Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 05-11-2023 02 Exécuté par User (26-11-2023 11:46:43) Exécuté depuis C:\Users\User\Downloads Microsoft Windows 11 Pro Version 22H2 22621.2715 (X64) (2023-11-19 07:49:20) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrator (S-1-5-21-1539842451-3151662266-25731472-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1539842451-3151662266-25731472-503 - Limited - Disabled) Gast (S-1-5-21-1539842451-3151662266-25731472-501 - Limited - Disabled) User (S-1-5-21-1539842451-3151662266-25731472-1000 - Administrator - Enabled) => C:\Users\User WDAGUtilityAccount (S-1-5-21-1539842451-3151662266-25731472-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) @BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.23.0718.1 - GIGABYTE) Hidden @BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.23.0718.1 - GIGABYTE) µTorrent (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\uTorrent) (Version: 3.6.0.46922 - BitTorrent Inc.) 7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov) 7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov) AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.11.2.2659 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.11.2.2659 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.11.1 - Advanced Micro Devices, Inc.) APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.23.1106.1 - Gigabyte) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.23.1106.1 - Gigabyte) Application Verifier x64 External Package (DesktopEditions) (HKLM\...\{BA9EBE5B-CA3F-21B4-486D-A9B00754150A}) (Version: 10.1.22621.1778 - Microsoft) Hidden Application Verifier x64 External Package (OnecoreUAP) (HKLM\...\{C6C99077-7B71-0E55-3B00-2F2A4E3F85E4}) (Version: 10.1.22621.1778 - Microsoft) Hidden ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) BeamNG Drive (HKLM-x32\...\BeamNG Drive_is1) (Version: 0.0.0.0 - ) Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden Brawlhalla (HKLM-x32\...\Uplay Install 16382) (Version: - Ubisoft) CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform) CPUID CPU-Z 2.07 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.07 - CPUID, Inc.) Discord (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\Discord) (Version: 1.0.9016 - Discord Inc.) Docs (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\cb556ac90957229906dbdc8059cbf9bc) (Version: 1.0 - Google\Chrome) EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.59.0.5572 - Electronic Arts) Hidden EA app (HKLM-x32\...\{ae8a47ff-bde1-4cd1-8d7f-0392b2ebc7cf}) (Version: 13.59.0.5572 - Electronic Arts) EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.23.0109 - GIGABYTE) Hidden EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.23.0109 - GIGABYTE) EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.23.0109 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.23.0109 - GIGABYTE) ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_DRAM_RGB_AIO (HKLM\...\{40514BA6-1FC2-4BBD-84A2-504634A97196}) (Version: 1.0.4.16 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{ca38f41e-a37c-41b2-82e3-28b215743448}) (Version: 1.0.4.16 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{6b617af3-c8f4-45a8-bf47-b32ffb4da1cc}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden ENE_External_Device_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.10.4 - ENE Tech) Hidden ENE_External_Device_HAL (HKLM-x32\...\{38581c7d-8a6c-4129-9046-8f5df621478b}) (Version: 1.0.10.4 - ENE Tech) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM-x32\...\{ec10ac91-2e61-460a-b493-33f794a07682}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{E8FDD9E1-BEB2-4E7F-A179-22962E4C377A}) (Version: 1.3.82.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.) Feuilles de calcul (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\70b838d9854e9218f6fe030bf7faf9fa) (Version: 1.0 - Google\Chrome) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Fortnite Tracker (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\Overwolf_lchehejhdkhdkfledgjmchiblkmimnhfoeacjcni) (Version: 3.8.2 - Overwolf app) Futuremark SystemInfo (HKLM-x32\...\{D808F32F-09EA-4998-95F2-1C5C8A02C2D6}) (Version: 5.68.1202.0 - Futuremark) GitHub Desktop (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\GitHubDesktop) (Version: 3.3.3 - GitHub, Inc.) Glorious Model O Software (HKLM-x32\...\{0969D386-B5B4-41BD-98E3-4A1A7D32CB97}_is1) (Version: 1.0.9 - Glorious PC Gaming Race LLC.) Gmail (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\e3ba3413bf7258e21468ac1980a66ea7) (Version: 1.0 - Google\Chrome) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.71.2 - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 119.0.6045.160 - Google LLC) Google Drive (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\43b7ab841d95438db7131cf3fb7f5e7a) (Version: 1.0 - Google\Chrome) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden GPT4All (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\{350abb70-d102-4f24-9e48-5e11e9ada78d}) (Version: 2.4.19 - Nomic, Inc.) GridinSoft Anti-Malware (HKLM\...\GridinSoft Anti-Malware) (Version: 4.2.98 - Gridinsoft LLC) GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.19.0624.1 - GIGABYTE) Kits Configuration Installer (HKLM-x32\...\{08C5C88B-AB42-CE32-959B-9D9185692A0D}) (Version: 10.1.22621.1778 - Microsoft) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 119.0.2151.72 - Microsoft Corporation) Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 119.0.2151.72 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\OneDriveSetup.exe) (Version: 23.226.1031.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Debug Runtime - 14.36.32532 (HKLM\...\{44B8E53D-68C7-4FCD-A0D7-753CA2C2EF94}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Debug Runtime - 14.36.32532 (HKLM-x32\...