Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-01-2022 Exécuté par azert (15-01-2022 18:48:39) Exécuté depuis C:\Users\azert\Downloads Microsoft Windows 10 Professionnel Version 21H2 19044.1415 (X64) (2021-12-04 21:44:19) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3557396765-3374661574-1607600685-500 - Administrator - Disabled) azert (S-1-5-21-3557396765-3374661574-1607600685-1001 - Administrator - Enabled) => C:\Users\azert DefaultAccount (S-1-5-21-3557396765-3374661574-1607600685-503 - Limited - Disabled) Invité (S-1-5-21-3557396765-3374661574-1607600685-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3557396765-3374661574-1607600685-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.) Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_0) (Version: 17.0 - Adobe Systems Incorporated) Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_0) (Version: 14.0 - Adobe Systems Incorporated) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_1) (Version: 21.0.1 - Adobe Systems Incorporated) AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1725 - Advanced Micro Devices, Inc.) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.4 - AnyDesk Software GmbH) Boris FX Continuum 2019 Plug-ins for Adobe and Compatible Products (HKLM\...\{4488274F-E3B1-4895-BDEE-6AAB9FE70208}_is1) (Version: 12.0.0 - Boris FX, Inc.) Cinema 4D 19.024 (HKLM\...\MAXONAF860223) (Version: 19.024 - MAXON Computer GmbH) Color Suite v11.1.4 (HKLM-x32\...\{99487911-8011-42BC-B594-8B02BFD32B1D}_is1) (Version: 11.1.4 - Red Giant, LLC) CORSAIR iCUE 4 Software (HKLM\...\{643FFC24-5187-4BB4-965C-3D5D80D1A57B}) (Version: 4.19.191 - Corsair) CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.) Discord (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) EarnApp (HKLM-x32\...\EarnApp) (Version: - Luminati) ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.3.17 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{e201736e-db02-4616-bc33-5eda2f791ee1}) (Version: 1.0.3.17 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{bf1d7028-d935-477f-b5b2-053062f9b527}) (Version: 1.0.9.1 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM-x32\...\{ec10ac91-2e61-460a-b493-33f794a07682}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.8.0 - ENE Tech) Hidden ENE_X-JMI_HAL (HKLM-x32\...\{7eeee667-b295-4acd-9a4e-1160421db765}) (Version: 1.0.8.0 - ENE Tech) Hidden Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) FiveM (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Futuremark SystemInfo (HKLM-x32\...\{41C10E5B-2C7D-4278-97F8-7785D46348BC}) (Version: 5.44.969.0 - Futuremark) Gameloop (HKLM-x32\...\MobileGamePC) (Version: 4.1.74.90 - Tencent Technology Company) GenArts Sapphire Plug-ins 6.13 for After Effects and Compatible (HKLM\...\GenArts Sapphire AE_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{3DAC4F8C-80E6-4204-8A58-747FA4CBAA03}) (Version: 16.0.246 - Intel Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Magic Bullet Suite (HKLM\...\Magic Bullet Suite v13.0.16) (Version: - Red Giant LLC) Magic Bullet Suite (HKLM\...\Magic Bullet Suite v14.0.2) (Version: - Red Giant LLC) Magic Bullet Suite (HKLM\...\Magic Bullet Suite v15.1.0) (Version: - Maxon Computer GmbH) Maxon Cinema 4D R21 (HKLM\...\Maxon Cinema 4D R21) (Version: R21 - Maxon) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.55 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation) Microsoft Project - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation) Microsoft Visio - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation) MSI Afterburner 4.6.4 Beta 4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 4 - MSI Co., LTD) MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.0716.01 - MSI) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.39.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.1 - NVIDIA Corporation) NVIDIA Pilote graphique 511.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.23 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14701.20248 - Microsoft Corporation) Hidden OpenIV (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\OpenIV) (Version: 4.0.1.1452 - .black/OpenIV Team) Opera Stable 82.0.4227.43 (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\Opera 82.0.4227.43) (Version: 82.0.4227.43 - Opera Software) PassFab for RAR 9.5.1.4 (HKLM-x32\...\{PassFabforRAR}_is1) (Version: 9.5.1.4 - PassFab, Inc.) Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory) qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project) REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.3.865.060315 - REALTEK Semiconductor Corp.) ReelSmart Motion Blur v6 for After Effects and Premiere Pro (HKLM\...\ReelSmart Motion Blur v6 for After Effects and Premiere Pro 6.0.1) (Version: 6.0.1 - RE:Vision Effects) RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.21.1116.1 - Gigabyte) RivaTuner Statistics Server 7.3.2 Beta 5 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 5 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) Spotify (HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\Spotify) (Version: 1.1.76.447.g11f432d8 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Trapcode Suite (HKLM\...\Trapcode Suite v15.0.1) (Version: - Red Giant LLC) Trapcode Suite (HKLM\...\Trapcode Suite v15.1.5) (Version: - Red Giant LLC) Universe (HKLM\...\Universe_is1) (Version: 2.2.2 - Red Giant & Team V.R) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 1.0.8.1 - Voicemod S.L.) Watch Dogs Legion (HKLM-x32\...\Watch Dogs Legion_is1) (Version: - ) WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Packages: ========= Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.22.3.0_x64__6rarf9sa4v8jt [2022-01-12] (Disney) DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p [2021-12-23] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-12] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2022-01-14] (NVIDIA Corp.) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.245.1128.0002\FileSyncShell64.dll [2022-01-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_015fa42d67826549\nvshext.dll [2022-01-11] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé] ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2021-12-04 23:09 - 2018-11-15 14:08 - 002200784 _____ (Dexin Corp -> MICRO-STAR INTERNATIONAL) [Fichier non signé] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\IcMSIDll.dll 2021-03-09 14:00 - 2021-03-09 14:00 - 000205824 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV3.DLL 2021-05-04 17:17 - 2021-05-04 17:17 - 000475648 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll 2020-11-05 14:16 - 2020-11-05 14:16 - 000268800 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll 2021-10-21 11:33 - 2021-10-21 11:33 - 001993216 _____ (GIGABYTE) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACPCIeSSD_Lib.dll 2021-10-21 11:33 - 2021-10-21 11:33 - 001988096 _____ (GIGABYTE) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACSSD_Lib.dll 2022-01-14 20:52 - 2022-01-14 20:52 - 000394240 _____ (Google Inc.) [Fichier non signé] C:\Program Files (x86)\AnyDesk\gcapi.dll 2021-12-30 18:11 - 2021-12-30 18:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll 2021-12-30 18:11 - 2021-12-30 18:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll 2021-12-04 23:09 - 2018-08-31 07:26 - 000053760 _____ (MS) [Fichier non signé] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\MsIo32_Galax.dll 2021-11-08 12:10 - 2021-11-08 12:10 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll 2017-10-05 15:26 - 2017-10-05 15:26 - 002247168 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll 2018-12-08 08:22 - 2018-12-08 08:22 - 002059264 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll 2021-10-25 15:32 - 2021-10-25 15:32 - 000433664 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll 2021-11-09 10:30 - 2021-11-09 10:30 - 002050560 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll 2021-12-04 23:10 - 2016-10-04 04:43 - 000399872 _____ (TODO: <公司名稱>) [Fichier non signé] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\SDKDLL.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\WINDOWS\System32:tdsrinu.gfc [5882] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [8168] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-12-30] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2021-12-04 22:34 - 2021-12-04 22:33 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\Control Panel\Desktop\\Wallpaper -> c:\users\azert\downloads\1162236.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "CORSAIR iCUE 4 Software" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-3557396765-3374661574-1607600685-1001\...