Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-10-2023 Exécuté par bewas (12-10-2023 21:33:31) Exécuté depuis C:\Users\bewas\Desktop Microsoft Windows 10 Famille Langue unique Version 22H2 19045.3324 (X64) (2020-11-06 17:15:10) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2137434348-4085527620-4071002930-500 - Administrator - Disabled) bewas (S-1-5-21-2137434348-4085527620-4071002930-1001 - Administrator - Enabled) => C:\Users\bewas DefaultAccount (S-1-5-21-2137434348-4085527620-4071002930-503 - Limited - Disabled) Invité (S-1-5-21-2137434348-4085527620-4071002930-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2137434348-4085527620-4071002930-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.1.6 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824311644}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Antidote 8 (HKLM-x32\...\{09AAAB09-6DBA-4DD9-9865-54597D3FBCA8}) (Version: 8.04.1237 - Druide informatique inc.) AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 6.8.0 - AOMEI International Network Limited.) Assistant de téléchargement (HKLM-x32\...\{92154A3C-9BB7-49D7-A571-4EB6373FA5AD}) (Version: 6.65.13 - Druide informatique inc.) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.) calibre (HKLM-x32\...\{54B7D91C-A982-420A-84E5-245DCD036C17}) (Version: 4.15.0 - Kovid Goyal) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 6.16 - Piriform) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd) Docs (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\5a84fc6633cf32fca7e8cbd3591a706f) (Version: 1.0 - Google\Chrome) Enregistrement utilisateur de Canon MG3200 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3200 series) (Version: - Canon Inc.‎) Feuilles de calcul (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\e9214df090c1201be0fa0a72f1412533) (Version: 1.0 - Google\Chrome) Free Cam 8 (HKLM-x32\...\{80366841-A296-46DC-B85E-8D7ABF09B10A}) (Version: 8.7.27129 - iSpring Solutions Inc.) GIMP 2.10.14 (HKLM\...\GIMP-2_is1) (Version: 2.10.14 - The GIMP Team) Gmail (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\76d597ed51e028a33f0cef30963b1a78) (Version: 1.0 - Google\Chrome) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 117.0.5938.150 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 82.0.1.0 - Google LLC) Google Drive (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\fdbe22999ff749529cd22756885b018c) (Version: 1.0 - Google\Chrome) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Internet Download Manager 6.36.7 (HKLM-x32\...\Internet Download Manager_is1) (Version: 6.36.7 - lrepacks.ru) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{949C0535-171C-480F-9CF4-D25C9E60FE88}) (Version: 4.8.03928 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 117.0.2045.60 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 117.0.2045.60 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.16827.20130 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28808 (HKLM-x32\...\{78079cc3-1f6e-47f6-b4d6-105f08b89409}) (Version: 14.26.28808.1 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28808 (HKLM-x32\...\{12410e80-cba2-4479-8539-12de3513ff53}) (Version: 14.26.28808.1 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28808 (HKLM\...\{31B12D0C-C856-4B64-A4FE-7E4C2F5BF8E4}) (Version: 14.26.28808 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28808 (HKLM\...\{EB5BE2A4-FB21-421C-9FA0-F7D7591B1B1F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.26.28808 (HKLM-x32\...\{205CA6C8-5FF7-4270-A856-0AD21508147F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.26.28808 (HKLM-x32\...\{4A336F95-FDA8-427B-8BFD-FB3001F1DE22}) (Version: 14.26.28808 - Microsoft Corporation) Hidden Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.57.1 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.6.2037.624 - Microsoft Corporation) Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation) MiniTool Partition Wizard Free 10.2.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 112.0.2 (x64 fr)) (Version: 112.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team) NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation) NVIDIA Pilote graphique 537.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 537.13 - NVIDIA Corporation) NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden Opera Stable 102.0.4880.78 (HKLM-x32\...\Opera 102.0.4880.78) (Version: 102.0.4880.78 - Opera Software) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge) PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr) Présentations (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\d75ffc50f527b9e59fc269f6c01d2b3d) (Version: 1.0 - Google\Chrome) Python Launcher (HKLM-x32\...