Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Exécuté par Tib (11-10-2024 11:20:07)
Exécuté depuis C:\Users\Tumul\Desktop
Microsoft Windows 11 Professionnel Version 23H2 22631.4317 (X64) (2023-02-25 01:52:18)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-4216679913-1369611402-4191549172-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4216679913-1369611402-4191549172-503 - Limited - Disabled)
Invité (S-1-5-21-4216679913-1369611402-4191549172-501 - Limited - Disabled)
Tib (S-1-5-21-4216679913-1369611402-4191549172-1001 - Administrator - Enabled) => C:\Users\Tumul
WDAGUtilityAccount (S-1-5-21-4216679913-1369611402-4191549172-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Avira Security (Enabled) {BE55A40C-05CA-1096-36EB-CCA92DEAF539}
FW: Avira Security (Enabled) {877B141C-E73B-9A54-223E-108CC963426A}
FW: Avira Security (Enabled) {71EC0A3F-391C-0E33-A103-0C8A6DF0EBF0}
FW: Avira Security (Enabled) {12CE3622-C811-64DE-1773-AA1774F2B8E1}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 5.05.16.529 - Advanced Micro Devices, Inc.)
AMD Embedded SMBus Driver (HKLM-x32\...\{7777BD2B-3159-481F-B7BE-CDCA7437506E}) (Version: 1.0.0.27 - Advanced Micro Devices, Inc.) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.24.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.8.1 - Advanced Micro Devices, Inc.)
AMD WDT Driver (HKLM-x32\...\{829757CD-C7EC-470B-A384-5C81698CDB1D}) (Version: 1.0.0.34 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{fa489a41-09bb-480e-95ff-0856f05112eb}) (Version: 5.05.16.529 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlestate Games Launcher 13.0.2.2031 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 13.0.2.2031 - Battlestate Games)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.28 - Piriform)
CORSAIR iCUE 4 Software (HKLM\...\{444A58EF-FD29-4558-BD8B-F4839576463C}) (Version: 4.33.138 - Corsair)
Discord (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\Discord) (Version: 1.0.9011 - Discord Inc.)
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.9.1.27622 - Battlestate Games)
Futuremark SystemInfo (HKLM-x32\...\{D442FA3B-E177-4191-A6E3-A30495912940}) (Version: 5.57.1161.0 - Futuremark)
Glorious Model D Software (HKLM-x32\...\{4D18F84D-F67A-47B8-B7BB-C2832B1D6C92}_is1) (Version: 1.0.3 - Glorious PC Gaming Race LLC.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 129.0.6668.100 - Google LLC)
Google Play Jeux bêta (HKLM\...\GooglePlayGames) (Version: 24.9.887.5 - Google LLC)
LibreOffice 7.6.7.2 (HKLM\...\{F77B9F35-B52D-4C13-AE7D-1F4C8127C505}) (Version: 7.6.7.2 - The Document Foundation)
Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 129.0.2792.79 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 129.0.2792.79 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\OneDriveSetup.exe) (Version: 24.181.0908.0001 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.25503 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation)
Opera Stable 113.0.5230.142 (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\Opera 113.0.5230.142) (Version: 113.0.5230.142 - Opera Software)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.21.1.18550 - Grinding Gear Games) Hidden
Path of Exile (HKLM-x32\...\{9b81dcb8-cb7a-441d-842e-ad85f6cdbd15}) (Version: 3.21.1.18550 - Grinding Gear Games)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.63.1014.2022 - Realtek)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version:  - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.92.2003_S7_R2 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.3.1 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{F05DCD8D-1F2A-469D-90EC-85BA65BA7D6D}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 145.1.10933 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
VALORANT (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\Riot Game valorant.live) (Version:  - Riot Games, Inc)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Winamax 1.42.2 (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\ba7c79aa-b28d-5f28-967f-0dcf5a943802) (Version: 1.42.2 - Winamax)
Zoom Workplace (HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\ZoomUMX) (Version: 6.0.11 (39959) - Zoom Video Communications, Inc.)

