Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-08-2022 Exécuté par InfoWare31 (09-09-2022 00:07:50) Exécuté depuis C:\Users\InfoWare31\OneDrive\Desktop Microsoft Windows 10 Professionnel Version 21H1 19043.1889 (X64) (2020-12-09 12:06:38) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1831518587-2530328139-2005501424-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1831518587-2530328139-2005501424-503 - Limited - Disabled) InfoWare31 (S-1-5-21-1831518587-2530328139-2005501424-1001 - Administrator - Enabled) => C:\Users\InfoWare31 Invité (S-1-5-21-1831518587-2530328139-2005501424-501 - Limited - Disabled) laber (S-1-5-21-1831518587-2530328139-2005501424-1002 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1831518587-2530328139-2005501424-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) Epic Games Launcher (HKLM-x32\...\{25A199C2-78B4-4D70-AE0D-71BD2E70FAF8}) (Version: 1.3.23.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.) FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.72.32477 - Electronic Arts) FIFA 22 (HKLM-x32\...\{67F7ABF6-2557-4756-923A-AB99086B1490}) (Version: 1.0.77.18142 - Electronic Arts) GeeGeeClient (HKLM-x32\...\{D10B7FBB-7C1A-4A4F-B765-8EA689E07732}) (Version: 1.1.23.0 - WonderPeople) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.102 - Google LLC) Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (it-IT) (HKLM-x32\...\{969D900A-3481-4A77-B888-D24160D4D727}) (Version: 11.0.7400.336 - Microsoft Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.5.14.210 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.14.210 - Malwarebytes) Marvel’s Spider-Man Remastered (HKLM-x32\...\FLT_Marvel's_Spider-Man_Remastered) (Version: - ) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.15601.20088 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.27 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.27 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\OneDriveSetup.exe) (Version: 22.166.0807.0002 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (ru-RU) (HKLM-x32\...\{9419B7EA-6A4B-4A57-8E2A-3BDD4676118F}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.39.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.14 - NVIDIA Corporation) NVIDIA Pilote graphique 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation) NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden OpenVPN Connect (HKLM\...\{45C65CE3-C105-4C48-B334-3E22FDCF4AD0}) (Version: 3.3.6 - OpenVPN Technologies) Paradox Launcher v2 (HKLM\...\{66DA3501-823A-4F07-A20D-C64495A59DC8}) (Version: 2.1.0 - Paradox Interactive) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.30.299 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.0 - Rockstar Games) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 22.0.0 (HKLM\...\SteelSeries GG) (Version: 22.0.0 - SteelSeries ApS) TeamSpeak 3 Client (HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH) Trackmania (HKLM-x32\...\Uplay Install 5595) (Version: - Ubisoft) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 131.0.10667 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) VALORANT (HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-26] (Microsoft Corporation) Hades -> C:\Program Files\WindowsApps\SupergiantGamesLLC.Hades_1.0.38246.0_x64__q53c1yqmx7pha [2022-01-08] (Supergiant Games, LLC) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_137.1.291.0_x64__v10z8vjag6ke6 [2022-08-14] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-05] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-08-31] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-09] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-09-08] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_47917a79b8c7fd22\nvshext.dll [2022-07-28] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-09-08] (Malwarebytes Inc. -> Malwarebytes) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2020-12-09 12:50 - 2020-12-09 12:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll 2020-12-09 12:50 - 2020-12-09 12:50 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4010] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-12] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-08] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\localhost -> localhost ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\Control Panel\Desktop\\Wallpaper -> c:\users\infoware31\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\rick.png DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "SteelSeriesGG" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_474483BF035A5B1D2FEA44D887F4B957" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "org.openvpn.client" HKU\S-1-5-21-1831518587-2530328139-2005501424-1001\...