\{B8E2B857-228D-4770-83BD-BACCFF4F7738}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual Studio Code (User) (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.82.3 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.7.2181.36443 - Microsoft Corporation) Microsoft Visual Studio Setup Configuration (HKLM-x32\...\{6AC5612A-D067-44B9-9C8E-2C1B3473B429}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{E281F6E2-136B-4AF0-895B-253279711697}) (Version: 3.7.2182.35401 - Microsoft Corporation) Hidden Miniconda3 py311_23.5.2-0 (Python 3.11.4 64-bit) (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\Miniconda3 py311_23.5.2-0 (Python 3.11.4 64-bit)) (Version: py311_23.5.2-0 - Anaconda, Inc.) Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 120.0 (x64 en-US)) (Version: 120.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 117.0 - Mozilla) MSI Development Tools (HKLM-x32\...\{6588C8DD-86E9-BA17-9AC0-5970EE2A9785}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden NiceHash Miner 3.1.0.9 (only current user) (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\8abad8e2-b957-48ed-92ba-4339c2a40e78) (Version: 3.1.0.9 - H-BIT, d.o.o.) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project) Opera GX Stable 104.0.4944.74 (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\Opera GX 104.0.4944.74) (Version: 104.0.4944.74 - Opera Software) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.236.0.11 - Overwolf Ltd.) Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.1 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{07236f40-ec25-4646-8cb6-b6aaf1597324}) (Version: 1.1.0.1 - Patriot Memory) Hidden Présentations (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\e7320ba5fddd261b4ae181edaa54a71e) (Version: 1.0 - Google\Chrome) Python 3.12.0 (64-bit) (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\{cf9c4d97-48a7-4a27-b9fc-91b88a803c40}) (Version: 3.12.150.0 - Python Software Foundation) Python 3.12.0 Add to Path (64-bit) (HKLM\...\{380DEEDA-4227-4F0E-9F7C-34C75649DE59}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Core Interpreter (64-bit) (HKLM\...\{6B58F6F9-656A-4CC4-8BAB-22177BFFA45F}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Development Libraries (64-bit) (HKLM\...\{225BAA2C-BDCA-4D63-9D72-D92CE5E2421D}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Documentation (64-bit) (HKLM\...\{5DF0B8D8-4E7F-43EB-AD16-30FFA931A905}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Executables (64-bit) (HKLM\...\{575EC8EB-A481-4CF1-BAB0-3C1DBD2E50A7}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 pip Bootstrap (64-bit) (HKLM\...\{24B8988D-E785-4124-BF77-1DC6A3E62050}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Standard Library (64-bit) (HKLM\...\{14BBD330-AA3F-4F7A-8A39-DFB28AECFA82}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Tcl/Tk Support (64-bit) (HKLM\...\{6EAF677E-4EE8-4A22-9781-9131C5298D26}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.12.0 Test Suite (64-bit) (HKLM\...\{0A9B38A7-D393-44A5-A94E-9FEC927DC39C}) (Version: 3.12.150.0 - Python Software Foundation) Hidden Python 3.8.8 (64-bit) (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\{ef6306ce-2a12-4d59-887e-ebf00b9e4ab5}) (Version: 3.8.8150.0 - Python Software Foundation) Python 3.8.8 Add to Path (64-bit) (HKLM\...\{FA2F55FF-283B-4F28-BBB8-000F4EBF0836}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Core Interpreter (64-bit) (HKLM\...\{9F4C7FA1-6EBC-4148-AFA5-46732F23D8A3}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Development Libraries (64-bit) (HKLM\...\{54D532CF-48EC-4D35-BEB4-FF7379D4DEDE}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Documentation (64-bit) (HKLM\...\{587B63A8-B810-4B37-AE71-C21CC57AB496}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Executables (64-bit) (HKLM\...\{EEE0D56F-6163-4D51-A174-E219A0D34A2C}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 pip Bootstrap (64-bit) (HKLM\...\{648F3996-8541-4F8C-81A2-BCD4EAB54C5A}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Standard Library (64-bit) (HKLM\...\{4306EC0C-24E8-48F7-9CF0-0410D283D691}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Tcl/Tk Support (64-bit) (HKLM\...\{90107CBA-5485-4E2E-8A40-6C9F73D4B24B}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Test Suite (64-bit) (HKLM\...\{722AB357-E8E0-4090-8BDB-C02BEF288699}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python 3.8.8 Utility Scripts (64-bit) (HKLM\...\{BDF99227-35A8-4E94-91BA-91F6A90F4611}) (Version: 3.8.8150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{3182A195-B671-44A8-B0C7-7876B916BA5A}) (Version: 3.12.150.0 - Python Software Foundation) REDlauncher (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - CD Projekt RED) Roblox Player (HKLM-x32\...\roblox-player-admin) (Version: - Roblox Corporation) Roblox Player for User (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\roblox-player) (Version: - Roblox Corporation) RSI Launcher 1.6.8 (HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23) (Version: 1.6.8 - Cloud Imperium Games) RyzenMasterSDK (HKLM\...\{4EA63EC8-7CDF-4D13-BA48-4F048E0598DD}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden SDK ARM Additions (HKLM-x32\...\{7BE28BCD-F5C4-709B-7152-56D9CBA82A80}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{400003B3-6DEC-963F-86D9-D0C39AF12D89}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.23.0109 - GIGABYTE) Hidden SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.23.0109 - GIGABYTE) Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.21.0326.1 - GIGABYTE) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 146.1.10956 - Ubisoft) UE Prerequisites (x64) (HKLM\...\{E171B21A-DA58-432D-A74B-D13B204BA477}) (Version: 1.0.16.0 - Epic Games, Inc.) Hidden UE Prerequisites (x64) (HKLM-x32\...\{2c4a7cc2-986f-41a8-a4d3-86c8177f87cf}) (Version: 1.0.18.0 - Epic Games, Inc.) Hidden UE Prerequisites (x64) (HKLM-x32\...\{aad8a4b2-74da-409d-abb6-79a299008692}) (Version: 1.0.16.0 - Epic Games, Inc.) Hidden Universal CRT Extension SDK (HKLM-x32\...