Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 24.03.2024 01 Exécuté par Admin (25-03-2024 11:52:01) Exécuté depuis C:\Users\Admin\Desktop Microsoft Windows 11 Famille Version 23H2 22631.3296 (X64) (2023-02-07 19:51:39) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Admin (S-1-5-21-669689007-2576792148-792413273-1001 - Administrator - Enabled) => C:\Users\Admin Administrateur (S-1-5-21-669689007-2576792148-792413273-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-669689007-2576792148-792413273-503 - Limited - Disabled) Invité (S-1-5-21-669689007-2576792148-792413273-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-669689007-2576792148-792413273-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587.7 - Adobe Inc.) Adobe Premiere Pro 2024 (HKLM-x32\...\PPRO_24_1_0) (Version: 24.1.0 - Adobe Inc.) Auto Mouse Click by MurGee.com v99.1.4 (HKLM-x32\...\{F5E3859D-0720-41F0-BAF5-4CBCDFD8F406}_is1) (Version: - MurGee.com) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Blackmagic RAW Common Components (HKLM\...\{F4268583-A17F-43C8-AAAE-57CCA111273C}) (Version: 3.6.1 - Blackmagic Design) Call of Duty (HKLM-x32\...\Call of Duty) (Version: - Blizzard Entertainment) Camtasia 2021 (HKLM\...\{C0FF714D-B7A7-4A30-B9F7-FA8C206B46C3}) (Version: 21.0.19.35860 - TechSmith Corporation) Hidden Camtasia 2021 (HKLM-x32\...\{d9716ffd-76d1-476b-b102-347db224d132}) (Version: 21.0.19.35860 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 6.22 - Piriform) CrystalDiskInfo 8.17.14 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.14 - Crystal Dew World) DaVinci Resolve (HKLM\...\{3AF5FB42-AA97-4582-B73C-8185234B7FFC}) (Version: 18.6.50007 - Blackmagic Design) DaVinci Resolve Control Panels (HKLM\...\{D1ACF467-9FB4-45DA-942F-A19452E70A3F}) (Version: 2.0.7.0 - Blackmagic Design) Discord (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\Discord) (Version: 1.0.9010 - Discord Inc.) EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.152.0.5665 - Electronic Arts) Hidden EA app (HKLM-x32\...\{ed8a2f43-547f-432b-81a0-3bd1cf37bb83}) (Version: 13.152.0.5665 - Electronic Arts) EA SPORTS FC 24 (HKLM-x32\...\{D599A8A7-E083-496C-B891-5752CD4E04F3}) (Version: 1.0.85.25441 - Electronic Arts) ELITE M70 Gaming Mouse (HKLM-x32\...\{13AD9B91-5FBD-401A-98FD-BCBD16648217}) (Version: 1.0.0 - Spirit of Gamer) Epic Games Launcher (HKLM-x32\...\{92A065DE-A8D9-4842-9DFD-4BDA462EE8FD}) (Version: 1.3.51.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.) EPOS Gaming Suite (HKLM\...\{60DBDE18-B982-4462-9864-6ACF8F5B3AC9}) (Version: 1.12.2.1185 - EPOS Group A/S) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 122.0.6261.131 - Google LLC) GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.) HWiNFO64 Version 5.70 (HKLM\...\HWiNFO64_is1) (Version: 5.70 - Martin Malík - REALiX) iMazing Converter 2.0.9.0 (HKLM\...\{907AAA47-68DC-4FB3-A50E-E69A8994D2B0}_is1) (Version: 2.0.9.0 - DigiDNA) Java 8 Update 361 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180361F0}) (Version: 8.0.3610.9 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 122.0.2365.92 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 122.0.2365.92 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.17328.20184 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.045.0303.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual Basic/C++ Runtime (x86) (HKLM-x32\...\{C5E3A69D-D391-45A6-A8FB-00B01E2B010D}) (Version: 1.1.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) MSI Afterburner 4.6.5 Beta 4 (HKLM-x32\...\Afterburner) (Version: 4.6.5 Beta 4 - MSI Co., LTD) MSVCRT Redists (HKLM\...\{0B98B330-A098-11E8-B35C-00155D6302F2}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation) NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation) NVIDIA Pilote graphique 528.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.24 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20142 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17328.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.17328.20142 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) PS Remote Play (HKLM-x32\...\{18E06000-568E-4D9D-B506-EF3D3873210D}) (Version: 6.0.0.02240 - Sony Interactive Entertainment Inc.) qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.4 - The qBittorrent project) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) SPIRIT OF GAMER S-EM70 Gaming Mouse (HKLM-x32\...\{BF19F9FC-3A42-4E5A-84E0-E48C8D8C3DD4}_is1) (Version: 1.0.8 - SUZA international) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) StreamLabels 0.6.0 (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\8000d50a-fcb7-5b38-8a3b-a02a0ec79daa) (Version: 0.6.0 - Streamlabs) Telegram Desktop (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.9.7 - Telegram FZ-LLC) TikTok LIVE Studio (HKLM\...\tiktoklivestudio) (Version: 0.18.2-beta - TikTok Pte. Ltd.) VALORANT (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) VEGAS Pro 20.0 (HKLM\...\{DB63B080-6DC4-4521-861C-6421317206D9}) (Version: 20.0.403.0 - VEGAS) Hidden VEGAS Pro 20.0 (HKLM\...\MX.{DB63B080-6DC4-4521-861C-6421317206D9}) (Version: 20.0.403.0 - VEGAS) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) WinRAR 6.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.20.0 - win.rar GmbH) Wondershare Filmora 13(Build 13.1.8.5648) (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\Wondershare Filmora 13_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Wondershare NativePush(Build 1.0.1.0) (HKU\S-1-5-21-669689007-2576792148-792413273-1001\...