Packages:
=========

AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2024-09-18] (Advanced Micro Devices Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa [2024-09-11] (Apple Inc.) [Startup Task]
Microsoft Teams -> C:\Program Files\WindowsApps\MSTeams_24243.1309.3132.617_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft) [Startup Task]
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-24] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.168.0_x64__8wekyb3d8bbwe [2024-10-01] (Microsoft Corporation) [Startup Task]
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24091.30.0_x64__cw5n1h2txyewy [2024-10-10] (Microsoft Windows) [Startup Task]
Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-07] (Microsoft Corporation) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0 [2024-10-03] (Spotify AB) [Startup Task]
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.5.0.0_x64__8wekyb3d8bbwe [2024-09-15] (Microsoft Corporation)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-15] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.266.2241.0_x64__8wekyb3d8bbwe [2024-10-02] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-10-11] (Microsoft Windows)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-4216679913-1369611402-4191549172-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tumul\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.25503\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4216679913-1369611402-4191549172-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} =>  -> Pas de fichier
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} =>  -> Pas de fichier

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2024-10-05 13:20 - 2024-10-01 17:46 - 001006080 _____ () [Fichier non signé] C:\Program Files\Google\Play Games Services\Current\Service\libcrash_native_asset.so
2024-10-05 13:20 - 2024-10-01 17:46 - 004481024 _____ () [Fichier non signé] C:\Program Files\Google\Play Games Services\Current\Service\libmetrics_recorder_asset.so
2024-10-05 13:20 - 2024-10-01 17:46 - 011020288 _____ () [Fichier non signé] C:\Program Files\Google\Play Games Services\Current\Service\libportable_phenotype_asset.so
2024-10-05 13:20 - 2024-10-01 17:46 - 000545280 _____ () [Fichier non signé] C:\Program Files\Google\Play Games Services\Current\Service\libsystem_monitor_ffi.so
2024-10-05 13:20 - 2024-10-01 17:46 - 000538112 _____ () [Fichier non signé] C:\Program Files\Google\Play Games Services\Current\Service\libwin32_ffi.so
2023-01-17 14:13 - 2023-01-17 14:13 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Windows\system32\9EarsSurroundSound.dll:72B1DE377E [3434]
AlternateDataStreams: C:\Windows\tracing:? [16]
AlternateDataStreams: C:\ProgramData\BlueStacksServicesSetup.exe:D94DD88F37 [4290]
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat:D4F6BC83AF [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat.LOG1:94949E25BC [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat.LOG2:CCE2DBB696 [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat{523969d9-689e-11ef-b038-74563c3bcd35}.TM.blf:DCB4DF7203 [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat{523969d9-689e-11ef-b038-74563c3bcd35}.TMContainer00000000000000000001.regtrans-ms:0D1C689855 [4290]
AlternateDataStreams: C:\ProgramData\ntuser.dat{523969d9-689e-11ef-b038-74563c3bcd35}.TMContainer00000000000000000002.regtrans-ms:A4320C5245 [4290]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [4290]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [4290]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk:E77773B271 [4290]
AlternateDataStreams: C:\Users\Tumul\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Tumul\Application Data:9ed6e01d16b43ed60035852898458827 [394]
AlternateDataStreams: C:\Users\Tumul\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Tumul\AppData\Roaming:9ed6e01d16b43ed60035852898458827 [394]
AlternateDataStreams: C:\Users\Tumul\AppData\Local\Temp:$DATA​ [16]