\{640AA136-3DC4-1E64-E317-0E5A58658D98}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{A29C2470-79D9-5644-B949-05F9593D09D5}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0BA20A07-3F89-098A-CA1E-669C59DCCC82}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{56745E0F-0674-D1D9-03CC-ABBC176F265B}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{22FCC062-E9CA-536E-BEC3-F8297BD57FEB}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{2774FBBA-82BB-2BBA-905E-493262010D5C}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{A9A1C675-4D92-41BF-9E4F-8A0CF875645F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Visual Studio Build Tools 2022 (2) (HKLM-x32\...\62889d33) (Version: 17.7.6 - Microsoft Corporation) Visual Studio Community 2022 (HKLM-x32\...\1b6672dd) (Version: 17.7.6 - Microsoft Corporation) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.43.2.0 - Voicemod S.L.) VS Script Debugging Common (HKLM\...\{D56DC014-C4C1-4330-B32B-D9785DAE7BCB}) (Version: 17.0.125.0 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{3E18B507-02EA-49EB-8B7A-D2D056822EDB}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_communitysharedmsi (HKLM-x32\...\{E3B95A13-C589-4E09-A331-5843B7D2BE17}) (Version: 17.7.33906 - Microsoft Corporation) Hidden vs_communityx64msi (HKLM\...\{25142701-E789-4B30-BE5D-1ABBC6A73C58}) (Version: 17.7.33906 - Microsoft Corporation) Hidden vs_CoreEditorFonts (HKLM-x32\...\{1851460E-0E63-4117-B5BA-25A2F045801B}) (Version: 17.7.40001 - Microsoft Corporation) vs_filehandler_amd64 (HKLM-x32\...\{437AA1D3-B32C-48B8-B990-DFC40B4377A5}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{7ACDEE02-0D96-45EE-BD1F-04B02E8BA9DF}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{7D10063F-E04A-445A-A26C-3A9DD0F1A9D4}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_githubprotocolhandlermsi (HKLM-x32\...\{91BC038F-2A3C-4104-B97B-FC591FFAF908}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{6690B7B2-73F2-4548-8425-B3D9BDD947E8}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellinteropsharedmsi (HKLM-x32\...\{F83B6F23-E63B-4C23-AE0F-CB77CAC4670B}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{DB26CF0E-EC82-4036-B77E-4C9B06D719D8}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{A6ACFC6C-ACE9-4C89-8E15-D6ED0B247F9C}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellsharedmsi (HKLM-x32\...\{C86459CD-1FF9-445C-AFEE-C06CFD8E5E9E}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_minshellx64msi (HKLM\...\{CC6B3835-25A7-401A-88B2-F6766E04DE67}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsi (HKLM-x32\...\{11E5CECF-CE4F-4C38-95A0-27D601417219}) (Version: 17.7.33905 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsires (HKLM-x32\...\{77006E20-5039-421E-95E3-0212D9ED10F4}) (Version: 17.7.33905 - Microsoft Corporation) Hidden Wallpaper Engine 2.1.32 (HKLM\...\Wallpaper Engine_is1) (Version: 2.1.32 - Wallpaper Engine Team) WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WeMod (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\WeMod) (Version: 8.11.7 - WeMod) WinAppDeploy (HKLM-x32\...\{310841C5-1EAE-7693-ADCB-DD3F2CA16939}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows App Certification Kit Native Components (HKLM\...\{3C39ADF8-779F-9BBA-A032-EBCB2E618D88}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows App Certification Kit SupportedApiList x86 (HKLM-x32\...\{983A0FB8-8F3E-6CDA-505D-E650FEEFF907}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows App Certification Kit x64 (HKLM-x32\...\{84F44941-C1F3-A926-B1F6-F4D4F5312700}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows App Certification Kit x64 (OnecoreUAP) (HKLM-x32\...\{6B177C76-BD5E-1C9D-B18B-3860057D9186}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Desktop Extension SDK (HKLM-x32\...\{91463BCA-7E2D-010F-E689-6D4FDC4884FD}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Desktop Extension SDK Contracts (HKLM-x32\...\{50B4CEAC-AE60-974A-85BE-307E43E0AAB2}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows IoT Extension SDK (HKLM-x32\...\{9B611744-77A6-58BF-B043-A75948644418}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows IoT Extension SDK Contracts (HKLM-x32\...\{E8047A08-108F-3B12-CA3D-2BB7A69BEB7D}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Mobile Extension SDK (HKLM-x32\...\{236F8426-0EDC-8E92-F9DE-3F21AFDE576B}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Mobile Extension SDK Contracts (HKLM-x32\...\{14C45195-F2B9-8C5E-0974-4A8ACE2770DA}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK (HKLM-x32\...\{37EDECAB-0393-12BD-23BF-BB35B2E44910}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{342873C0-1C08-4A99-82B6-50D1D2043E5A}) (Version: 10.1.0.0 - Microsoft Corporation) Windows SDK ARM Desktop Tools (HKLM-x32\...\{0994A06F-313E-DD5F-B75A-58DCB28F8455}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Headers arm (HKLM-x32\...\{25CABEFE-6666-3AED-0960-24FA8E6329D4}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Headers arm64 (HKLM-x32\...\{18835C47-DC12-7D82-1466-0E2A8D43F6DA}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Headers x64 (HKLM-x32\...\{8004B497-910B-A5FE-2CEA-261220EA03FB}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Headers x86 (HKLM-x32\...\{19CBC7DA-8683-39C0-BF1E-AE50161DECCF}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Libs arm (HKLM-x32\...\{5520C5D7-40CA-9018-7E5E-7D24FEADBF06}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Libs arm64 (HKLM-x32\...\{E1D05688-46C6-7802-6B8A-A80452EBD536}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Libs x64 (HKLM-x32\...\{249C17D8-6368-5E32-0750-8B63EAA6DB27}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Libs x86 (HKLM-x32\...\{E92BF341-5C12-4D71-2EB9-DEF3301D975A}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Tools arm64 (HKLM-x32\...\{CE0988DF-C585-2975-C86C-043A10183B43}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Tools x64 (HKLM-x32\...