\Wondershare NativePush_is1) (Version: - Wondershare Software) Wondershare Recoverit(Build 11.0.4.10) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 11.0.4.10 - Wondershare Software Co.,Ltd.) WorldPainter 2.15.18 (HKLM\...\4144-4862-0472-7103) (Version: 2.15.18 - pepsoft.org) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2024-03-21] (Adobe Systems Incorporated) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_152.1.1099.0_x64__v10z8vjag6ke6 [2024-03-10] (HP Inc.) IPTV Smarters Expert -> C:\Program Files\WindowsApps\30317JulienVermet.IPTVExpertPlayer-Smart4K_5.5.0.0_x64__fm5hvxqdz8pr8 [2024-03-01] (LIFTOFF) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa [2024-02-08] (Apple Inc.) [Startup Task] Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-14] (Microsoft Corp.) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-13] (Microsoft Corporation) Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.7.2.0_x64__8wekyb3d8bbwe [2023-12-21] (Microsoft Studios) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-13] (NVIDIA Corp.) Power Automate -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1200.442.0_x64__8wekyb3d8bbwe [2024-03-22] (Microsoft Corporation) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2411.4.0_x64__cv1g1gvanyjgm [2024-03-22] (WhatsApp Inc.) [Startup Task] Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-03-13] (Microsoft Corporation) Windows Security -> C:\Program Files\WindowsApps\WindowsSecurity_1.0.0.0_x64__s9y1p3hwd5qda [2023-01-16] (user) WinRAR -> C:\Program Files\WinRAR [2023-02-15] (win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-669689007-2576792148-792413273-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Admin\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare) CustomCLSID: HKU\S-1-5-21-669689007-2576792148-792413273-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-669689007-2576792148-792413273-1001_Classes\CLSID\{e41a3aef-5c40-4832-922f-c8c0a8720acf}\localserver32 -> C:\Program Files\TechSmith\Camtasia 2021\CamtasiaStudio.exe (TechSmith Corporation -> TechSmith Corporation) CustomCLSID: HKU\S-1-5-21-669689007-2576792148-792413273-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-21] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-21] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-21] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-21] (Adobe Inc. -> ) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.045.0303.0003\FileSyncShell64.dll [2024-03-21] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d1bd230cd08e7436\nvshext.dll [2023-01-18] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-03-21] (Adobe Inc. -> ) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2024-02-24 13:56 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2024-02-24 13:56 - 2017-09-12 10:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 001420288 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\AgentUtil.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 000428544 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\blhost.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 002024448 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\ConfigManager.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 000812544 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\cpprest_2_10.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 001692672 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\CxAudioHidDll32.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 002166272 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\Restclient.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 001148928 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\RestExecutor.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 000077312 _____ () [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\zlib1.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 000164864 _____ (QTIL) [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\EngineFrameworkCpp.dll 2023-05-02 05:02 - 2023-05-02 05:02 - 002789888 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EPOS\Gaming Suite\libcrypto-3.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 000046592 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 006270976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 001389568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll 2024-03-14 21:36 - 2024-03-14 21:36 - 000157184 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll 2024-02-24 13:56 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Admin\Documents\facture ostéo 15.02.2024.jpeg:3or4kl4x13tuuug3Byamue2s4b [83] AlternateDataStreams: C:\Users\Admin\Documents\facture ostéo 15.02.2024.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] AlternateDataStreams: C:\Users\Admin\Documents\Ostéo 05.03.24.jpeg:3or4kl4x13tuuug3Byamue2s4b [83] AlternateDataStreams: C:\Users\Admin\Documents\Ostéo 05.03.24.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] AlternateDataStreams: C:\Users\Admin\Documents\photo id max.jpeg:3or4kl4x13tuuug3Byamue2s4b [83] AlternateDataStreams: C:\Users\Admin\Documents\photo id max.