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) =============


==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tumul\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "CORSAIR iCUE 4 Software"
HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_9DFDE1DC6DF89C270139A14EA340856A"
HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4216679913-1369611402-4191549172-1001\...\StartupApproved\Run: => "RiotClient"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{706AA8D6-0C78-4775-B7C2-55B8500D5A40}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe => Pas de fichier
FirewallRules: [{870C69C4-F90A-461F-A442-AF56E7E8CD5F}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe => Pas de fichier
FirewallRules: [{DFAAC9FE-7EBE-439B-A349-EDC95D2DEE4F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{13C8B85C-F4CE-4D27-8C2E-26984FEFD384}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{21C6723F-0ED7-4405-8770-F6A5D3BD4293}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CAB58E40-621B-4ABB-B25E-52A4A688759B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{356CF88B-4B96-412B-9183-74A591941611}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{5B2B2318-50E6-449F-B079-5FFF41AEFE6C}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{276AA75A-4267-41C7-93AC-D5323A83057D}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{65C3DFE0-CD44-4212-A8E2-797937CAF38E}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{33DF19C8-CEEF-4990-8590-1972AB710174}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [{2C18F22D-A68A-4B28-93BA-DCFFCB7EF3CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (Underwriters Laboratories Inc. -> )
FirewallRules: [TCP Query User{0B4B0633-27F8-41AC-AAB3-EA2480193CAB}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [UDP Query User{6E4C0329-C615-492A-8D74-2DADC03AA540}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [TCP Query User{F96AF9D8-5416-48BE-8BD4-82EE53AF30E6}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{8FFD4230-A117-4FBC-A165-56B78E910293}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{9ED415C5-4CDE-4E0E-B04D-C333C37D4250}] => (Block) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{FF7F61D1-3A2D-4C87-A4D2-60AE206B704F}] => (Block) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1114518936\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{5036A763-5DD0-4CE6-80E7-B8452C90A3E9}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1534680101\rainbowsix_vulkan.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1534680101\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{879B4C37-679C-4660-9760-420B23285822}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1534680101\rainbowsix_vulkan.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\1534680101\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{1E56AF62-2F37-47EE-B885-60BDE621C740}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\1302929010\rainbowsix_vulkan.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\1302929010\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{0472EDF0-0E51-4C5A-8BE8-72B74676F062}C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\1302929010\rainbowsix_vulkan.exe] => (Allow) C:\users\tumul\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\1302929010\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{5FBA20E7-70BF-4F3A-A033-EEF3BC0F285C}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{C6031D66-5957-48A5-B2E3-8BA93E7BE06F}] => (Allow) C:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{D5B477A0-D4B9-481E-AE76-B70659994AA8}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{AF66018F-BED2-4FBC-9ACF-C8A74E9311AE}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{D1F87794-CFAA-4484-A0CC-C79880D8B587}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Returnal\Returnal\Binaries\Win64\Launcher.exe => Pas de fichier
FirewallRules: [{6D9379A9-29B6-4D11-A056-FE9886A8EE7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Returnal\Returnal\Binaries\Win64\Launcher.exe => Pas de fichier
FirewallRules: [{A0B115BA-48A0-4025-9237-B876DCCDA658}] => (Allow) C:\Users\Tumul\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{489538AE-2D65-47A0-8FBE-EC452ABE4F53}] => (Allow) C:\Users\Tumul\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{288B878D-0BF7-48CA-B53C-A9CA5B0D0995}] => (Allow) C:\Users\Tumul\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{165509D6-39EC-49F4-9C0B-59B2370749C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => Pas de fichier
FirewallRules: [{DDF74735-996B-43C3-94BD-BC3AB46FBF7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => Pas de fichier
FirewallRules: [{19C38EA2-8A00-4C44-BF54-2514A73F94F6}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24165.1306.2986.9504_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B49F60DA-13DA-4098-A607-DE80326649A8}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24165.1306.2986.9504_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{28396D2D-4F79-4B1E-B264-103C298F2913}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => Pas de fichier
FirewallRules: [{1BF1BEED-D0F8-481A-BF9D-6E80A26BD6FD}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Downloaded\Public\Warframe.x64.exe => Pas de fichier
FirewallRules: [{B3752B88-D5F5-4AE3-93E1-DDFBB0883CB2}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Downloaded\Public\Warframe.x64.exe => Pas de fichier
FirewallRules: [{B36B9D78-9675-4004-8452-E08CB1A1437F}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => Pas de fichier
FirewallRules: [{EF190B31-CAC9-4CDC-96C6-11B029A994BC}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe => Pas de fichier
FirewallRules: [{2030193E-5F78-4509-9AFB-597F25E47731}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Downloaded\Public\Warframe.x64.exe => Pas de fichier
FirewallRules: [{A3BF5CB7-543C-4CA3-AA68-9EBF18189016}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Downloaded\Public\Warframe.x64.exe => Pas de fichier
FirewallRules: [{D29ADA03-E762-4F0B-BEED-EB244BD2AF76}] => (Allow) C:\Users\Tumul\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe => Pas de fichier
FirewallRules: [TCP Query User{8A3654BD-9B58-44FF-8527-4E45217C3DB5}C:\program files (x86)\steam\steamapps\common\blackmythwukong\b1\binaries\win64\b1-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blackmythwukong\b1\binaries\win64\b1-win64-shipping.exe => Pas de fichier
FirewallRules: [UDP Query User{203E0584-1A17-4EC8-8515-54AE99618ADC}C:\program files (x86)\steam\steamapps\common\blackmythwukong\b1\binaries\win64\b1-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\blackmythwukong\b1\binaries\win64\b1-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{66943D91-AC11-43E8-B465-62E150FF005B}C:\users\tumul\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\tumul\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{434C608E-8AFE-4FC5-85C7-68645CD04B14}C:\users\tumul\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\tumul\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{A266D73E-EE3F-4A44-9BFA-94804131DE05}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{0BABC584-5555-469F-8780-98841CEE9746}C:\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) C:\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{6B5944E2-006C-4610-AB00-3F110C05D21F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{33B0103D-7DA7-4245-B51F-D4DB035C8B9C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2AF34375-F1FF-4AA4-9F18-DD68CC4A09C5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{CF091519-18DB-49FC-BFD7-9C42E8DED8CA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{66424081-FB46-48ED-8803-406152BCDC7D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{17DB808F-A1DF-42B6-B8A4-85D54A4A371A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B0EE67E6-FF3F-428D-9914-FBFE06C07E95}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E4828713-C148-4AAB-BC0C-F0D3564F378C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [TCP Query User{216D942C-4716-4996-8C96-CC9083C0C50C}C:\users\tumul\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\tumul\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{B55952C0-580D-4E0E-AC40-9972E45B2F34}C:\users\tumul\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\tumul\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{9BD58863-0981-4449-AA30-E5F5AECBC401}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher)
FirewallRules: [{ADECBE1A-768D-4FA8-91E4-E662E4AC0E22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher)
FirewallRules: [TCP Query User{B7250425-70E6-4A87-8EF8-3E99065C63E1}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{73CB0562-7E7E-4F00-82AF-B9E29B53994C}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [TCP Query User{ECD094D0-6B88-4C31-A527-10C44DF12C93}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [UDP Query User{49884287-4DA9-4AAC-A44C-5400D547B325}C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> )
FirewallRules: [{2049A1E3-5358-4DB1-8F71-8C481C1283D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C6D2B705-3298-49D8-947B-F92E08CA0757}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693D76BB-4345-45BE-9A00-95C15A8F1C45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{897AD2F6-32FF-4B55-B251-7A5C4FC68198}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{98920BC2-8F37-4157-AA1B-42D371104DFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{379AEF34-6FE4-49EF-AD0A-A4C5D937A2C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A15A5A3-9957-4D32-AE58-A0FE5CB5E7C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EF8BB6B6-6863-4E79-B2B3-A1A465F2E67C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4702B65-D578-48F1-A87D-065C04CC3124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3D91075-9A1E-4440-83E2-08734A43729B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FB1600C3-7FF6-4644-995E-A3D88A4AED2C}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24243.1309.3132.617_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9BC3203B-A26F-4F60-A9DF-CCD9C9AC669A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24243.1309.3132.617_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{681E8A97-89D1-455E-9FC4-5D955476636C}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.79\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B2B4F524-D919-4383-AD61-F14CE8567CAB}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{405EA7C4-7C73-419B-A3C4-CFA488E968F8}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{BE745437-D4F8-4E78-97FD-2DFD22EF473B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