\StartupApproved\Run: => "Web Companion" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{71299FB7-F506-4702-8803-412CE77726C4}D:\gtav\gta5.exe] => (Block) D:\gtav\gta5.exe => Pas de fichier FirewallRules: [UDP Query User{38815EF2-BDAA-4AD7-B2F1-58B460899E75}D:\gtav\gta5.exe] => (Block) D:\gtav\gta5.exe => Pas de fichier FirewallRules: [{07D5897C-0109-4B1F-A2E7-E7EBE608C971}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{73C40F29-E520-4DA8-B31E-394A7BBD4E9B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{CB374218-53E3-4906-8069-817BAB5C780D}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{23687B09-11FB-4428-A8F2-0BA4AE370BF3}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [{C9310FB7-10A5-4093-915E-804E78AB7134}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{5513EB5A-E6D8-4D5C-8F51-F132D0E68207}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{39BB7BCB-679A-4D4A-8590-363692E16AF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{43657BB1-2693-485B-8F37-404E2924FB50}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6E3554C4-CC79-4783-93B9-F969210DBADF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [{28770BAF-488A-4E3E-9963-89B7D382CA96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [{48D8F37A-BD75-4718-B578-B7A7246376B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E118EF5C-D26F-4552-B130-64FDF5278CAA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{DD0AD7A3-B23D-4853-8C31-C57876907547}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{24AEF3BF-CCD4-42E5-9A56-A81BBD2EAABD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{EBEC59AB-9E9E-4922-8AEA-4B9E95446E2C}] => (Allow) c:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{142BC1CA-1BD0-4E1F-A4B3-943AF39319E1}] => (Allow) c:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{0B58ED4A-943D-45D6-88E9-E637D063C896}] => (Allow) c:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{F2EA0325-EE1B-47DD-963A-D0DEE0A4EEF0}] => (Allow) c:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{E1FC4B84-BBF7-4F59-A8C2-7C11C0FFC071}] => (Allow) c:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{AC8C697C-CA78-448D-8AE0-38CEE7345B68}] => (Allow) c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{4AC11BDF-421E-4597-995F-27B518EB38BC}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{0ED409F8-B69A-4FBD-9A66-1DDEE0601224}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{A9B5EC20-B347-41D1-92A6-C74AAEAA6566}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{507CC54B-D481-4EAF-828E-B039B3F66E20}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{AF17BDEF-B264-4CC6-97FE-A7AFD5E05A33}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{C21876E2-EFF8-4607-9ADC-4B7A0A57E44D}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{37382183-750D-4A86-88B9-1FC04CBD08A9}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{D6007E09-2A82-4F18-9E76-677C1DEB8045}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{D221AF07-8967-43E3-8709-0FF4ACCDCC4A}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{80BAD4BB-D468-4083-B5F2-A9CBA5C86933}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [Fichier non signé] FirewallRules: [{45497BFC-85B6-4A48-AAE0-2973D9B354B7}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{69C94FC7-7405-457D-B81C-4753A7FE8AA5}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{D923763A-0CBA-464D-8E0F-F6DD823CC46E}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{AF4AD225-C9C9-403B-993C-1E0DB6E38689}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [{AF673E2A-A2F4-4447-A815-D63FF1502161}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [{0B28952B-65C7-4060-884A-109BCBC4022A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{45AA81D2-58BF-4DB7-84D4-A873E6EF9D9C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7E55226B-7718-4A8E-8FB8-50253AB036AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{FF242E0B-955A-4151-9610-4E2B4069C9D2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{6B477F48-6B98-40F1-8C25-712E47450E38}C:\users\azert\appdata\local\xlabs\data\s1x\s1x.exe] => (Allow) C:\users\azert\appdata\local\xlabs\data\s1x\s1x.exe (X Labs) [Fichier non signé] FirewallRules: [UDP Query User{F6398931-CE85-47F6-970E-2ECE7BE6A462}C:\users\azert\appdata\local\xlabs\data\s1x\s1x.exe] => (Allow) C:\users\azert\appdata\local\xlabs\data\s1x\s1x.exe (X Labs) [Fichier non signé] FirewallRules: [TCP Query User{3637A114-5A42-4767-95E3-8423C3C3D463}C:\users\azert\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\azert\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [Fichier non signé] FirewallRules: [UDP Query User{0185D377-070C-432C-9899-BB857BCFF4C1}C:\users\azert\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\azert\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [Fichier non signé] FirewallRules: [TCP Query User{9667364E-61BC-4498-992E-EC72A2C8E073}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{DCD9507B-D4A8-4ECF-BCD4-29E69D202C2E}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{95603DCE-0F23-48CE-8D87-41B1F87931F4}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [UDP Query User{5AF97FE1-F3FB-4AB2-9F54-0614008517E4}C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\azert\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re) FirewallRules: [TCP Query User{9583F37C-80D7-41B9-B80F-9C53977456B2}D:\c4d 2019\cinema 4d.exe] => (Allow) D:\c4d 2019\cinema 4d.