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442] AlternateDataStreams: C:\ProgramData\screen.jpg:8C7DEC92B3 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk:14E057C8D9 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk:C8B6D970BF [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PS Remote Play.lnk:9C45AF8000 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk:1DE7D35192 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:7AD7FA8AB1 [3442] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [2976] AlternateDataStreams: C:\Users\Public\Documents\chromium.dat:7B0F70692E [3442] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-03-08] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2022-12-29 17:34 - 2024-03-21 12:55 - 000002170 _____ C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 genuine.adobe.com 0.0.0.0 assets.adobedtm.com 0.0.0.0 ic.adobe.io 0.0.0.0 cc-api-data.adobe.io 0.0.0.0 lcs-cops.adobe.io 0.0.0.0 lcs-cops-ue1.adobe.io 0.0.0.0 lcs-cops-uw2.adobe.io 0.0.0.0 lcs-cops-prestage.adobe.io 0.0.0.0 lcs-cops-stage.adobe.io 0.0.0.0 lcs-cops-stage-uw2.adobe.io 0.0.0.0 dyzt55url8.adobe.io 0.0.0.0 b5kbg2ggog.adobe.io 0.0.0.0 5zgzzv92gn.adobe.io 0.0.0.0 0mo5a70cqa.adobe.io 0.0.0.0 pojvrj7ho5.adobe.io 0.0.0.0 i7pq6fgbsl.adobe.io 0.0.0.0 ph0f2h2csf.adobe.io 0.0.0.0 r3zj0yju1q.adobe.io 0.0.0.0 9ngulmtgqi.adobe.io 0.0.0.0 guzg78logz.adobe.io 0.0.0.0 2ftem87osk.adobe.io 0.0.0.0 1b9khekel6.adobe.io 0.0.0.0 3d3wqt96ht.adobe.io 0.0.0.0 23ynjitwt5.adobe.io 0.0.0.0 4vzokhpsbs.adobe.io 0.0.0.0 3ca52znvmj.adobe.io 0.0.0.0 r5hacgq5w6.adobe.io 0.0.0.0 gw8gfjbs05.adobe.io 0.0.0.0 lre1kgz2u4.adobe.io 0.0.0.0 ij0gdyrfka.adobe.io ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\WorldPainter;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-669689007-2576792148-792413273-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\10743045.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{D5B6374B-1C48-41CF-800A-253090B6E2D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BE71DB6F-19F5-4C12-8584-06F64D4CE7A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E2B74C57-A45B-482F-A001-C02DFAE7F4B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C6342C2D-1823-496E-B3FA-622F08B88124}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A579F1C0-8108-4FC7-8C5E-C68CCFA77190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E6A68E2D-AE9D-44F0-B4FB-A15DDF6AD84F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [UDP Query User{8219FD94-39C9-4097-9BAB-D5E0BC2B3DAF}C:\users\admin\appdata\local\discord\app-1.0.9010\discord.exe] => (Block) C:\users\admin\appdata\local\discord\app-1.0.9010\discord.exe => Pas de fichier FirewallRules: [TCP Query User{6F0BF551-F9A7-4B45-BCA6-FD57A3C311AF}C:\users\admin\appdata\local\discord\app-1.0.9010\discord.exe] => (Block) C:\users\admin\appdata\local\discord\app-1.0.9010\discord.exe => Pas de fichier FirewallRules: [{BB236A15-EE17-4867-9D4F-E9AF3DB8FF76}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{79B9D8AB-4E93-415C-B057-13D07CD57CBA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{3C81D62D-1DA1-4714-8722-4A9C8947EF75}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{E8A9A68A-D206-499D-ABBB-D92C69874929}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{3E2D7E4F-738A-4B95-BAD9-56F32BF3CFFC}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [TCP Query User{A14F8EDE-173A-421C-9F2F-55698248A6E5}D:\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{D6ADA3F9-BFFA-41F1-B286-F6BFBF917380}C:\windows\microsoft.net\framework64\v4.0.30319\regsvcs.exe] => (Allow) C:\windows\microsoft.net\framework64\v4.0.30319\regsvcs.exe FirewallRules: [TCP Query User{957BAC7E-600A-4942-B633-9D31BB74F967}C:\windows\microsoft.net\framework64\v4.0.30319\regsvcs.exe] => (Allow) C:\windows\microsoft.net\framework64\v4.0.30319\regsvcs.exe FirewallRules: [{276798a7-22f8-4d0f-b91f-a7e301974028}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{0bf1d7f9-87d3-4d87-bf76-18ddbd6c0904}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{acef4ee4-86e6-4d37-96e1-a1ace2e2258c}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{40d0575e-3257-4af3-bec8-6f16b16d0fa8}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{f1d05014-ede7-479b-abcf-70eea62bfe5f}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{f2520193-b931-4321-89af-83fa8df29276}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{2d202040-cb64-4ea0-b2f8-ad3957fb8cf3}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{17bdacc0-b5f2-4183-a076-cfff8bc96c9f}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{9d2a0fb5-a752-4308-a972-b5c127977ef8}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{1430e059-c76f-4378-9ed2-25c5b50adce5}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{6dd92cf9-fb52-4325-8ed2-8eb2e22128ed}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{8cb07f33-153c-4ec9-91ab-d7a79eca0ec1}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{79c29d79-4997-4b2c-a7e2-467b9f91dc39}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{756e8562-7f7d-4e2e-b39a-1f61edb1b45a}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{6eb912ad-f4dc-4caa-99ff-a288ba1ecc14}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{5de75b96-2f71-4060-a97d-f4709292481c}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{25b0186c-0b20-4847-bba6-6d68d0040414}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{e867c506-9fc8-4648-b23f-5b2f7bdb8c48}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{1257a46b-8717-4b45-bdd1-f5a4a3b69610}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{3094764c-8a74-4e15-9431-3a9b4b6a50b5}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{2a109ad7-cc8a-44d7-8c89-0aa3e46356bb}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{2f0b8b61-b32e-47f2-8ad9-a04f444fcbc0}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{d0f025ed-d361-4a1e-a450-ebb030f42517}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{66a69363-7