05-10-2024 13:19:20 Windows Update
08-10-2024 19:43:57 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: Android ADB Interface
Description: Android ADB Interface
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Google, Inc.
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (10/01/2024 11:37:13 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer défragmentation sur \\?\Volume{d61f8353-f050-11ee-b009-74563c3bcd35}\ car : Les volumes ne peuvent pas être optimisés en raison du type de système de fichiers non pris en charge (0x8900002F)

Error: (10/01/2024 10:10:30 AM) (Source: Application Error) (EventID: 1000) (User: PC-TIB-FIXE)
Description: Nom de l’application défaillante bg3_dx11.exe, version : 4.59.32.596, horodatage : 0x66eaf23e
Nom du module défaillant : ucrtbase.dll, version : 10.0.22621.3593, horodatage : 0x10c46e71
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007f6fe
ID du processus défaillant : 0x0x1b20
Heure de début de l’application défaillante : 0x0x1db13cd840789b8
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\Baldurs Gate 3\bin\bg3_dx11.exe
Chemin d’accès du module défaillant: C:\Windows\System32\ucrtbase.dll
ID de rapport : 463f396d-9871-41d3-9373-5b2956f47bd4
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/27/2024 11:39:12 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours..

Error: (09/27/2024 11:39:12 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.]

Error: (09/23/2024 07:47:30 PM) (Source: Application Error) (EventID: 1000) (User: PC-TIB-FIXE)
Description: Nom de l’application défaillante RiotClientServices.exe, version : 94.0.0.2067, horodatage : 0x69a1d02a
Nom du module défaillant : RiotClientFoundation.dll_unloaded, version : 94.0.0.2067, horodatage : 0x20943fcd
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000759fd0
ID du processus défaillant : 0x0x395c
Heure de début de l’application défaillante : 0x0x1db0de0a8d2a9f4
Chemin d’accès de l’application défaillante : C:\Riot Games\Riot Client\RiotClientServices.exe
Chemin d’accès du module défaillant: RiotClientFoundation.dll
ID de rapport : a14a29a7-c6ce-4c72-af67-98c300f884d5
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/22/2024 08:10:36 PM) (Source: Application Error) (EventID: 1000) (User: PC-TIB-FIXE)
Description: Nom de l’application défaillante RiotClientServices.exe, version : 94.0.0.2067, horodatage : 0x69a1d02a
Nom du module défaillant : ntdll.dll, version : 10.0.22621.4111, horodatage : 0x518e67bb
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000001e609
ID du processus défaillant : 0x0x106c
Heure de début de l’application défaillante : 0x0x1db0d1ab89cff87
Chemin d’accès de l’application défaillante : C:\Riot Games\Riot Client\RiotClientServices.exe
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : f8b1e354-a7e9-42ab-b4e4-e3b33a1af757
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/22/2024 10:32:18 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer défragmentation sur \\?\Volume{d61f8353-f050-11ee-b009-74563c3bcd35}\ car : Les volumes ne peuvent pas être optimisés en raison du type de système de fichiers non pris en charge (0x8900002F)