\{3F039884-4CF9-3792-2E59-DFC613A7B787}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Desktop Tools x86 (HKLM-x32\...\{B81A53BF-1CC8-05CA-CE18-73B5795CA40A}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK DirectX x64 Remote (HKLM\...\{E900C16E-16BC-3334-C580-C397ADF00392}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK DirectX x86 Remote (HKLM-x32\...\{7722657D-1A18-AA7C-6C96-D0F6EBB9D569}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK EULA (HKLM-x32\...\{2A8763AF-718C-F79C-1B72-40A40DB7D747}) (Version: 10.1.22621.1778 - Microsoft Corporations) Hidden Windows SDK Facade Windows WinMD Versioned (HKLM-x32\...\{87547313-9E8E-2905-B204-DE1F14247A0A}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps (HKLM-x32\...\{B9068540-804E-5916-3AC5-6B8C8A4A29C2}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Contracts (HKLM-x32\...\{24D631F1-E024-CDED-9826-6FDE7B302F1B}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps DirectX x86 Remote (HKLM-x32\...\{8FB84296-2AF4-0C83-9119-A0C87121D23C}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Headers (HKLM-x32\...\{63C391A4-5D95-C0CE-AE64-DD6116633AA6}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Libs (HKLM-x32\...\{27E80A91-CAE2-7EE1-3976-9147E470DAE4}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Metadata (HKLM-x32\...\{8B66D078-B5E0-DF10-9D1D-23107F6377BB}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Apps Tools (HKLM-x32\...\{1ABAD1A7-0E0B-1151-F8A9-B0E0361D3911}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK for Windows Store Managed Apps Libs (HKLM-x32\...\{DF5D9024-4E78-3241-11AD-8CEDA96E8161}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Modern Non-Versioned Developer Tools (HKLM-x32\...\{266B39D5-0BA1-1B07-C88D-CE6E2020DA2F}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Modern Versioned Developer Tools (HKLM-x32\...\{E519CE76-5D10-DF0F-E8D1-E6F904C6A1B0}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Redistributables (HKLM-x32\...\{1B8B240B-64B3-7BB0-28EA-B4FD3E014EE9}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows SDK Signing Tools (HKLM-x32\...\{1627AF2C-A038-4515-2E99-79DB644304F9}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Software Development Kit - Windows 10.0.22621.1778 (HKLM-x32\...\{d7f51c79-38df-4c6f-be17-0fcce28bc257}) (Version: 10.1.22621.1778 - Microsoft Corporation) Windows Team Extension SDK (HKLM-x32\...\{31EC808C-5E4A-7598-2D10-F4DC5AACF712}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Windows Team Extension SDK Contracts (HKLM-x32\...\{B2FD09CB-D8C8-0740-4C4F-E857316106DB}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRAR 6.23 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{D320C576-1179-C3CF-3366-499E70687CBC}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{EF6A42E0-4415-8A2A-0CA5-5D63B04C2B61}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{D4E07266-9BA3-A41B-4534-A7C2E9A37552}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{BBF83174-085D-AB2A-521F-43B0ECC090E4}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{3E5645DA-FC25-A1B6-4B51-DC709D49C0A4}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{432C3C3F-F542-0F19-5B4E-F7D26CF0E4A6}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{07FD1393-AF25-3DE9-F7B3-1480ADEC9455}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{48AC78E4-28A1-A892-7D52-880A96BC8319}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0267F209-4CB6-3E80-6E7D-98756838E8F5}) (Version: 10.1.22621.1778 - Microsoft Corporation) Hidden Xmind 23.9.11172 (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\fbd30ee5-8150-549e-9aed-fd9d444364fb) (Version: 23.9.11172 - XMIND LTD.) YouTube (HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\7281aa95a1372a6705c996759cd85ce3) (Version: 1.0 - Google\Chrome) Packages: ========= AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2023-11-16] (Advanced Micro Devices Inc.) Destiny 2 (PC) -> C:\Program Files\WindowsApps\Bungie.Destiny2PCbasegame_0.1.54698.0_x64__8xb1a0vv8ay84 [2023-11-01] () Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-11-19] (Microsoft Corporation) MicrosoftWindows.Client.FileExp -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-11-19] (Microsoft Corporation) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.0.0.0_neutral__8wekyb3d8bbwe [2023-11-19] (Microsoft Corporation) Power Automate -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.0.0.0_x64__8wekyb3d8bbwe [2023-11-19] (Microsoft Corporation) WinRAR -> C:\Program Files\WinRAR [2023-09-08] (win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1539842451-3151662266-25731472-1000_Classes\CLSID\{89b2b650-c4dd-d68b-46e7-3176f1973c8b}\localserver32 -> C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) CustomCLSID: HKU\S-1-5-21-1539842451-3151662266-25731472-1000_Classes\CLSID\{95BD08AA-7509-43D4-9B5E-D89911EB07C9}\InprocServer32 -> C:\Users\User\AppData\Local\Programs\Xmind\resources\app.asar.unpacked\static\native\XMindShellExt.dll () [Fichier non signé] ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [Gridinsoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2023-11-22] (GRIDINSOFT, TOV -> Gridinsoft LLC) ContextMenuHandlers2: [Gridinsoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2023-11-22] (GRIDINSOFT, TOV -> Gridinsoft LLC) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [Gridinsoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2023-11-22] (GRIDINSOFT, TOV -> Gridinsoft LLC) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [Gridinsoft Anti-Malware] -> {F77F27A6-89F3-471A-AFA8-3B280940A10C} => C:\Program Files\GridinSoft Anti-Malware\shellext.dll [2023-11-22] (GRIDINSOFT, TOV -> Gridinsoft LLC) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Miniconda3 (64-bit)\Anaconda Prompt (miniconda3).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" C:\Users\User\miniconda3\Scripts\activate.bat C:\Users\User\miniconda3 ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Docs.