\StartupApproved\Run: => "utweb" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{E0C12EC8-C5E5-432A-B5DA-31AC4E6FB2FF}] => (Allow) E:\Jeux\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Pas de fichier FirewallRules: [{A553624C-946E-4A56-9B1B-E9D8E8088C56}] => (Allow) E:\Jeux\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Pas de fichier FirewallRules: [{F96F6625-48ED-42C6-9DEC-2763289A27A0}] => (Allow) C:\Users\InfoWare31\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [{E47ABC43-6468-4D19-BB52-F0FBDEC0A3B5}] => (Allow) C:\Users\InfoWare31\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [{2C3BD6BC-97EF-44A3-A44B-26B4DFDACE02}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{BD17C72B-2A04-4DE7-99C2-9C97FE4B516E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{33BBFC07-0591-40E3-9CD1-A3FEA0D5A117}] => (Allow) E:\Jeux\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Pas de fichier FirewallRules: [{06CD626A-BCA5-4A6A-8952-67F7F3D235F5}] => (Allow) E:\Jeux\steamapps\common\Sid Meier's Civilization VI\LaunchPad\LaunchPad.exe => Pas de fichier FirewallRules: [{8A748FD9-5A66-4BB9-A8E3-E62BB1AD2F39}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{C45EE03D-D67B-49FB-9EF8-34BBE1C52E7C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{EF0BA76B-F77D-4CE5-B633-00B44E806A68}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{AFA61C32-B794-4C11-B2FD-BAD67695BF94}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{FE47E941-74A9-4EB6-BDF6-F0D70AAD35B5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{B6E3D740-FD44-4E8E-8349-EE148667025A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{A700F917-88F9-43EF-8A1B-D87FAEDA2B6E}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{72DD5351-354E-49BA-A27B-904404E5F7DE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [TCP Query User{2CE63F5E-6BDF-4123-B46E-F1887642CDD9}E:\jeux\fifa 21\fifa21.exe] => (Allow) E:\jeux\fifa 21\fifa21.exe => Pas de fichier FirewallRules: [UDP Query User{55A76E28-5D04-4258-88AF-A7702D560141}E:\jeux\fifa 21\fifa21.exe] => (Allow) E:\jeux\fifa 21\fifa21.exe => Pas de fichier FirewallRules: [TCP Query User{43D9F096-51BE-4E5F-B2F5-44EA1D2DA88B}E:\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{2A58FEA1-E647-43A3-B2E3-79863BD0D112}E:\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{4BA6A71F-F617-472B-B98E-B8DE38665C7D}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe => Pas de fichier FirewallRules: [UDP Query User{3D4DE3DF-B8F9-45C6-9B79-4B2F76B860F9}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe => Pas de fichier FirewallRules: [{8F297413-A0AD-4296-96F9-580CC219DF76}] => (Allow) E:\Jeux\steamapps\common\WormsWMD\Worms W.M.D.exe () [Fichier non signé] FirewallRules: [{E9DC1C40-46C7-4E0C-AB30-2A7D5485BA42}] => (Allow) E:\Jeux\steamapps\common\WormsWMD\Worms W.M.D.exe () [Fichier non signé] FirewallRules: [{E9FDE3D8-8C60-42E2-AA1A-3402B4997907}] => (Allow) E:\Jeux\steamapps\common\Days Gone\BendGame\Binaries\Win64\DaysGone.exe => Pas de fichier FirewallRules: [{B4F510A1-331E-412B-8C77-2F49284B3BA7}] => (Allow) E:\Jeux\steamapps\common\Days Gone\BendGame\Binaries\Win64\DaysGone.exe => Pas de fichier FirewallRules: [{1BC90A51-C66C-4E9D-B875-97659E80EE01}] => (Allow) E:\Jeux\FIFA 21\FIFASetup\fifaconfig.exe => Pas de fichier FirewallRules: [{A0C292BE-DF3B-4B82-92DE-2346F6D94D88}] => (Allow) E:\Jeux\FIFA 21\FIFASetup\fifaconfig.exe => Pas de fichier FirewallRules: [TCP Query User{54C3B08C-85AE-41BE-AD20-73532B09515A}E:\jeux\steamapps\common\battlefield 2042 open beta\bf.exe] => (Allow) E:\jeux\steamapps\common\battlefield 2042 open beta\bf.exe => Pas de fichier FirewallRules: [UDP Query User{2DD9407F-DA0F-4FF0-88EB-14FB44418A90}E:\jeux\steamapps\common\battlefield 2042 open beta\bf.exe] => (Allow) E:\jeux\steamapps\common\battlefield 2042 open beta\bf.exe => Pas de fichier FirewallRules: [{DC2BF6EE-075C-4798-8F39-27ECA9F63D20}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{0E6D0005-AA62-47A6-9A0E-6030474327D6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{0F0AD943-722E-4608-A742-418154C9AD71}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{D444F368-24A1-4022-AD46-9921CC4449DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{AF6F437B-F007-4964-85F4-C56A89F7AAD5}] => (Allow) C:\Users\InfoWare31\AppData\Local\Programs\Opera\81.0.4196.37\opera.exe => Pas de fichier FirewallRules: [TCP Query User{8C8F73EF-321C-42A6-8973-C06BA0207707}E:8\gobi\binaries\wingdk\back4blood.exe] => (Allow) E:8\gobi\binaries\wingdk\back4blood.exe => Pas de fichier FirewallRules: [UDP Query User{77FBF705-ABB0-4A9F-A8E7-9FE457D35BC8}E:8\gobi\binaries\wingdk\back4blood.exe] => (Allow) E:8\gobi\binaries\wingdk\back4blood.exe => Pas de fichier FirewallRules: [TCP Query User{5F51C664-5B47-4DD7-94B9-78D54C176292}E:9\humanfallflat.exe] => (Allow) E:9\humanfallflat.exe => Pas de fichier FirewallRules: [UDP Query User{A3E77998-F4AE-4715-AD9F-85B135B6B787}E:9\humanfallflat.exe] => (Allow) E:9\humanfallflat.exe => Pas de fichier FirewallRules: [TCP Query User{930F04B7-69F9-4FC4-9514-DFADA25413B2}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => Pas de fichier FirewallRules: [UDP Query User{EA04BBB5-4DF0-44DF-A4F6-81E098B97F78}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe => Pas de fichier FirewallRules: [TCP Query User{8E7AF8CF-4A94-4562-99CB-B9DB738861C2}C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [UDP Query User{B25D21DC-BE78-47D5-8038-5A8A05F9C220}C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{AC369801-0B34-4A5B-B342-6A973AB00269}] => (Block) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{F056F7A3-E70A-4663-9BFA-3EEC1A1BA714}] => (Block) C:\program files (x86)\steam\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [TCP Query User{A6C0BA11-5624-40A0-B9F0-CAB35201FF40}E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [UDP Query User{30ED6E96-4A80-4129-8CC5-8F2361E49737}E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe] => (Allow) E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{C02EA050-6AB7-426F-B20E-F2E8355C4932}] => (Block) E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{04F380ED-29E1-44F6-8E34-2FAC858E53C3}] => (Block) E:\jeux\steamapps\common\world war 3\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [TCP Query User{78644733-97F4-48B4-A134-2852EF7710F3}E:\jeux\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe] => (Allow) E:\jeux\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe (MRAC World War 3 -> Epic Games, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{CE055FC5-67BF-4936-995D-FAB0585B7D65}E:\jeux\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe] => (Allow) E:\jeux\steamapps\common\world war 3\13_2002999\ww3\binaries\win64\ww3-win64-shipping.exe (MRAC World War 3 -> Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{A6EB94B8-9BD9-4C66-8365-3EF949E888E7}E:\enlisted\launcher.exe] => (Allow) E:\enlisted\launcher.exe => Pas de fichier FirewallRules: [UDP Query User{B9752B93-A19B-46FF-80B3-A222CA3EDB24}E:\enlisted\launcher.exe] => (Allow) E:\enlisted\launcher.exe => Pas de fichier FirewallRules: [{3A1EF9AF-D1E8-4B76-8B43-4C1E0CBE1E12}] => (Block) E:\enlisted\launcher.exe => Pas de fichier FirewallRules: [{AB0FC17A-651A-4B12-9662-02BAA3A6BE22}] => (Block) E:\enlisted\launcher.exe => Pas de fichier FirewallRules: [{326B19D8-8273-4444-A24A-C08DE6373B73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{2B65969E-42AC-4B39-A474-94843D0DC7F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{526C8721-9FE0-4D9C-8B37-641AF8CED6CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{87FC54CF-303D-4EAC-939B-EBAB8A12B9C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1C4D5727-676E-49B4-9261-2C9536537535}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DA978E70-D807-46A2-BFF1-B76030B8D3AD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{20A3B6A0-4E80-4417-9A7A-BB0D65869299}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6B3C45FB-7B7A-4E8E-89FE-1285AFACEA51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{001EBCF2-70E0-4F7C-B8BA-2FCA14079EE6}E:\jeux\fifa 22\fifa22.exe] => (Allow) E:\jeux\fifa 22\fifa22.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [UDP Query User{6AEB1F38-F18E-49A5-9EE6-83909C1BE518}E:\jeux\fifa 22\fifa22.exe] => (Allow) E:\jeux\fifa 22\fifa22.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{0D1C82C2-986D-498D-BB9A-410574750DBD}] => (Block) E:\jeux\fifa 22\fifa22.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{4A242BD2-1E36-4302-83CD-8692DE7C88A8}] => (Block) E:\jeux\fifa 22\fifa22.