Error: (09/22/2024 10:02:07 AM) (Source: Application Error) (EventID: 1000) (User: PC-TIB-FIXE)
Description: Nom de l’application défaillante b1-Win64-Shipping.exe, version : 5.0.0.0, horodatage : 0x66caacff
Nom du module défaillant : crashhandler64.dll, version : 9.18.90.86, horodatage : 0x66e9e02b
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0000000000034bb1
ID du processus défaillant : 0x0x50f8
Heure de début de l’application défaillante : 0x0x1db0cb35edad23c
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\BlackMythWukong\b1\Binaries\Win64\b1-Win64-Shipping.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\crashhandler64.dll
ID de rapport : 5b321856-9f3e-4c90-a9c6-b6227021089f
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (10/11/2024 08:44:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (10/11/2024 08:44:26 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate).

Error: (10/11/2024 08:43:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service AMDRyzenMasterDriverV26 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (10/11/2024 08:43:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service AMDRyzenMasterDriverV26 n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (10/11/2024 08:42:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service GameInput Service s’est terminé de façon inattendue pour la 6ème fois.

Error: (10/11/2024 08:42:30 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service GameInput Service s’est arrêté avec l’erreur : 
Le fichier composé GameInput Service a été produit avec une version plus récente de la mémoire.

Error: (10/11/2024 08:42:29 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service GameInput Service s’est terminé de manière inattendue. Ceci s’est produit 5 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service.

Error: (10/11/2024 08:42:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service GameInput Service s’est arrêté avec l’erreur : 
Le fichier composé GameInput Service a été produit avec une version plus récente de la mémoire.


Windows Defender:
================
Date: 2024-10-07 19:39:13
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {8D1BAA95-7654-46BF-B600-7722D73957ED}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2024-10-06 00:25:13
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {79E06871-DFBE-4B6C-859C-EF1CE3CF180E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2024-10-05 21:10:04
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {27DAC2C2-A5A1-4BC4-B3F1-49A1EAC3EB5B}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2024-10-02 11:52:49
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A0280626-1F21-4E94-9A18-809D4FB5824C}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2024-09-27 11:32:44
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {6E3DBC99-55F5-4A60-B589-CA3D7ADAA370}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]

Date: 2023-09-14 08:06:21
Description: 
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité : 
Version précédente de la veille de sécurité : 1.397.904.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : 
Version précédente du moteur : 1.1.23080.2005
Code d’erreur : 0x80240016
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. 

CodeIntegrity:
===============
Date: 2024-10-07 14:41:32
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

Date: 2024-09-04 08:43:20
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\x64\com_antivirus.dll that did not meet the Windows signing level requirements.

Date: 2024-09-04 08:41:26
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\x64\com_antivirus.dll that did not meet the Windows signing level requirements.

Date: 2024-09-04 08:34:25
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky 21.18\x64\com_antivirus.dll that did not meet the Windows signing level requirements.


==================== Infos Mémoire =========================== 

BIOS: American Megatrends International, LLC. F15 08/26/2022
Carte mère: Gigabyte Technology Co., Ltd. A520M H
Processeur: AMD Ryzen 5 5500 
Pourcentage de mémoire utilisée: 46%
Mémoire physique - RAM - totale: 16256.37 MB
Mémoire physique - RAM - disponible: 8723.88 MB
Mémoire virtuelle totale: 33664.37 MB
Mémoire virtuelle disponible: 18652.98 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:464.94 GB) (Free:86.24 GB) (Model: KINGSTON SNV2S500G) NTFS
Drive d: () (Removable) (Total:0 GB) (Free:0 GB) 

\\?\Volume{fb23970d-5b39-4bc9-a5b0-f9273f55d96a}\ () (Fixed) (Total:0.7 GB) (Free:0.1 GB) NTFS
\\?\Volume{6d20da3b-c49d-4120-a907-328eb522c2fd}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 29.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt =======================