\{4E5F47AD-2588-4BE3-9DC2-0F9CD283A3DF}) (Version: 3.7.6860.0 - Python Software Foundation) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games) Spotify (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Spotify) (Version: 1.1.88.612.gcc529952 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft) Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0003 - Druide informatique inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation) WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH) Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare) Wondershare Video Converter Ultimate(Build 10.3.1.181) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.3.1.181 - Wondershare Software) Yandex.Disk (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\YandexDisk2) (Version: 3.2.34.4962 - Yandex) YouTube (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\8dd9da51c724130eba8d2ec6aa8b279e) (Version: 1.0 - Google\Chrome) Packages: ========= Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-19] (Canon Inc.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-26] (Microsoft Corporation) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-13] (Microsoft Corporation) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-12-23] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6 [2023-09-22] (HP Inc.) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-07-20] (Instagram) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa [2023-09-26] (Apple Inc.) [Startup Task] Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_1880.6.164.0_x64__8xx8rvfyw5nnt [2023-05-25] (Meta) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-08-29] (NVIDIA Corp.) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.727.100_x64__8wekyb3d8bbwe [2023-08-06] (Microsoft Corporation) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-12] (Microsoft Studios) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{11C9DD7B-CCF5-4502-90A1-FEE8889976D5}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{18224999-F24B-43ee-B697-9427587FDC9C}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{63ADB0D1-6DA0-46A2-89D0-E0CE44536E32}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{75EF3512-D401-4172-BA0F-00E000DCBCE4}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{78CE3579-0D34-413C-88C7-FE2855271688}\localserver32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe (YANDEX LLC -> Yandex) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{847202AE-CDE0-469A-AF10-8798E02DED83}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{8EEE3CD5-1F70-4B63-B19D-A5F1457761DB}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{9CE04609-A360-4266-9937-9D799E8D2D5A}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation] CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{C5F6CDD1-FB7B-4971-A53F-4B00757F756B}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ YandexDisk1 SyncDone] -> {C5F6CDD1-FB7B-4971-A53F-4B00757F756B} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ YandexDisk2 SyncProgress] -> {75EF3512-D401-4172-BA0F-00E000DCBCE4} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ YandexDisk3 SyncDisabled] -> {8EEE3CD5-1F70-4B63-B19D-A5F1457761DB} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ YandexDisk4 SyncError] -> {9CE04609-A360-4266-9937-9D799E8D2D5A} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ YandexDisk5 SyncPart] -> {63ADB0D1-6DA0-46A2-89D0-E0CE44536E32} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => -> Pas de fichier ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => -> Pas de fichier ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-10-28] (Notepad++ -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\nvshext.dll [2023-08-16] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ContextMenuHandlers4_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Docs.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Feuilles de calcul.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Présentations.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ==================== Modules chargés (Avec liste blanche) ============= 2022-02-26 21:01 - 2021-06-22 15:41 - 000014336 _____ () [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\libamcbconsole.dll 2022-02-26 21:01 - 2015-05-21 15:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\vcomp.dll 2019-12-25 00:34 - 2012-03-28 19:01 - 000359936 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL 2020-01-31 00:04 - 2012-03-26 06:00 - 000392192 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMXLMB8.DLL 2020-04-18 07:50 - 2014-04-17 16:50 - 007470624 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes32\libLing_8.dll 2020-04-18 07:50 - 2014-04-17 16:50 - 009029152 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes64\libLing_8.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2019-12-24 23:42 - 2019-12-24 23:47 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\StartupFolder: => "System.exe" HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\Run: => "Lync" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{96D76A70-B137-447E-8E1C-8002B1825C6E}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{16CD13AE-31C4-48D1-8C85-DD84774AC5C6}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{C4A4558D-B89F-4FC7-828B-AC7F7912CC8C}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier FirewallRules: [{A39DFFEE-5059-43ED-8D2E-F034DCBF5575}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [{E5FF7D8E-EA9D-4DF6-AC2E-565256E24CBE}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [UDP Query