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{57C40CC8-25B7-4DCD-8751-8DEB6B49AC62}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{78ED4A79-9E05-4394-A2B0-DD23E07B68EF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{646DD24D-0145-40F5-813D-EBA047769C12}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{25E94578-8E3E-4D4B-9A97-98A2640FD815}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{6A8A0838-FF89-4DF0-B7A4-E8AFF2650909}E:\jeux\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) E:\jeux\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{2D7C220D-6CCF-4D5A-9B3D-EB0CE21C9F3D}E:\jeux\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) E:\jeux\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{971E42A9-E73F-450F-BEAE-6F8BD4C762EF}E:\jeux\battlefield 2042\bf2042trial.exe] => (Allow) E:\jeux\battlefield 2042\bf2042trial.exe => Pas de fichier FirewallRules: [UDP Query User{441C27A1-6A50-49DF-8587-915FBA40A481}E:\jeux\battlefield 2042\bf2042trial.exe] => (Allow) E:\jeux\battlefield 2042\bf2042trial.exe => Pas de fichier FirewallRules: [{63B888BD-B4BA-4EAD-9A1B-868C12C64503}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{52E8B4C1-3270-42F3-8318-6EE29E8714DD}E:\jeux\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) E:\jeux\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Pas de fichier FirewallRules: [UDP Query User{60A98CBA-5F21-4295-A866-E91E758C30FA}E:\jeux\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) E:\jeux\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Pas de fichier FirewallRules: [{67EE55E3-52A0-4884-951F-58A5C76EA518}] => (Allow) E:\Jeux\FIFA 22\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{E67A4D64-6F64-421A-89F1-68DFDE2882D2}] => (Allow) E:\Jeux\FIFA 22\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{AA0E0CAD-2BC2-4D94-81DA-2CF201E5F0A9}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{B1620B0B-227A-4C85-962D-C8EB3197B457}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{D8394A0D-685A-4D1B-A32B-3336272450DD}E:\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{3E140E82-EF16-4912-9B3F-884906449B86}E:\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{2E220A20-6929-4F8F-B819-B8D5ACF39BFF}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{031F05DB-6DCF-4EFB-A953-1CC8E99F5DD1}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{6554CFFC-4DE7-4D82-A51C-7C62B2F8F35F}] => (Allow) E:\Jeux\steamapps\common\Fall Guys\FallGuys_client.exe () [Fichier non signé] FirewallRules: [{616D48B1-8A34-493C-8E0E-CE275B46B6E5}] => (Allow) E:\Jeux\steamapps\common\Fall Guys\FallGuys_client.exe () [Fichier non signé] FirewallRules: [{FED737F8-1BCD-4F1E-8EE6-7389C7BA4C7D}] => (Allow) E:\Jeux\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé] FirewallRules: [{CF1B2E3D-6D7B-405F-A333-A41DA7A72D35}] => (Allow) E:\Jeux\steamapps\common\Fall Guys\FallGuys_client_game.exe () [Fichier non signé] FirewallRules: [{C0ADA039-A486-4B93-920E-257D6BBD8F57}] => (Allow) E:\Jeux\steamapps\common\Raft\Raft.exe () [Fichier non signé] FirewallRules: [{02FFFA90-F2E6-410F-AA11-57DE2970AC68}] => (Allow) E:\Jeux\steamapps\common\Raft\Raft.exe () [Fichier non signé] FirewallRules: [{A3BCE624-4600-4A52-ADAB-D47C4AEA8221}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pro Cycling Manager 2022\PCM64.exe (Cyanide SAS -> Cyanide) FirewallRules: [{2F2FE161-5E15-4CDE-B539-75306758BEE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pro Cycling Manager 2022\PCM64.exe (Cyanide SAS -> Cyanide) FirewallRules: [{6BB3391D-8C8B-4ECC-A5C8-A582B56DBD4C}] => (Allow) E:\Jeux\FIFA 22\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{1DE29053-3541-4601-AD03-EFDDBDDBD24B}] => (Allow) E:\Jeux\FIFA 22\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{A75D28C0-AE4A-468E-AC06-C0BB32550ECA}E:\jeux\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\jeux\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{AA410A1D-C229-45BF-9DF4-1AD8C78E6B4F}E:\jeux\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\jeux\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{E1510EA6-CA4B-4348-9D85-3D43C543A909}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.27\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{372E72A7-1EEE-4E5E-8067-E9667CF9C9D0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 03-09-2022 15:43:35 Point de contrôle planifié 08-09-2022 20:37:08 ZHPcleaner ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname DESKTOP-MVJ4EJ1.local already in use; will try DESKTOP-MVJ4EJ1-2.local instead Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-MVJ4EJ1.local. Addr 192.168.1.44 Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.44:5353 16 DESKTOP-MVJ4EJ1.local. AAAA 