a0b-49e2-a1f7-3a10f4018cf3}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{47b2a18e-5fb7-4ae8-814a-cf8a9b15ff17}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{1788d815-ed6f-4547-ba0f-720d0567e9d8}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{75f83f57-e9ae-4a91-98f8-2741d04fff4f}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{ab8dc625-f891-4d6e-b7a7-2c574b477f86}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{67271d45-caf8-44f5-9074-80fa556a74c3}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{a956728a-4eb9-40b0-b299-0380f70efdb7}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{05eac057-8e02-4805-a079-5704dcb525b5}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{506afcdf-c4ce-462e-9494-d4e56579bd4e}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{e8666bfc-5f3f-402b-b1f0-3858f6303ef5}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{a3189563-4be6-4745-b442-cdffc3fb32b1}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{45da6d1f-b602-45a6-9fac-db5e2b4e7568}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{b9baf421-1699-4ed8-9284-cadd41f8cf07}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{01f17680-a971-4c26-81d7-65b1f5cf3d00}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{02203d54-7b0f-4789-b3b0-bc9f949f4ee4}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{da80f5c5-a8a9-49c2-b878-fa3276e82c6d}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{f2cce88f-bea7-4594-ab02-c3c9cbe50c4c}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{192d3695-f63d-48e1-af5f-d3dd8b3955da}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{4fa68764-3c14-4aa9-a5d8-a52e930a15ba}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{ee198bab-717a-4b9c-bdf1-851441723b25}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{eafcfe44-3f79-4461-9d1d-c737fcb9600a}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{48911c38-c4a5-4a7b-99e1-500951062053}] => (Allow) C:\Windows\addins\tu.exe => Pas de fichier FirewallRules: [{5c1522ea-9fad-4cec-ab74-643a23c71aa2}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{68cfe908-84ee-411a-8646-65d9f2d6ba1b}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{107e36b6-de68-4737-acf4-9fd4c8afbc52}] => (Allow) C:\Windows\System32\SearchIndexer.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{50b3e85f-c8bb-46b4-abe4-be5a8ff77bbc}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{cede17e4-75fb-497a-b442-edb4e4ee3004}] => (Allow) C:\Windows\System32\sihost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{5e9e014f-2188-440b-8166-b64128d313c7}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{821039ec-fb13-4916-b460-e40725a244a9}] => (Allow) C:\Windows\IME\smss.exe () [Fichier non signé] FirewallRules: [{3e4c3311-4537-4470-affa-c17e305546fe}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{97b0e8dc-ab9c-40e2-8007-96869533d3f8}] => (Allow) C:\Windows\IME\lsassn.exe => Pas de fichier FirewallRules: [{6B4F52B5-1F3B-4FB0-A40A-CEC6D40994D4}] => (Allow) LPort=8322 FirewallRules: [UDP Query User{A178BA12-4C83-40E5-8972-30F1ABE37B04}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [TCP Query User{AE2D89F3-0FB7-4749-9FA8-7EDDBC05540B}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [TCP Query User{77989834-34D1-4A38-9DAC-B0ACFCE23AEA}C:\program files\tiktok live studio\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\tiktok live studio.exe (TikTok Pte. Ltd. -> TikTok Pte. Ltd.) FirewallRules: [UDP Query User{20AC5A61-C0DF-4860-8C30-959DCBCB981A}C:\program files\tiktok live studio\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\tiktok live studio.exe (TikTok Pte. Ltd. -> TikTok Pte. Ltd.) FirewallRules: [TCP Query User{9924F786-1505-4D7F-B16B-E312C9BB37E9}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{12D9BAB3-D9C8-4D1F-A416-859B5370FA47}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{4E92AE0E-9932-4285-8B69-0E945959780C}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{BF2D077E-E627-4DB7-9D4A-46A99AF2B500}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{A259C362-D67D-4894-B567-EDBB211AD77E}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{A67CBA15-A244-44DF-B4A0-547A66E67A3F}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{1C0A5E85-E514-44DA-8A68-F46FAFB91599}] => (Allow) LPort=57209 FirewallRules: [{63D43872-DAB2-407F-B39D-5F099A069596}] => (Allow) LPort=57210 FirewallRules: [{F3EC29EE-16CD-4E86-A32B-2C59818B9693}] => (Allow) LPort=57211 FirewallRules: [{FC706E46-2645-476C-951C-A9FA8C6D0BEE}] => (Allow) LPort=57212 FirewallRules: [{D12DF6BC-28EC-45F3-AA7F-EBACD484F543}] => (Allow) LPort=57213 FirewallRules: [{4A887228-1F5C-4BAE-9BCB-0A8E41756076}] => (Allow) LPort=57214 FirewallRules: [{810520B9-15C4-4D69-BA78-25499BBE27DF}] => (Allow) LPort=57215 FirewallRules: [{EBF96558-7189-48CD-BB18-C03ECABAAEBA}] => (Allow) LPort=57216 FirewallRules: [{AFF4E146-EC41-4E70-B3B4-748BAF1B54BD}] => (Allow) LPort=57217 FirewallRules: [{D4653E6B-7591-4FA3-96FB-C3A02B877418}] => (Allow) LPort=57218 FirewallRules: [{54995AE3-2845-474B-8002-D577D3C41452}] => (Allow) LPort=57209 FirewallRules: [{BB62C408-250B-4718-B743-DD8200B6EC36}] => (Allow) LPort=57210 FirewallRules: [{D89B6A98-137B-4D46-981F-C0007A86B6BA}] => (Allow) LPort=57211 FirewallRules: [{6FF2D3D9-67D6-4622-8B2A-796AA66A306E}] => (Allow) LPort=57212 FirewallRules: [{77385A4A-2CF2-4CD4-83AA-104E9D40B865}] => (Allow) LPort=57213 FirewallRules: [{50CD92BC-B199-4B08-A1D5-B7921B7081B3}] => (Allow) LPort=57214 FirewallRules: [{67830EAB-981B-48B9-9932-6461A7718990}] => (Allow) LPort=57215 