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Feuilles de calcul.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Présentations.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ==================== Modules chargés (Avec liste blanche) ============= 2023-11-03 19:52 - 2023-11-03 19:52 - 001934336 _____ () [Fichier non signé] C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll 2022-08-24 11:45 - 2022-08-24 11:45 - 000242176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\Gigabyte\AppCenter\yccV3.dll 2021-11-05 16:07 - 2021-11-05 16:07 - 000236544 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\yccV3.dll 2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\Gigabyte\AppCenter\osvi.dll 2021-06-22 14:45 - 2021-06-22 14:45 - 009127424 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\desktop.ini:CachedTiles [8990] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7784] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\WINDOWS\system32\mscoree.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation) Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\WINDOWS\system32\mscoree.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1539842451-3151662266-25731472-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\neuilllee.png DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "GogGalaxy" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Opera Stable" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Opera GX Stable" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "Voicemod" HKU\S-1-5-21-1539842451-3151662266-25731472-1000\...\StartupApproved\Run: => "ut" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{B4824E24-571D-430B-9183-C52C5B7BD4BB}] => (Allow) LPort=9009 FirewallRules: [{BE0394E4-F68A-4445-9E2F-15B0D0E1B754}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{BB98C3E0-46AC-461C-9E5B-B2BBA5766D69}] => (Allow) LPort=9009 FirewallRules: [{DC5C0E6F-177D-47E5-9547-048F71B6C16D}] => (Allow) LPort=9009 FirewallRules: [{4613115E-E586-4F95-9174-2C6394210877}] => (Allow) LPort=9009 FirewallRules: [{7B06DD06-A6F3-4CFA-8569-1773BA5AC23E}] => (Allow) LPort=9009 FirewallRules: [{436DB69E-4DDF-46BF-B86B-81AF56B05BD0}] => (Allow) LPort=9009 FirewallRules: [{E378F4A8-D693-45D4-B9A4-30A90888BFFD}] => (Allow) C:\Program Files (x86)\Overwolf\0.236.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{1ED54BAE-0228-47B0-89FE-B88A8354AF22}] => (Allow) C:\Program Files (x86)\Overwolf\0.236.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{DEEAC3B1-AFAD-4B26-8BA2-4B7DF6610EBE}] => (Block) C:\Program Files (x86)\Overwolf\0.234.0.8\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{9EE379E3-776A-4327-A3D7-A8F2D13F95B1}] => (Block) C:\Program Files (x86)\Overwolf\0.234.0.8\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{E0A68505-6174-461A-B8AC-374738C7F084}] => (Allow) C:\Program Files (x86)\Overwolf\0.234.0.8\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{7808620E-D629-4515-9785-8982DA132257}] => (Allow) C:\Program Files (x86)\Overwolf\0.234.0.8\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{D105F1FB-C115-4B61-A646-98E7178E18AA}] => (Allow) LPort=9009 FirewallRules: [{6F6ABD0A-0619-49D7-9097-B382D80ABCBB}] => (Allow) LPort=9009 FirewallRules: [{EF68C573-366B-480D-A631-2CD6149CF42F}] => (Allow) LPort=9009 FirewallRules: [{23AB2794-D1E6-4865-AEFD-D1E50DAA12F3}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{E900E0B0-4F75-408A-8262-67451490E5D7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{5E12B53D-9FE2-499C-9191-76CC66D03587}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C0DF5C46-7CEB-4352-A84E-FBA484F36EB4}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{38A37B05-CF6E-46DB-884E-108D9FACCDC2}] => (Allow) C:\Users\User\AppData\Roaming\utorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{9E716056-3223-49B6-8447-6715D1B5F526}] => (Allow) C:\Users\User\AppData\Roaming\utorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{80A8C4F3-3968-4513-844A-83DE032AA3AE}] => (Allow) LPort=9009 FirewallRules: [{24AE8547-77E2-4CC7-BD30-124F5C39C359}] => (Allow) LPort=9009 FirewallRules: [{E79405DC-BF72-47ED-A595-D414ACE15688}] => (Allow) LPort=9009 FirewallRules: [{FB50606F-ABA2-4106-8A7D-6CB4EE1863A6}] => (Allow) LPort=9009 FirewallRules: [{6350575D-AB22-4C42-AFAA-FAE567BC4CAD}] => (Allow) LPort=9009 FirewallRules: [{0882136E-EF33-49CF-A19B-1B2C3D730715}] => (Allow) LPort=9009 FirewallRules: [{91A3B2FC-E482-4FA5-8976-6F87E71AC75D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games) FirewallRules: [{52AA75F1-B0CA-49B5-BFB9-A5DA8D705BCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games) FirewallRules: [{37E7DECE-5FBF-42B9-85FC-EE2F0C0CAC70}] => (Allow) LPort=9009 FirewallRules: [{59A8FC08-12C1-4C2B-817B-1A2E3D982BBD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games) FirewallRules: [{1E1061A5-2CB3-4759-A72B-0A9D67598C64}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Brawlhalla\Brawlhalla.exe (UBISOFT ENTERTAINMENT INC. -> Blue Mammoth Games) FirewallRules: [{1D755660-5AFC-41A9-8D4D-216EB9B8B632}] => (Allow) LPort=9009 FirewallRules: [{1941162A-569D-4F67-AFF3-831CA616A258}] => (Allow) LPort=9009 FirewallRules: [{6D20CDDD-E882-4602-B68C-4B31941ED69B}] => (Allow) LPort=9009 FirewallRules: [{DE68B759-C4C3-4FD6-B344-E362A1909D19}] => (Allow) LPort=9009 FirewallRules: [{A02128DA-9A4D-4F78-973C-A7D5461C4C73}] => (Allow) LPort=9009 FirewallRules: [UDP Query User{01B08569-C851-4854-B49F-47FF69EA6266}C:\users\user\downloads\ark.survival.ascended\ark.survival.ascended\ark survival ascended\shootergame\binaries\win64\arkascended.exe] => (Allow) C:\users\user\downloads\ark.survival.ascended\ark.survival.ascended\ark survival ascended\shootergame\binaries\win64\arkascended.exe => Pas de fichier FirewallRules: [TCP Query User{C53AF984-4E62-43CF-BFD3-2DE6643DEC76}C:\users\user\downloads\ark.survival.ascended\ark.survival.ascended\ark