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [UDP Query User{3C4A2AFC-FAE5-49F7-97E0-0BE40A8ACF57}D:\c4d 2019\cinema 4d.exe] => (Allow) D:\c4d 2019\cinema 4d.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [TCP Query User{6D40AC1F-C535-4851-BEAB-0F32FED6AD24}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{C4B547F1-7C06-4FA0-97FE-D5709AC40A72}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{5A526E01-99DF-4AEF-9E51-A816E10F3AB2}D:\warface\gamecenter\gamecenter.exe] => (Allow) D:\warface\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [UDP Query User{10A43099-409E-4467-BAA5-71319BF6D7EB}D:\warface\gamecenter\gamecenter.exe] => (Allow) D:\warface\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{58DBB8D0-370B-42E9-B9AA-9BF1C5E0454D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1C4DE026-23BE-4D4A-9291-16EC85A9A113}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A9C20010-2534-41FF-A385-3B7316F60527}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{50430BAA-33F0-4DF7-A2A4-BF9F47FF253D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{01071685-3947-46ED-9E97-2239F4DAD47E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{4BDF5313-D2DB-415D-8F4C-17A840765BD0}D:\after effect 2020\adobe after effects 2020\support files\afterfx.exe] => (Allow) D:\after effect 2020\adobe after effects 2020\support files\afterfx.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [UDP Query User{1A9AAFB7-FA57-4B43-8236-F5AEE98A46DE}D:\after effect 2020\adobe after effects 2020\support files\afterfx.exe] => (Allow) D:\after effect 2020\adobe after effects 2020\support files\afterfx.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [TCP Query User{F36AAA48-CAB1-4864-8106-C4CCAC9CD48E}C:\program files\adobe\adobe media encoder 2020\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder 2020\adobe media encoder.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [UDP Query User{F525F632-610C-4999-A126-3209B7100695}C:\program files\adobe\adobe media encoder 2020\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder 2020\adobe media encoder.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [{306843D4-E2E2-4AF6-B6C1-D3D24C9ECAAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{3F68E473-5B16-40FE-8DDB-033EA2B1F2FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{02C02733-D50B-4551-B38B-7F3AD9384555}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{7E398365-59BC-461B-B8D5-189D07528702}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{4D67D90E-1DCD-4423-B66A-06349D57E30F}] => (Allow) C:\Users\azert\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{05E058A0-B912-4247-86BF-C3F043B6B7C1}] => (Allow) C:\Users\azert\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{09163DBD-2AD4-4A19-BF8A-EF001CACAEF5}] => (Allow) C:\Users\azert\AppData\Local\Programs\Opera\82.0.4227.43\opera.exe => Pas de fichier FirewallRules: [TCP Query User{369D5359-05DD-4118-82E9-6D5E26A9DF78}C:\users\azert\appdata\roaming\utorrent\updates\3.5.5_46096.exe] => (Allow) C:\users\azert\appdata\roaming\utorrent\updates\3.5.5_46096.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{264BF1F1-ED36-488C-B410-E95108A42185}C:\users\azert\appdata\roaming\utorrent\updates\3.5.5_46096.exe] => (Allow) C:\users\azert\appdata\roaming\utorrent\updates\3.5.5_46096.