FirewallRules: [{9085ADA7-8C8A-4B44-BC94-2D27C9A97B30}] => (Allow) LPort=57216 FirewallRules: [{A8D481DA-23C5-461F-875E-27087462BAF5}] => (Allow) LPort=57217 FirewallRules: [{B431699F-92F0-4C2C-B28F-116A02219CDA}] => (Allow) LPort=57218 FirewallRules: [{88070793-3CFF-4090-A64C-D74A8605A35F}] => (Allow) LPort=23007 FirewallRules: [{6A0424BD-5E61-48BB-97C5-ECD05DDB1875}] => (Allow) LPort=23008 FirewallRules: [{92000A7E-AE00-4E2C-B0F4-0DE173F171FF}] => (Allow) LPort=33009 FirewallRules: [{647B3BB4-8BBD-4E22-BD81-9128D1FEFEE7}] => (Allow) LPort=33010 FirewallRules: [{14C2A6A9-D32A-44D1-A17A-7C6F5FEC2E93}] => (Allow) LPort=33011 FirewallRules: [{315E06F6-DAF3-4D10-9E66-999D1A92CB0F}] => (Allow) LPort=43012 FirewallRules: [{5BC7C8F2-0AD9-4B15-ADAC-59BF31D8C875}] => (Allow) LPort=43013 FirewallRules: [{2D400D55-3186-4C50-9565-54E54E41D73F}] => (Allow) LPort=53014 FirewallRules: [{3B55AD62-652E-419B-B522-1CE7EF67F06D}] => (Allow) LPort=53015 FirewallRules: [{5D32A190-4D77-428F-9793-160437BF1567}] => (Allow) LPort=53016 FirewallRules: [{F8B8B259-AA6D-4C40-96EB-1FAFADC8FD9E}] => (Allow) LPort=23007 FirewallRules: [{34E002E3-85E3-4EA3-A3F5-2F48BB4EB9D2}] => (Allow) LPort=23008 FirewallRules: [{33620573-EA39-4A40-9657-7A1DE3C84B88}] => (Allow) LPort=33009 FirewallRules: [{CAE3BD33-F289-4692-8BBC-ABBE8E9F1026}] => (Allow) LPort=33010 FirewallRules: [{5C38E896-F5E4-4D80-97F1-39337EB28AA0}] => (Allow) LPort=33011 FirewallRules: [{10BDA4A3-4331-4031-BE2A-C739D8920827}] => (Allow) LPort=43012 FirewallRules: [{0CD72C49-F940-4B6B-B41C-03A6054B2F69}] => (Allow) LPort=43013 FirewallRules: [{4BCCC166-F297-40D1-8CD7-CF3F66A1A9BE}] => (Allow) LPort=53014 FirewallRules: [{25FF83C3-F01C-43F0-A55E-6349F747ABE8}] => (Allow) LPort=53015 FirewallRules: [{F8E34769-F81F-478F-BEAF-76BF9565ECF5}] => (Allow) LPort=53016 FirewallRules: [{9FCEEF18-1C05-4CE3-B7D2-5EC5C706C6D5}] => (Allow) LPort=50053 FirewallRules: [{A05B92CC-D633-40F9-A4C8-A3088E638BDC}] => (Allow) LPort=50053 FirewallRules: [{05FD8609-51E4-4514-AE5B-AC4692AF0ACB}] => (Allow) LPort=57209 FirewallRules: [{D706D443-7CC1-4EA2-A1C5-9D4030646C61}] => (Allow) LPort=57210 FirewallRules: [{9EA318FD-80D5-4170-973A-362625E727F0}] => (Allow) LPort=57211 FirewallRules: [{7D637E4D-BC55-4B0B-9C7D-F98333900994}] => (Allow) LPort=57212 FirewallRules: [{D9E73D09-A4EF-4651-8B54-EBCF1934B6F0}] => (Allow) LPort=57213 FirewallRules: [{3AFD8E73-7FA4-4B3B-89B9-1BDFDB4C5E67}] => (Allow) LPort=57214 FirewallRules: [{E416BA52-0BD2-4C1C-9EE5-A50987664C1F}] => (Allow) LPort=57215 FirewallRules: [{38D8F3DE-BADC-4316-A347-570C4BE400C8}] => (Allow) LPort=57216 FirewallRules: [{462DBBF9-AEE4-439C-A9E5-9DB9F83848AC}] => (Allow) LPort=57217 FirewallRules: [{41475855-4A4D-42F3-BC3E-559C6A36EE3A}] => (Allow) LPort=57218 FirewallRules: [{6B4D9903-A46C-4CCB-BB9C-F055979D8782}] => (Allow) LPort=57209 FirewallRules: [{6E064311-FD1E-4736-ACF2-A1C060F8FFC2}] => (Allow) LPort=57210 FirewallRules: [{CBF501E0-66A6-4CFB-A6D2-37F034168E9E}] => (Allow) LPort=57211 FirewallRules: [{85DE5B47-F2C8-4C54-9873-E9C97E5B9BCC}] => (Allow) LPort=57212 FirewallRules: [{4290EDAF-DF5B-48D4-ABC1-7AB547D61427}] => (Allow) LPort=57213 FirewallRules: [{2C444E17-4A44-4083-8F14-FA281573742F}] => (Allow) LPort=57214 FirewallRules: [{ECB8281E-2F4F-4FE2-A25E-E03799AD3A21}] => (Allow) LPort=57215 FirewallRules: [{D0B4EFAA-6E21-40DF-8A9E-0C32D8E13804}] => (Allow) LPort=57216 FirewallRules: [{C39D8E6D-6247-4736-AE77-43DD2DEFF262}] => (Allow) LPort=57217 FirewallRules: [{9472DEB4-8E65-4B21-90FB-1DADC8310C73}] => (Allow) LPort=57218 FirewallRules: [{88E5CF98-7DE2-4EC7-BC89-4627F01DFAC1}] => (Allow) LPort=23007 FirewallRules: [{6F429147-B5CD-4D8B-BBEC-A3DE26A0078A}] => (Allow) LPort=23008 FirewallRules: [{5142A802-E0D9-405C-AE09-C00E3F0FE097}] => (Allow) LPort=33009 FirewallRules: [{30E2B96E-58D9-4AAB-9E53-37B2C47B6FD2}] => (Allow) LPort=33010 FirewallRules: [{DB9D78AC-A3FD-414E-9498-2263BC2AB2FC}] => (Allow) LPort=33011 FirewallRules: [{D0E520D5-A311-4030-830F-3E53E3DFEC38}] => (Allow) LPort=43012 FirewallRules: [{47CA188A-D7E5-4CE9-A845-89D780AB9432}] => (Allow) LPort=43013 FirewallRules: [{40F33258-B092-4BEC-94E1-364EC605944B}] => (Allow) LPort=53014 FirewallRules: [{637D7B9F-54F0-495B-9FF9-DE4A6D4388FB}] => (Allow) LPort=53015 FirewallRules: [{82CD8A5F-3957-484B-8EC5-254D724C7555}] => (Allow) LPort=53016 FirewallRules: [{8B48800D-A625-44A7-B6A4-C16E11945CE4}] => (Allow) LPort=23007 FirewallRules: [{C75906E5-5091-4DF6-9FF4-57FB9A59BE68}] => (Allow) LPort=23008 FirewallRules: [{537A12F7-8CA3-47BA-8DA7-EBA9220D364D}] => (Allow) LPort=33009 FirewallRules: [{74EFDA6A-92D3-46FC-A56C-12C2C40F286C}] => (Allow) LPort=33010 FirewallRules: [{64C71ECE-2D63-4C3A-940D-4D3AF78A43BF}] => (Allow) LPort=33011 FirewallRules: [{47BE457C-239F-4EF9-86B8-FDA8B19EE1B2}] => (Allow) LPort=43012 FirewallRules: [{B2B89400-E26A-4677-9290-3CB56BA00609}] => (Allow) LPort=43013 FirewallRules: [{0382E732-27E0-4315-BA7C-8DDB38CA3F18}] => (Allow) LPort=53014 FirewallRules: [{85DF61F0-18EB-474D-87DD-9F83565384EA}] => (Allow) LPort=53015 FirewallRules: [{3B7A4C8B-32A5-4C5D-89A1-420856882ABE}] => (Allow) LPort=53016 FirewallRules: [{CA63EE6F-0746-4322-A97A-0872DA3F3CB0}] => (Allow) LPort=50053 FirewallRules: [{04EC85EA-EF15-4084-AEC9-B0B6B42FA8C2}] => (Allow) LPort=50053 FirewallRules: [{01866F32-8A79-4B64-9862-F68D0E589566}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8B19B039-4B24-47A3-BEFA-666BECDD7DE4}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [{46DF0DFC-FCA7-47CF-A334-B7F347E925FB}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [TCP