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\plugins\trucksbook_64.dll ID de rapport : 95fc990c-30f3-483f-a46f-0a052a721af3 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/31/2021 06:05:19 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante eurotrucks2.exe, version : 1.42.1.0, horodatage : 0x6170c02f Nom du module défaillant : trucksbook_64.dll, version : 0.0.0.0, horodatage : 0x606b1c31 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000058bd ID du processus défaillant : 0x700 Heure de début de l’application défaillante : 0x01d7ce6e922eb003 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\plugins\trucksbook_64.dll ID de rapport : 3df7bf33-5cae-4ecb-80ac-c79adc442cda Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (11/01/2021 08:36:48 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Le service Service Sécurité Windows ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 08:36:31 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQ2FJHM) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================Event[0] Date: 2021-11-01 08:56:16 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/ExcludeProc.C&threatid=2147797730&enterprise=0 Nom : VirTool:Win32/ExcludeProc.C ID : 2147797730 Gravité : Grave Catégorie : Outil Chemin : CmdLine:_C:\Windows\System32\cmd.exe cmd /c powershell -Command Add-MpPreference -ExclusionPath @(($pwd).path, $env:UserProfile,$env:AppData,$env:Temp,$env:SystemRoot,$env:HomeDrive,$env:SystemDrive) -Force & powershell -Command Add-MpPreference -ExclusionExtension @('exe','dll') -Force & exit Origine de la détection : Inconnu Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.353.190.0, AS: 1.353.190.0, NIS: 1.353.190.0 Version du moteur : AM: 1.1.18700.4, NIS: 1.1.18700.4਍ Event[1] Date: 2021-11-01 08:49:57 Description: N/A Event[2] Date: 2021-11-01 08:37:34 Description: N/A Event[3] Date: 2021-10-31 00:36:03 Description: N/A Event[4] Date: 2021-10-20 19:24:48 Description: N/A  ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1401 07/27/2020 Carte mère: ASUSTeK COMPUTER INC. TUF GAMING B460-PLUS Processeur: Intel(R) Core(TM) i5-10400F CPU @ 2.90GHz Pourcentage de mémoire utilisée: 51% Mémoire physique - RAM - totale: 16292.51 MB Mémoire physique - RAM - disponible: 7980.32 MB Mémoire virtuelle totale: 22692.51 MB Mémoire virtuelle disponible: 7991.1 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:930.79 GB) (Free:183.17 GB) NTFS \\?\Volume{93185efc-f634-4934-8e1f-b2e9da6cf171}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS \\?\Volume{a5691dd3-c228-4a6b-a1cd-d813b1d6f55b}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================