survival ascended\shootergame\binaries\win64\arkascended.exe] => (Allow) C:\users\user\downloads\ark.survival.ascended\ark.survival.ascended\ark survival ascended\shootergame\binaries\win64\arkascended.exe => Pas de fichier FirewallRules: [{52D99CD9-3FD0-4B7E-BF4D-667CFC1DC99A}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{EA6DBA83-DB59-4E8D-9B6C-E1798A8234CE}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{C2656F12-0927-419F-997F-46EA3ACDF406}] => (Allow) LPort=9009 FirewallRules: [{1679A7D6-7810-436F-AB12-E79BA363088F}] => (Allow) LPort=9009 FirewallRules: [{D4745927-F61C-4939-8F44-2D693CCFDE09}] => (Allow) LPort=9009 FirewallRules: [{3AC8E55B-315F-4050-ADCE-BC610D6633A0}] => (Allow) C:\XboxGames\Destiny 2 (PC)\Content\destiny2.exe (Accès refusé) [Fichier non signé] FirewallRules: [{116209B9-345A-4502-8D53-EADB5180978A}] => (Allow) C:\XboxGames\Destiny 2 (PC)\Content\destiny2.exe (Accès refusé) [Fichier non signé] FirewallRules: [{CDBC32A7-37BA-49F4-9C14-FEA55078DBBB}] => (Allow) LPort=9009 FirewallRules: [{31A73BBC-9E21-4E61-B1DC-879E7D4A2CD7}] => (Allow) LPort=9009 FirewallRules: [UDP Query User{A924BB44-1F39-4E5D-8DA9-BFEE3201AC56}C:\users\user\documents\unreal projects\lyrastartergame\saved\stagedbuilds\windows\lyra\binaries\win64\lyragame.exe] => (Allow) C:\users\user\documents\unreal projects\lyrastartergame\saved\stagedbuilds\windows\lyra\binaries\win64\lyragame.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{806B43EA-2C3A-4059-9C07-6F80B82DFBEA}C:\users\user\documents\unreal projects\lyrastartergame\saved\stagedbuilds\windows\lyra\binaries\win64\lyragame.exe] => (Allow) C:\users\user\documents\unreal projects\lyrastartergame\saved\stagedbuilds\windows\lyra\binaries\win64\lyragame.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{F56773A7-4FB4-4078-ADE2-C3368F9C2966}] => (Allow) LPort=9009 FirewallRules: [UDP Query User{30D29384-5823-4AEA-AFEE-C426484F603C}C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor-cmd.exe] => (Allow) C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor-cmd.exe FirewallRules: [TCP Query User{74E8B14D-41BA-4079-96F1-BC5F4F677236}C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor-cmd.exe] => (Allow) C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor-cmd.exe FirewallRules: [{E146B518-6D45-4823-8E03-9CA07EBA9EFB}] => (Allow) LPort=9009 FirewallRules: [{0FEE798C-5268-494E-8664-8041C4E0AD78}] => (Allow) LPort=9009 FirewallRules: [{C34D70C2-9B1E-4DAB-9D84-DE9277769BC4}] => (Allow) LPort=9009 FirewallRules: [{90835124-C950-48D9-9FBC-926793251F70}] => (Allow) LPort=9009 FirewallRules: [{F3D478E8-4F83-4EA5-948A-020F6F410055}] => (Allow) LPort=9009 FirewallRules: [{1656ECFD-BB52-4636-9B7B-22BA08B0720F}] => (Allow) LPort=9009 FirewallRules: [UDP Query User{54517F75-5ED1-4926-80C9-6F5DD853313D}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{DFEF83C9-82DA-4B26-A613-D1B5BE851415}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{03231DD1-FD08-4D9B-8197-DE927DF32469}] => (Allow) LPort=9009 FirewallRules: [UDP Query User{6D5BD10F-D35A-47A7-BD32-138653A51A85}C:\program files\epic games\ue_5.3\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.3\engine\binaries\win64\unrealeditor.exe => Pas de fichier FirewallRules: [TCP Query User{F3DB9E09-B16B-4B5C-992A-B664FE82A0FA}C:\program files\epic games\ue_5.3\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.3\engine\binaries\win64\unrealeditor.exe => Pas de fichier FirewallRules: [UDP Query User{E3E86F2B-8709-409E-A8CF-CA222702E82C}C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\00010011\unrealtraceserver.exe] => (Allow) C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\00010011\unrealtraceserver.exe (Epic Games Inc. -> Epic Games) FirewallRules: [TCP Query User{30E6A670-3248-4DDA-8E41-6E8A5BD6C808}C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\00010011\unrealtraceserver.exe] => (Allow) C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\00010011\unrealtraceserver.exe (Epic Games Inc. -> Epic Games) FirewallRules: [UDP Query User{FB794AA5-6E2E-4E50-9F97-1BE476237C48}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Pas de fichier FirewallRules: [TCP Query User{880A94AD-CE1A-424E-9E94-68D037B2DACB}C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\gog galaxy\games\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Pas de fichier FirewallRules: [UDP Query User{E4CAB511-3EC6-4D64-B5F5-A7731EA82915}C:\games\beamng drive\bin64\beamng.drive.x64.exe] => (Allow) C:\games\beamng drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH) FirewallRules: [TCP Query User{5A052FA0-4454-4865-BBA0-C1FD28F11ED2}C:\games\beamng drive\bin64\beamng.drive.x64.exe] => (Allow) C:\games\beamng drive\bin64\beamng.drive.x64.exe (BeamNG GmbH -> BeamNG GmbH) FirewallRules: [UDP Query User{145E981E-C466-417E-95B4-181BFF87F8D4}C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{4E0A34FD-2C54-41DF-89A7-A344D8086F87}C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor.exe] => (Allow) C:\program files\epic games\ue_5.2\engine\binaries\win64\unrealeditor.