User{E072E343-557E-4660-8EC8-6B27AD35044E}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{07AEBACB-E915-4821-848A-BAA6DA9C654F}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{C1FC0DAF-72C2-4015-94B4-EBEB860FDEFD}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{9973D9B4-943D-41F0-8D2C-F152E3F1CFFB}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{98F53B79-D3C3-445F-8763-86A0EF8D99C9}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{0487A8E7-8940-42C5-A872-8EF1E4907A1A}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{8498047C-9772-4006-8262-1D8032A6D66A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{25EC5CD7-EE5F-43A3-8959-D2BAD32D458A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{811705E9-9587-4A52-9989-7CDD1BAC3863}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{EA6DAA36-6EFB-4BE4-84BB-1EEF0CF8DABB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{9F404234-DDC5-4D32-8A32-DEB76BAE00D5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0214FFC5-3CAA-45B2-8991-0A42D1D2E991}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{B39AC625-CD4D-4A17-85A7-19122421858F}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red) FirewallRules: [{502E29B4-F2EB-41AC-AA53-F5D9990FE0F9}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red) FirewallRules: [UDP Query User{B4876DEF-D269-4E0C-A027-420A98017ECE}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [TCP Query User{51C82DE3-EFAB-4E25-9435-FABF09A2D81B}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{A4C0D35E-098E-407E-8E87-4AE377D350B2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{FC5D9AFB-BC2C-4B74-A7F9-E12F6B2AFD6F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{840AA6F9-19FF-4898-8475-FCE8FDB12F3C}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{CF163057-1239-4E6B-B582-995AF58DCECE}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4C2339C6-53EA-4CFC-9BCF-474A68140A41}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{1EE2FFE7-3D06-404D-AE75-094ADE4C3407}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{DCE13EFA-DFA4-43BF-9F21-0BDB52F9540C}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [{332D7C4A-BB99-4BD0-8523-A1FB411FC3CB}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [{D8047B56-A837-44E7-8D23-603018FB9C46}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{E0BB18BA-58B3-4C11-BF54-31E6FA12DD9D}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{F7207894-B6C1-48D0-B5BC-83D5D0060771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{8136D790-7C09-4870-B158-07B6102B4987}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{52BB189C-BCD3-423A-9032-63BB68CA9BBA}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{B03640AE-69DB-448A-971C-EC75DD1765B8}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{5AE577D0-E7C7-426A-B98C-D2BAF79CE13D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2EFC0645-B35C-44FB-A2AE-040C2712EB6A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{090304B0-A770-44D5-BA12-9475471E76E1}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{72FC2AB3-00FF-4857-BBD3-7D9D7CD9CC39}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{7BBA52EC-6031-4909-BD83-36655D200F7C}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{4AFA8DB8-446C-4090-9A18-1C9C53ADAEAC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{59614FC7-E46F-44E8-96AE-A2E5B7E811FC}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [{8BBCE4E8-5BC1-4F30-8C59-A46E37AFC2D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier FirewallRules: [{C782BB46-4D95-4FE8-83D7-B77369738B53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.91.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier FirewallRules: [{3935F173-3F7C-4159-ACA4-7338C7CB5582}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com) FirewallRules: [{1841DB74-471C-4274-ADF8-CA269C88AB13}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com) FirewallRules: [{4B2333E1-25B3-49E1-881D-67B0F6AB61EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{62FFE695-94AD-4F6E-947D-37A73E896BBA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{BF193023-74D9-4535-940B-1811D1F124AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{27FCEDF9-C656-44F8-9396-3157AA81B702}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{E8C8BE82-E518-4BD8-99F8-B730B9242603}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EA250C96-CB9A-46CF-B86D-FC8274577565}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B683A919-3733-420B-94D9-FF4471773E08}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0AF09C80-9836-44C2-A82D-2270DED2B359}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{1649CD8F-8226-44FF-AC92-972335B914AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{E02FFB91-4C4B-4F86-9C21-EDDFD54AC69D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{8569DBCC-E8BB-4691-8D8C-81100F3B3AAE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{6259FCA2-F2DB-421A-BB43-72B4494CCD79}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{17247157-DA0E-4B37-A5E0-43901B9B05C5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{DCB1D8B2-BE34-4C2D-AEA7-0B8E91F1A17C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{2CEC454C-CA7F-46A1-AAF5-D0A9DDCEF522}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{9F8B3481-7399-48DD-93E2-3B9F0D7EAE65}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{4310AC5E-1511-43FB-9577-55DB48AF4E70}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DF44A23A-C591-492B-A896-5A326F6B0046}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{189CCB2C-6887-4C25-927C-8AE13D2B87F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A45CF525-E7EE-40A6-A37F-032DE34F0615}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{12900B3B-1AE6-4B5D-9BD3-2B4CA0514245}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{173CD337-D15A-42DD-B9DE-0F46B2905A35}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.78\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{63B4E77D-3D60-4163-AF2F-BA092CCE7607}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= 