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{F7474D0F-B563-451A-90D1-BD4098B77B17}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8C9A96C7-F53E-437C-9201-99E32FAEF832}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{0FC3378F-E6DB-43D7-A895-CF704F22523A}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{C72E5503-F709-4850-A5E9-8A18152278DD}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{14772109-FC70-4A97-A477-B3AEE55C33C1}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [Fichier non signé] FirewallRules: [{4DE6AB50-3E62-4B89-B971-D6F82817AAE6}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{0C138F5C-8BCF-4695-A523-B75A41C80DD6}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{EAB6259D-672E-48BE-A500-7BFDBED3E80B}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{43785D61-2DA4-4C98-8A92-3CEE1F5D0309}] => (Allow) c:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{CDE4B231-5544-4728-A827-ED7C5EEBA4D3}] => (Allow) c:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{C63391A0-EA30-424C-9AEF-73D875813213}] => (Allow) c:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{D6980FD8-2689-4C48-8CF8-BE628ECE4AF3}] => (Allow) c:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{123A8064-5FFC-44C1-A413-2D87FC50DA39}] => (Allow) c:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [{EF430A6C-ADB6-48A8-80CF-21D96A2BE876}] => (Allow) c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) FirewallRules: [TCP Query User{CD006E7E-19FE-4145-85AD-75823F8437E7}D:\photoshop cc 2020\adobe photoshop 2020\photoshop.exe] => (Allow) D:\photoshop cc 2020\adobe photoshop 2020\photoshop.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [UDP Query User{787C9207-B345-4B27-B9F4-499595ABF30F}D:\photoshop cc 2020\adobe photoshop 2020\photoshop.exe] => (Allow) D:\photoshop cc 2020\adobe photoshop 2020\photoshop.exe (Adobe Inc. -> Adobe) [Fichier non signé] FirewallRules: [{922A0ADF-1780-4A5A-BE4F-BCF08B548F2C}] => (Allow) LPort=32682 FirewallRules: [TCP Query User{598F3703-B60B-4D45-8FA0-3D42E818DD39}C:\users\azert\downloads\anydesk.exe] => (Allow) C:\users\azert\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [UDP Query User{A3ED26A3-97B9-48FB-902F-BC0FBB9109CA}C:\users\azert\downloads\anydesk.exe] => (Allow) C:\users\azert\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{87AC1F3C-DDB9-4EAA-948A-C942BBE18E12}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{B553EAC9-21C7-417C-9FAB-1D1C6A9BD95F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{9D2FDAF2-C0F6-48C0-8BD2-6F352C3D8538}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{2E4F7131-2BEF-4BD3-9000-A25FD1DDB756}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{757EA3EE-6348-462E-B078-EF7D1BD036C9}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{7EC24331-53EB-412C-AE51-7C252AA2020A}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [TCP Query User{AD0081ED-FCFB-46B7-A9FD-A872EEBDA906}C:\users\azert\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\azert\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{30E38117-EE84-4270-BFB5-1C25E58317EF}C:\users\azert\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\azert\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) ==================== Points de restauration ========================= 30-12-2021 19:05:51 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 08-01-2022 12:34:14 Point de contrôle planifié 10-01-2022 21:15:48 Installed CORSAIR iCUE 4 Software 12-01-2022 08:39:30 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/15/2022 06:04:25 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: AUTORITE NT) Description: Windows ne peut pas charger la DLL de compteur extensible « C:\WINDOWS\system32\sysmain.dll » (code d'erreur Win32 126). Error: (01/15/2022 01:57:39 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/15/2022 10:38:34 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/14/2022 10:47:36 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/14/2022 10:47:21 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/14/2022 10:10:53 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/14/2022 09:01:58 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/14/2022 08:47:37 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « D:\C4D 2019\resource\modules\okino\okinocomlib.dll64 ». Assembly dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Erreurs système: ============= Error: (01/15/2022 02:38:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1ITQHF5) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/14/2022 07:07:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Ds3Service n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/14/2022 06:46:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service. Error: (01/14/2022 06:46:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service NVIDIA LocalSystem Container s’est arrêté avec l’erreur : Un exécutable de commande générique a renvoyé un résultat qui indique un échec. Error: (01/14/2022 03:03:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Ds3Service n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/13/2022 10:17:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Ds3Service n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/12/2022 10:28:13 AM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (01/11/2022 10:11:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1ITQHF5) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2022-01-14 16:27:28 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDownloader:Win32/Choziosi.A&threatid=2147809950&enterprise=0 Nom : TrojanDownloader:Win32/Choziosi.A ID : 2147809950 Gravité : Grave Catégorie : Cheval de Troie téléchargeur Chemin : file:_C:\Users\azert\Downloads\CS_installer.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-1ITQHF5\azert Nom du processus : C:\Windows\System32\RuntimeBroker.exe Version de la veille de sécurité : AV: 1.355.1904.0, AS: 1.355.1904.0, NIS: 1.355.1904.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-13 20:56:50 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Program Files (x86)\Watch Dogs Legion\bin\EMP.dll; file:_E:\EMPRESS\EMP.dll Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : DESKTOP-1ITQHF5\azert Nom du processus : C:\Program Files (x86)\Watch Dogs Legion\bin\WatchDogsLegion.exe Version de la veille de sécurité : AV: 1.355.1854.0, AS: 1.355.1854.0, NIS: 1.355.1854.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-13 18:20:41 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Program Files (x86)\Watch Dogs Legion\bin\EMP.dll; file:_E:\EMPRESS\EMP.dll Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : DESKTOP-1ITQHF5\azert Nom du processus : C:\Program Files (x86)\Watch Dogs Legion\bin\WatchDogsLegion.exe Version de la veille de sécurité : AV: 1.355.1844.0, AS: 1.355.1844.0, NIS: 1.355.1844.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-13 17:52:19 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Program Files (x86)\Watch Dogs Legion\bin\EMP.dll; file:_E:\EMPRESS\EMP.dll Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : DESKTOP-1ITQHF5\azert Nom du processus : C:\Program Files (x86)\Watch Dogs Legion\bin\WatchDogsLegion.exe Version de la veille de sécurité : AV: 1.355.1844.0, AS: 1.355.1844.0, NIS: 1.355.1844.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-13 16:43:44 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Choziosi.A&threatid=2147809954&enterprise=0 Nom : Trojan:Win32/Choziosi.A ID : 2147809954 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\azert\AppData\Local\chrome\conf.js Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-1ITQHF5\azert Nom du processus : C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Version de la veille de sécurité : AV: 1.355.1844.0, AS: 1.355.1844.0, NIS: 1.355.1844.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Event[0]: Date: 2022-01-11 18:21:14 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Utilisateur : DESKTOP-1ITQHF5\azert Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.355.1737.0, AS: 1.355.1737.0 Version du moteur : 1.1.18800.4 Date: 2022-01-11 18:21:09 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Utilisateur : DESKTOP-1ITQHF5\azert Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.355.1737.0, AS: 1.355.1737.0 Version du moteur : 1.1.18800.4 Date: 2022-01-11 18:21:06 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0 Nom : Program:Win32/Uwamson.A!ml ID : 250070 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Utilisateur : DESKTOP-1ITQHF5\azert Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.355.1737.0, AS: 1.355.1737.0 Version du moteur : 1.1.18800.4 ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. 1.50 01/14/2021 Carte mère: Micro-Star International Co., Ltd. MPG B550 GAMING PLUS (MS-7C56) Processeur: AMD Ryzen 7 3700X 8-Core Processor Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 16310.18 MB Mémoire physique - RAM - disponible: 9687.56 MB Mémoire virtuelle totale: 28598.18 MB Mémoire virtuelle disponible: 18945.15 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:465.14 GB) (Free:263.52 GB) NTFS Drive d: (Disque HDD) (Fixed) (Total:931.5 GB) (Free:862.44 GB) NTFS \\?\Volume{e4979d62-2921-4b5f-a2d0-efe6455310ce}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS \\?\Volume{cd366bef-6ff2-40d7-948d-a720c317bf2f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ==================== Fin de Addition.txt =======================