Query User{EDCD2A22-EFAC-487D-81ED-061FBB52B873}C:\users\admin\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\admin\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [Fichier non signé] FirewallRules: [UDP Query User{C572996F-27BE-4718-B1B2-7DF73B308BDD}C:\users\admin\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe] => (Allow) C:\users\admin\appdata\local\plutonium\bin\plutonium-bootstrapper-win32.exe (Plutonium Project -> Plutonium Project) [Fichier non signé] FirewallRules: [{358F684C-D325-4B06-AD1C-0310E559659A}] => (Allow) C:\Program Files (x86)\Sony\PS Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.) FirewallRules: [TCP Query User{0A42E5B4-8C5D-4894-AEEC-1123868EA5C7}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{CCAC5B92-F3B1-402F-A785-DB6D376F184B}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{14DF742A-1425-4CA6-B0C0-51B027A30AC6}C:\program files\ea games\ea sports fc 24\fc24.exe] => (Allow) C:\program files\ea games\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [UDP Query User{95482EAA-CB78-4F53-AF92-4271E44E5EF7}C:\program files\ea games\ea sports fc 24\fc24.exe] => (Allow) C:\program files\ea games\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{77047F1A-4103-47BD-B378-B4DAD9D8E048}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> ) FirewallRules: [{40669316-AB60-42BB-8AA6-247AD5139F8F}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> ) FirewallRules: [{01D66B7E-7AC8-43FD-87D0-BD9874404211}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{3AAE5F78-DFBD-492B-BD81-1FC02A5EE0E0}] => (Allow) D:\SteamLibrary\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{4923CEFE-6FB9-44D8-B3E8-6357B42169B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2024\fm.exe (Sports Interactive) [Fichier non signé] FirewallRules: [{120971E3-BE31-4C15-944A-13CDF881E46D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2024\fm.exe (Sports Interactive) [Fichier non signé] FirewallRules: [{5F6866B0-313D-44DF-8A25-9D742FC1DFF1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{6346E0B5-431A-4F19-A414-7343524DFD93}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{6192555F-C59A-4D63-BE60-CB9EB7E67535}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{E56F4B4D-DC87-4D88-B0ED-2F91F7837002}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{F96737CA-76AB-4E8E-9A7C-33455A260F06}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{CFE6FFCF-8DC0-4982-B5BE-652169EBFA58}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{635D0E40-F60A-4D7C-9FB4-B175AD1614BD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{B22460EA-4E4B-4447-860A-DD53B7792E22}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12131.3.2010.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) FirewallRules: [{F8D24C51-6E5C-417F-A005-37605019BB93}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> ) FirewallRules: [{6E9AA7F9-3124-4864-93CB-4890BA154F66}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> ) FirewallRules: [{720435D0-97BA-40EA-9529-0A2D2C122C8A}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> ) FirewallRules: [{088E339F-309B-4656-BAB8-CE1D429E7FAA}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> ) FirewallRules: [{D556A7ED-6F68-43EF-A393-E7DD6A151A75}] => (Allow) C:\Program Files\EA Games\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{EB9F105B-84D8-4FCE-9595-971324FB5AF8}] => (Allow) C:\Program Files\EA Games\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{8D56675D-2EB9-4395-9D78-9679D01CA803}D:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) D:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games) FirewallRules: [UDP Query User{50091304-E5BB-4E23-9A70-A33177FC5A44}D:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) D:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games) FirewallRules: [{0D75B5B8-BD98-4C4D-A171-6D18CC6666B5}] => (Allow) C:\Users\Admin\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare) FirewallRules: [{880533C3-ACFA-47FF-96AF-45F30A4AEA5D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{8F20D7B8-67F0-461C-8C7A-3FD7005D93B4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{79D55338-E409-4BD0-A8DE-C5F04B6D277D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{EB6612F4-5D41-4489-AEC1-CA9C0973EAA9}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{63C54FF5-1B32-4152-B0B2-B941C6A0327E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{401429D3-75DA-45D5-B16F-BE161DD17682}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{2101DCF3-F454-47B3-9B30-AD68DA887760}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Pas de fichier FirewallRules: [{285EAF81-33CB-4CB6-8A9C-23C2059AE6AF}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [TCP Query User{F12EAE1B-4C2E-4907-AA07-F99633568A39}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{8BDC47CE-93D0-4C8B-9A41-72CC0E6EBB01}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{F6192DA5-A048-46F1-8236-999414E06A48}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3EA9C70A-2335-4119-BAB0-AA569DE46C06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C432156F-A89D-48D0-BD3E-B46524561FF6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DF863C4B-9D26-4708-B09C-3708AC8D8D0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.114.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{42893E6A-4EA4-4B05-B722-2923CE831896}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\122.0.2365.