2A01:CB19:8722:0400:FC78:AAF3:6673:87B5 Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 DESKTOP-MVJ4EJ1.local. AAAA FE80:0000:0000:0000:FC78:AAF3:6673:87B5 Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 4 DESKTOP-MVJ4EJ1.local. Addr 192.168.1.44 Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 DESKTOP-MVJ4EJ1.local. AAAA FE80:0000:0000:0000:FC78:AAF3:6673:87B5 Error: (09/08/2022 07:11:57 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 4 DESKTOP-MVJ4EJ1.local. Addr 192.168.1.44 Error: (09/08/2022 03:05:32 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-MVJ4EJ1) Description: Impossible de fermer l’application ou le service « Microsoft Office SDX Helper ». Erreurs système: ============= Error: (09/08/2022 08:42:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (09/08/2022 08:42:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service HP Print Scan Doctor Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. Error: (09/08/2022 08:42:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service. Error: (09/08/2022 08:42:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service OpenVPN Connect Helper Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error: (09/08/2022 08:42:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PnkBstrA s’est terminé de façon inattendue pour la 1ème fois. Error: (09/08/2022 01:13:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MVJ4EJ1) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/05/2022 01:21:24 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MVJ4EJ1) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/05/2022 01:21:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-MVJ4EJ1) Description: Le serveur {776DBC8D-7347-478C-8D71-791E12EF49D8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2022-09-08 20:21:44 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Vigua.A&threatid=232714&enterprise=0 Nom : PUA:Win32/Vigua.A ID : 232714 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\InfoWare31\AppData\Local\Temp\HYDC106.tmp.1662661302\HTA\install.1662661302.zip Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-MVJ4EJ1\InfoWare31 Nom du processus : C:\Users\InfoWare31\AppData\Roaming\uTorrent\uTorrent.exe Version de la veille de sécurité : AV: 1.375.27.0, AS: 1.375.27.0, NIS: 1.375.27.0 Version du moteur : AM: 1.1.19600.3, NIS: 1.1.19600.3 Date: 2022-09-08 15:02:05 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {C2D38741-9263-4FA5-851F-B93F79211BFF} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-09-07 15:01:33 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {87CCE19C-4D91-482E-ABB0-0CAB4FE1D219} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-09-01 13:20:53 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {93AA4766-FCFC-40C1-ADDE-66BC5F5B9AAB} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-09-01 12:36:39 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {8F7EA7D6-3EF7-4688-8969-573BBADA640F} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2022-09-08 21:09:20 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-09-08 20:45:58 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2022-09-08 20:14:38 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2022-09-08 20:11:52 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 5222 10/14/2019 Carte mère: ASUSTeK COMPUTER INC. PRIME A320M-K Processeur: AMD Ryzen 5 3600 6-Core Processor Pourcentage de mémoire utilisée: 32% Mémoire physique - RAM - totale: 16315.22 MB Mémoire physique - RAM - disponible: 10995.37 MB Mémoire virtuelle totale: 20027.22 MB Mémoire virtuelle disponible: 12817.05 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:222.86 GB) (Free:126.66 GB) (Model: WDC WDS240G2G0A-00JH30) NTFS Drive d: (Bébou) (Fixed) (Total:111.78 GB) (Free:111.76 GB) exFAT Drive e: () (Fixed) (Total:931.5 GB) (Free:520.08 GB) (Model: ST1000DM010-2EP102) NTFS \\?\Volume{cf40e273-6e53-4fc6-a70e-74495c61126a}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS \\?\Volume{51a53fc6-1935-4d2c-6b80-22a2b2351870}\ () (Fixed) (Total:10.97 GB) (Free:0 GB) NTFS \\?\Volume{9849e432-6051-412a-946f-ffea9484f8f3}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 223.6 GB) (Disk ID: 7AD63F89) Partition: GPT. ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: E9912BB8) Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS) Attempted reading MBR returned 0 bytes. Could not read MBR for disk 3. ==================== Fin de Addition.txt =======================