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{592EAFE2-A635-4561-81AB-97D38F00AB6E}C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\0001000d\unrealtraceserver.exe] => (Allow) C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\0001000d\unrealtraceserver.exe (Epic Games Inc. -> Epic Games) FirewallRules: [TCP Query User{905486E4-88ED-41C1-92C1-BED8E6B7C85C}C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\0001000d\unrealtraceserver.exe] => (Allow) C:\users\user\appdata\local\unrealengine\common\unrealtrace\bin\0001000d\unrealtraceserver.exe (Epic Games Inc. -> Epic Games) FirewallRules: [{312633F7-18E2-465A-91CF-368B3192A251}] => (Allow) LPort=9009 FirewallRules: [{73720D0C-CD05-43DD-A272-A2844760797C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{A7378D43-FFEF-46C1-87BF-6C1B78406A54}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C7D34E47-7E06-4B7D-9466-7588CAA91CFC}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{8165B171-3ECF-4688-8CDA-07E0B9EC76E9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{CB9EAC61-FD00-4E5D-B2CC-E07A3E52C456}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{245F940B-2E1E-4FB4-B96C-0E460866633D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{D536495E-8004-4CD5-872F-7967970F167F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{98E3E44F-52DC-4267-BA87-62E86D604FF6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{66D5D04D-A4EC-4F37-B9C9-C224C772084D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{9971DD0A-2D0A-476C-AA02-285769F21236}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{6A333D0B-5F6B-4A7E-8ABC-3E358534E53E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{9F0CE870-F335-43C8-990C-B43FCF1200F3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{025F7632-DEB1-4D2C-8C05-F57DF1EA1CB0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{E31A7050-309A-4E64-BF6A-FAA2EF2045D7}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{F97DDE63-7101-4097-B85F-C40068E0C3A6}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{1CD00BD0-AD1B-4D59-B94E-2F68621E354C}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{B66C0DE9-A673-45A5-8A46-9454D7F46EB3}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{3245B0D3-E876-439B-BA43-CCE2ABE750AE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{CD6BEF21-7DCC-4CE6-9DE6-40D55F74EA9E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0A3C2214-C4D8-4925-A36C-C481C1A5E0BA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.72\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F3BC4899-F1A7-448D-A962-29008A9B38FB}] => (Allow) LPort=9009 FirewallRules: [{F82EB5A8-E1AC-48F7-AF22-BE9C46782358}] => (Allow) LPort=9009 FirewallRules: [{F1B99D36-9810-43A8-82CA-AC9D29A2E41D}] => (Allow) LPort=9009 FirewallRules: [{B4BD8C6D-697D-42C0-8711-C85EE2575560}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera GX\104.0.4944.70\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{803BF9D9-0A76-48FE-BD35-A57B6BDFEFEC}] => (Allow) LPort=9009 FirewallRules: [{5127CAA5-7C2A-4E90-9C9C-4C147BE4BB9A}] => (Allow) LPort=9009 FirewallRules: [{A13025AA-52D6-4840-A716-BD3F0A3F124C}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{87C661EF-48C9-442D-8DE6-01E76788A422}] => (Allow) C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe (Voicemod Sociedad Limitada -> Voicemod) FirewallRules: [{BFB82BE8-8EC3-468A-ABBE-16D95D71BC43}] => (Allow) LPort=9009 FirewallRules: [{4B5AB295-B611-4CD8-BE0F-AFAA7E540E75}] => (Allow) LPort=9009 FirewallRules: [{5628FACB-C61E-463E-A5C5-29DB36F4821C}] => (Allow) C:\Users\User\AppData\Local\Programs\Opera GX\104.0.4944.74\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{71E1FD9D-2C49-43A9-96DC-B7A57B12F8EE}] => (Allow) LPort=9009 FirewallRules: [{EEEA9F47-D581-428D-9F32-1A2C2CBFCF1F}] => (Allow) LPort=9009 FirewallRules: [{FFE7AF74-8791-4164-955F-234CFB9430A1}] => (Allow) LPort=9009 FirewallRules: [{C7032464-8178-4785-BA99-67A0C5565E69}] => (Allow) LPort=9009 FirewallRules: [{FC8AA8E6-F6C8-48D1-B31A-9B021FFD2985}] => (Allow) LPort=9009 FirewallRules: [{F34FF66B-6094-4F78-A54B-69A8ABF5AA37}] => (Allow) LPort=9009 FirewallRules: [{2F054E81-8959-4221-A9D9-3527894B64DB}] => (Allow) LPort=9009 FirewallRules: [{F6296781-E9FB-4E3F-9853-32515D978A0C}] => (Allow) LPort=9009 FirewallRules: [{57495298-DAD7-4BFF-8735-B81F5F30F7F3}] => (Allow) LPort=9009 ==================== Points de restauration ========================= 19-11-2023 13:13:41 Windows Update 22-11-2023 18:51:57 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/26/2023 10:09:03 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Der Computer wird heruntergefahren. . Error: (11/26/2023 10:09:03 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Der Computer wird heruntergefahren. ] Error: (11/26/2023 09:12:51 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: ) Description: Event-ID 2 Error: (11/25/2023 06:15:14 PM) (Source: Application Error) (EventID: 1000) (User: Window Manager) Description: Nom de l’application défaillante dwm.exe, version : 10.0.22621.2506, horodatage : 0xdef1fe51 Nom du module défaillant : gameinput.dll, version : 0.2204.22621.2506, horodatage : 0x8f967bf4 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000000eee5 ID du processus défaillant : 0x0x63c Heure de début de l’application défaillante : 0x0x1da1f9004997336 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\dwm.exe Chemin d’accès du module défaillant: c:\windows\system32\gameinput.dll ID de rapport : fde057db-8e2d-47c6-ac77-3362d7660ff2 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/25/2023 12:16:05 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: ) Description: Event-ID 2 Error: (11/24/2023 07:23:53 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: ) Description: Event-ID 2 Error: (11/23/2023 09:21:29 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-VE5C8A4) Description: Nom de l’application défaillante Cinebench_1.exe, version : 23.2.0.0, horodatage : 0x5fa460d4 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x0x2e8c Heure de début de l’application défaillante : 0x0x1da1e4aa3f39b9f Chemin d’accès de l’application défaillante : C:\Users\User\Downloads\CinebenchR23\Cinebench_1.exe Chemin d’accès du module défaillant: unknown ID de rapport : a8859ff3-6880-4a99-90ad-c188c3f33b0a Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/23/2023 09:21:25 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-VE5C8A4) Description: Nom de l’application défaillante Cinebench.exe, version : 23.2.0.0, horodatage : 0x5fa460d4 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x0x3e0c Heure de début de l’application défaillante : 0x0x1da1e4aa1d58170 Chemin d’accès de l’application défaillante : C:\Users\User\Downloads\CinebenchR23\Cinebench.exe