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1C78F787-2C00-42BE-8373-05BC1E3BA4B6}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{460FA2D5-11B8-4D35-B85C-8544FFF1B9CE}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6140E0D3-F126-4246-BBC4-20B897BF5BB7}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{5EA17A14-2477-42CB-808A-FBD916EF52F4}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{BDBD1F30-1098-47AD-8675-802DEA569C2D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{4AF79756-6DED-4CB3-87D4-EFEA685B0B85}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{002940D3-167C-4D7A-8300-7B5C2DB82061}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{6A99C8D5-2674-4809-8D87-A7F9CA66A974}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{2109DF7A-3DC0-44D9-B542-C5BDB3A3BFD8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{13A6AD58-FEF1-4ED8-83E3-900DD3B8F95D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{CC01EC85-AC22-4F9F-8EFB-DC2B3C716CA3}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{A7429911-7857-4698-A5C7-F065F6871348}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{FD0BD046-62F3-431F-9D63-1EF4775AEF63}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{70488976-97A7-4B39-BF51-3390467D8C18}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 23-03-2024 21:24:40 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (03/24/2024 11:00:52 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-M6QB0T4) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 16.1.1.0, horodatage : 0x65e5e2d4 Nom du module défaillant : ntdll.dll, version : 10.0.22621.3235, horodatage : 0xa2c4352c Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x5368 Heure de début de l’application défaillante : 0x0x1da7e36bc8ce074 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 8ef328e8-a5e2-44aa-b00d-74afce584124 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/23/2024 11:27:45 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-M6QB0T4) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 16.1.1.0, horodatage : 0x65e5e2d4 Nom du module défaillant : ntdll.dll, version : 10.0.22621.3235, horodatage : 0xa2c4352c Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x353c Heure de début de l’application défaillante : 0x0x1da7d7153df43ed Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : cdc491d3-774c-419f-acf8-879e1d7b83e8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/21/2024 12:56:42 PM) (Source: Application Error) (EventID: 1000) (User: AUTORITE NT) Description: Nom de l’application défaillante EPOSGamingSuiteService, version : 0.0.0.0, horodatage : 0x6450f907 Nom du module défaillant : ucrtbase.dll, version : 10.0.22621.2506, horodatage : 0xac92626e Code d’exception : 0xc0000409 Décalage d’erreur : 0x0009e34b ID du processus défaillant : 0x0x1270 Heure de début de l’application défaillante : 0x0x1da7b04542094dc Chemin d’accès de l’application défaillante : C:\Program Files (x86)\EPOS\Gaming Suite\EPOSGamingSuiteService Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll ID de rapport : 9569cd75-7d33-47c1-981d-04727c2d2ec8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/21/2024 12:49:12 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-M6QB0T4) Description: Nom de l’application défaillante LC46GLUG664J4D3YCT7SSB157.exe, version : 29.0.0.1, horodatage : 0xef4d135d Nom du module défaillant : ntdll.dll, version : 10.0.22621.3235, horodatage : 0xb62363d8 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00096886 ID du processus défaillant : 0x0x3790 Heure de début de l’application défaillante : 0x0x1da7b85b29efae3 Chemin d’accès de l’application défaillante : C:\Users\Admin\AppData\Local\Temp\LC46GLUG664J4D3YCT7SSB157.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 7166e1b6-f79b-4ca6-abd7-ba760a191482 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/21/2024 12:49:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : LC46GLUG664J4D3YCT7SSB157.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.AccessViolationException à MtHxhGhYmAEU3WnY95.MJfq19wLRfQxLoHQJg+CouRqTewXLQOMwauObH.IsMWVrV5Abq(System.String) à MtHxhGhYmAEU3WnY95.MJfq19wLRfQxLoHQJg+CouRqTewXLQOMwauObH.fJxWVTsDYse() à MtHxhGhYmAEU3WnY95.MJfq19wLRfQxLoHQJg+CouRqTewXLQOMwauObH.y9jWVCQvtQM() à MtHxhGhYmAEU3WnY95.MJfq19wLRfQxLoHQJg.wdVj7PWmcAy() à {9C25BB9B-06A4-4244-9646-D84A9D3AAFAB}.main() Error: (03/21/2024 12:48:10 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-M6QB0T4) Description: Nom de l’application défaillante AI8C4NPJM17PEEKGX.exe, version : 29.0.0.1, horodatage : 0xef4d135d Nom du module défaillant : clr.dll, version : 4.8.9181.0, horodatage : 0x64b8594f Code d’exception : 0xc0000005 Décalage d’erreur : 0x00111042 ID du processus défaillant : 0x0x2ae0 Heure de début de l’application défaillante : 0x0x1da7b858da19a02 Chemin d’accès de l’application défaillante : C:\Users\Admin\AppData\Local\Temp\AI8C4NPJM17PEEKGX.exe Chemin d’accès du module défaillant: C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll ID de rapport : a71f5f1b-a1d9-48bc-99c2-c08bdc7bfd77 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/21/2024 12:48:10 PM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Application : AI8C4NPJM17PEEKGX.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une erreur interne dans le runtime .NET à l'adresse IP 737C1042 (736B0000) avec le code de sortie 80131506. Error: (03/21/2024 12:47:17 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-M6QB0T4) Description: Nom de l’application défaillante Adobe_Activator.exe, version : 803.0.1.0, horodatage : 0x89113544 Nom du module défaillant : KERNELBASE.dll, version : 10.0.22621.3296, horodatage : 0x71c4f65c Code d’exception : 0xe0434352 Décalage d’erreur : 0x00149542 ID du processus défaillant : 0x0x2c60 Heure de début de l’application défaillante : 0x0x1da7b8574250e46 Chemin d’accès de l’application défaillante : C:\Users\Admin\Desktop\Adobe Activator\Adobe_Activator.