12-10-2023 20:58:54 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/11/2023 10:38:53 PM) (Source: Wlclntfy) (EventID: 4005) (User: ) Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue. Error: (09/26/2023 09:41:43 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (09/26/2023 09:41:33 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {95c6a56f-b5df-4fb9-a6ff-914d4b7c4c1f} Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (09/17/2023 09:46:30 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (09/17/2023 09:46:22 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {7fbe5a1f-7602-4d70-8ccc-485dc4407e21} Error: (08/22/2023 11:35:55 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Erreurs système: ============= Error: (10/12/2023 09:10:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone. Error: (10/12/2023 09:03:15 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0xfffff8077fc062bb, 0xffffa8075dcaef78, 0xffffa8075dcae7b0). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 7a883824-0530-49d5-ba9f-5cbdb118620e. Error: (10/12/2023 08:58:32 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 21:43:25 le ‎26/‎09/‎2023 n’était pas prévu. Error: (10/12/2023 08:58:21 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225473Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (10/11/2023 10:33:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (10/11/2023 10:33:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service. Error: (09/26/2023 09:41:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (09/26/2023 09:41:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Steam Client Service s’est terminé de façon inattendue pour la 1ème fois. Windows Defender: ================ Date: 2023-08-16 22:20:19 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {B9C1F4C4-D9A7-46FA-9007-6C3050850325} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-08-13 22:52:33 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {D79660A4-7351-49B4-BD71-9AA9B8368EC5} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-08-07 23:30:30 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {6CB20CF9-99EC-434F-B0CB-32A4BEC05BDC} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-08-02 00:41:52 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {1C5AE122-D8A5-47BF-BA24-19018D168301} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-07-31 22:47:43 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {531293E6-15CC-4B77-9313-13574DB73A97} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0]: Date: 2023-07-17 23:51:43 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente. Veille de sécurité tentée : Actuelle Code d’erreur : 0x80501102 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Version de la veille de sécurité : 1.393.638.0;1.393.638.0 Version du moteur : 1.1.23060.1005 CodeIntegrity: =============== Date: 2023-10-12 20:58:45 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-08-29 23:36:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-08-13 23:24:01 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume5\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-08-07 23:29:40 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-06-18 23:00:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-06-08 00:48:37 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-05-15 23:30:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-05-12 00:20:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume5\Program Files\Google\Drive File Stream\74.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1.60 08/21/2019 Carte mère: Micro-Star International Co., Ltd. MAG Z390 TOMAHAWK (MS-7B18) Processeur: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz Pourcentage de mémoire utilisée: 46% Mémoire physique - RAM - totale: 16318.48 MB Mémoire physique - RAM - disponible: 8773.26 MB Mémoire virtuelle totale: 18750.48 MB Mémoire virtuelle disponible: 8819.38 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:222.94 GB) (Free:52.74 GB) (Model: KINGSTON SA400S37240G) NTFS Drive d: (Google Drive) (Fixed) (Total:100 GB) (Free:50.1 GB) (Model: ST1000DM010-2EP102) FAT32 Drive f: () (Fixed) (Total:931.51 GB) (Free:260.68 GB) (Model: ST1000DM010-2EP102) NTFS \\?\Volume{a38b6c2a-57a8-4860-99b7-18658bc9dba8}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS \\?\Volume{a341416d-e869-46a9-9fba-79b5487c0e3d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================