Chemin d’accès du module défaillant: unknown ID de rapport : 204f3d55-ac0b-4e30-9c80-f064233db0a0 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (11/26/2023 11:21:57 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VE5C8A4) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/26/2023 11:20:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/26/2023 11:19:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service luafv n’a pas pu démarrer en raison de l’erreur : Le chargement du pilote a été bloqué Error: (11/26/2023 11:13:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/26/2023 11:07:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/26/2023 11:06:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/26/2023 11:05:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/26/2023 11:04:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinRing0_1_2_0 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Windows Defender: ================ Date: 2023-11-26 11:26:04 Description: Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Puwaders.C!ml&threatid=242878&enterprise=0 Nom : PUA:Win32/Puwaders.C!ml ID : 242878 Gravité : Niedrig Catégorie : Potenziell unerwünschte Software Chemin : file:_C:\ProgramData\Mircosolt\CUTE.exe; file:_C:\WINDOWS\System32\Tasks\CUTE->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0202FD0-3F16-4BD4-A046-E7864E63A9FA}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CUTE; taskscheduler:_C:\WINDOWS\System32\Tasks\CUTE Origine de la détection : Lokaler Computer Type de détection : FastPath Source de détection : System Utilisateur : NT-AUTORITÄT\SYSTEM Nom du processus : C:\Windows\System32\svchost.exe Version de la veille de sécurité : AV: 1.401.1219.0, AS: 1.401.1219.0, NIS: 1.401.1219.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2023-11-26 11:23:22 Description: Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/Redline.CBYZ!MTB&threatid=2147851882&enterprise=0 Nom : Trojan:MSIL/Redline.CBYZ!MTB ID : 2147851882 Gravité : Schwerwiegend Catégorie : Trojaner Chemin : file:_C:\Users\User\AppData\Roaming\Microsoft\Windows\Templates\Setup_for_installing_software\Setup_for_installing_software.exe Origine de la détection : Lokaler Computer Type de détection : Konkret Source de détection : Echtzeitschutz Utilisateur : DESKTOP-VE5C8A4\User Nom du processus : C:\Program Files\GridinSoft Anti-Malware\gsam.exe Version de la veille de sécurité : AV: 1.401.1219.0, AS: 1.401.1219.0, NIS: 1.401.1219.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2023-11-26 11:21:43 Description: Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Puwaders.C!ml&threatid=242878&enterprise=0 Nom : PUA:Win32/Puwaders.C!ml ID : 242878 Gravité : Niedrig Catégorie : Potenziell unerwünschte Software Chemin : file:_C:\ProgramData\Mircosolt\CUTE.exe; file:_C:\WINDOWS\System32\Tasks\CUTE->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0202FD0-3F16-4BD4-A046-E7864E63A9FA}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CUTE; taskscheduler:_C:\WINDOWS\System32\Tasks\CUTE Origine de la détection : Lokaler Computer Type de détection : FastPath Source de détection : System Utilisateur : NT-AUTORITÄT\SYSTEM Nom du processus : C:\Program Files\GridinSoft Anti-Malware\gsam.exe Version de la veille de sécurité : AV: 1.401.1219.0, AS: 1.401.1219.0, NIS: 1.401.1219.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2023-11-26 11:21:26 Description: Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Nom : Trojan:Win32/Wacatac.H!ml ID : 2147814523 Gravité : Schwerwiegend Catégorie : Trojaner Chemin : file:_C:\ProgramData\pinterests\XRJNZC.exe Origine de la détection : Lokaler Computer Type de détection : FastPath Source de détection : Echtzeitschutz Utilisateur : Nom du processus : C:\Program Files\GridinSoft Anti-Malware\gsam.exe Version de la veille de sécurité : AV: 1.401.1219.0, AS: 1.401.1219.0, NIS: 1.401.1219.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2023-11-26 11:20:53 Description: Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/CoinMiner.I&threatid=2147816125&enterprise=0 Nom : Behavior:Win32/CoinMiner.I ID : 2147816125 Gravité : Schwerwiegend Catégorie : Verdächtiges Verhalten Chemin : behavior:_process: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe, pid:12344:120617923854497; process:_pid:12344,ProcessStart:133454676507427929 Origine de la détection : Unbekannt Type de détection : Konkret Source de détection : Unbekannt Utilisateur : Nom du processus : C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe Version de la veille de sécurité : AV: 1.401.1219.0, AS: 1.401.1219.0, NIS: 1.401.1219.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Event[0] Date: 2023-11-19 00:30:50 Description: Microsoft Defender Antivirus a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente. Veille de sécurité tentée : Aktuell Code d’erreur : 0x80070003 Description de l’erreur : Das System kann den angegebenen Pfad nicht finden. Version de la veille de sécurité : 0.0.0.0;0.0.0.0 Version du moteur : 0.0.0.0 ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. FCc 02/08/2023 Carte mère: Gigabyte Technology Co., Ltd. B550 GAMING X V2 Processeur: AMD Ryzen 7 5700X 8-Core Processor Pourcentage de mémoire utilisée: 23% Mémoire physique - RAM - totale: 32688.04 MB Mémoire physique - RAM - disponible: 24911.82 MB Mémoire virtuelle totale: 34736.04 MB Mémoire virtuelle disponible: 23196.76 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:953.08 GB) (Free:178.98 GB) (Model: ADATA LEGEND 710) NTFS Drive d: () (Removable) (Total:14.62 GB) (Free:6.53 GB) FAT32 \\?\Volume{9a496b46-345e-40b0-a3ee-85472625f904}\ () (Fixed) (Total:0.67 GB) (Free:0.11 GB) NTFS \\?\Volume{5af30036-a301-4c66-8c47-c155c6606688}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 14.6 GB) (Disk ID: 2596E05D) Partition 1: (Not Active) - (Size=14.6 GB) - (Type=FAT32) ==================== Fin de Addition.txt =======================