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : f02d6cfe-1e94-4931-80c7-9321d9a824a6 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (03/23/2024 09:24:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Hewlett-Packard - USB - 2/10/2017 12:00:00 AM - 44.1.2402.1741. Error: (03/22/2024 06:57:52 PM) (Source: volsnap) (EventID: 25) (User: ) Description: Les clichés instantanés du volume C: ont été supprimés car le stockage du cliché instantané n’a pas pu s’agrandir à temps. Réduisez la charge d’E/S sur le système ou choisissez un volume stockage de cliché instantané qui n’est pas mis en cliché instantané. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/22/2024 06:57:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-M6QB0T4) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2024-03-25 11:52:20 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\Admin\Downloads\VEGAS Pro 16.0.rar Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-M6QB0T4\Admin Nom du processus : C:\Users\Admin\Desktop\FRST64.exe Version de la veille de sécurité : AV: 1.407.680.0, AS: 1.407.680.0, NIS: 1.407.680.0 Version du moteur : AM: 1.1.24020.9, NIS: 1.1.24020.9 Date: 2024-03-25 11:51:58 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\Admin\Downloads\VEGAS Pro 16.0.rar Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-M6QB0T4\Admin Nom du processus : C:\Users\Admin\Desktop\FRST64.exe Version de la veille de sécurité : AV: 1.407.680.0, AS: 1.407.680.0, NIS: 1.407.680.0 Version du moteur : AM: 1.1.24020.9, NIS: 1.1.24020.9 Date: 2024-03-25 11:51:39 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\Admin\Downloads\VEGAS 16.rar Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-M6QB0T4\Admin Nom du processus : C:\Users\Admin\Desktop\FRST64.exe Version de la veille de sécurité : AV: 1.407.680.0, AS: 1.407.680.0, NIS: 1.407.680.0 Version du moteur : AM: 1.1.24020.9, NIS: 1.1.24020.9 Date: 2024-03-25 11:50:38 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/InstallCore&threatid=311991&enterprise=0 Nom : PUADlManager:Win32/InstallCore ID : 311991 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\Admin\Downloads\ChromaHills_3124937874.exe; file:_C:\Users\Admin\Downloads\forge-1.13.2.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Système Utilisateur : Nom du processus : C:\Users\Admin\Desktop\FRST64.exe Version de la veille de sécurité : AV: 1.407.680.0, AS: 1.407.680.0, NIS: 1.407.680.0 Version du moteur : AM: 1.1.24020.9, NIS: 1.1.24020.9 Date: 2024-03-25 11:50:38 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/PiriformBundler&threatid=311950&enterprise=0 Nom : PUABundler:Win32/PiriformBundler ID : 311950 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\Admin\Downloads\ccsetup563.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : Nom du processus : C:\Users\Admin\Desktop\FRST64.exe Version de la veille de sécurité : AV: 1.407.680.0, AS: 1.407.680.0, NIS: 1.407.680.0 Version du moteur : AM: 1.1.24020.9, NIS: 1.1.24020.9 Event[0] Date: 2024-01-12 04:52:46 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente. Veille de sécurité tentée : Actuelle Code d’erreur : 0x80501102 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Version de la veille de sécurité : 1.403.2001.0;1.403.2001.0 Version du moteur : 1.1.23110.2 Date: 2023-03-19 23:34:09 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.385.390.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.20100.6 Code d’erreur : 0x80240022 Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions. Date: 2023-03-19 23:34:09 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.385.390.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.20100.6 Code d’erreur : 0x80240022 Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions. CodeIntegrity: =============== Date: 2024-03-20 21:22:18 Description: Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume6\Windows\System32\drivers\HWiNFO64A.SYS that did not meet the Authenticode signing level requirements or violated code integrity policy (Policy ID:{d2bda982-ccf6-4344-ac5b-0b44427b6816}). Date: 2024-03-20 21:22:18 Description: The driver \Device\HarddiskVolume6\Windows\System32\drivers\HWiNFO64A.SYS is blocked from loading as the driver has been revoked by Microsoft. ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. 1.I0 08/08/2022 Carte mère: Micro-Star International Co., Ltd B450 GAMING PLUS (MS-7B86) Processeur: AMD Ryzen 7 2700X Eight-Core Processor Pourcentage de mémoire utilisée: 41% Mémoire physique - RAM - totale: 16309.61 MB Mémoire physique - RAM - disponible: 9586.9 MB Mémoire virtuelle totale: 20277.61 MB Mémoire virtuelle disponible: 6976.98 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:464.55 GB) (Free:12.29 GB) (Model: CT500MX500SSD4) NTFS Drive d: (Nouveau nom) (Fixed) (Total:1863 GB) (Free:1168 GB) (Model: ST2000DM008-2FR102) NTFS \\?\Volume{cb11e98e-8c6c-485f-a003-472cb7c2af7a}\ () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS \\?\Volume{52e0919d-3db5-4a0f-9bf0-981af3e6c5d3}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS \\?\Volume{97a52ee1-bf3c-4c16-a98a-d05a1e762c83}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================