Re: LMT Anti Logger #
Publié par Washington le 30/05/2020 13:07:49
Citation :
LMT Anti Logger v 3.9.3 n'a pas fonctionné sur ma tour testeur.
Ci-joint, une capture d'écran du répertoire "Crash" de Windows 10 Pro 64-bit.
Ci-joint également, l'intérieur du fichier Report.wer:
Version=1
EventType=CLR20r3
EventTime=132353096166770052
ReportType=2
Consent=1
UploadTime=132353096210337809
ReportStatus=100
ReportIdentifier=8e393017-9abb-4db3-8fe7-709e1199f8a4
IntegratorReportIdentifier=644e1995-c9cc-4f25-8830-ed60e7cd1921
Wow64Host=34404
NsAppName=LMT Anti Logger.exe
OriginalFilename=LMT Anti Logger.exe
AppSessionGuid=000004b4-0001-0040-7941-8d887036d601
TargetAppId=W:0000eda8eb519938a517d28c7a5d879144cc0000ffff!0000edfc517bb984827c10d20acb2b774e4d30f55634!LMT Anti Logger.exe
TargetAppVer=2101//11//09:23:45:01!0!LMT Anti Logger.exe
BootId=4294967295
ServiceSplit=2324627640
TargetAsId=418
IsFatal=1
EtwNonCollectReason=1
Response.type=4
Sig[0].Name=Problem Signature 01
Sig[0].Value=LMT Anti Logger.exe
Sig[1].Name=Problem Signature 02
Sig[1].Value=3.9.3.0
Sig[2].Name=Problem Signature 03
Sig[2].Value=f8042c7d
Sig[3].Name=Problem Signature 04
Sig[3].Value=PresentationFramework
Sig[4].Name=Problem Signature 05
Sig[4].Value=4.8.4180.0
Sig[5].Name=Problem Signature 06
Sig[5].Value=5e7d255f
Sig[6].Name=Problem Signature 07
Sig[6].Value=2388
Sig[7].Name=Problem Signature 08
Sig[7].Value=0
Sig[8].Name=Problem Signature 09
Sig[8].Value=System.Windows.Markup.XamlParse
DynamicSig[1].Name=OS Version
DynamicSig[1].Value=10.0.18363.2.0.0.256.48
DynamicSig[2].Name=Locale ID
DynamicSig[2].Value=1033
DynamicSig[22].Name=Additional Information 1
DynamicSig[22].Value=10dc
DynamicSig[23].Name=Additional Information 2
DynamicSig[23].Value=10dcd86ebf5c23a5f372941c93064187
DynamicSig[24].Name=Additional Information 3
DynamicSig[24].Value=0d00
DynamicSig[25].Name=Additional Information 4
DynamicSig[25].Value=0d0030da06a24af7c744b387444b9914
UI[2]=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
LoadedModule[0]=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
LoadedModule[1]=C:\WINDOWS\SYSTEM32\ntdll.dll
LoadedModule[2]=C:\WINDOWS\SYSTEM32\MSCOREE.DLL
LoadedModule[3]=C:\WINDOWS\System32\KERNEL32.dll
LoadedModule[4]=C:\WINDOWS\System32\KERNELBASE.dll
LoadedModule[5]=C:\WINDOWS\SYSTEM32\apphelp.dll
LoadedModule[6]=C:\WINDOWS\System32\ADVAPI32.dll
LoadedModule[7]=C:\WINDOWS\System32\msvcrt.dll
LoadedModule[8]=C:\WINDOWS\System32\sechost.dll
LoadedModule[9]=C:\WINDOWS\System32\RPCRT4.dll
LoadedModule[10]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
LoadedModule[11]=C:\WINDOWS\System32\SHLWAPI.dll
LoadedModule[12]=C:\WINDOWS\System32\combase.dll
LoadedModule[13]=C:\WINDOWS\System32\ucrtbase.dll
LoadedModule[14]=C:\WINDOWS\System32\bcryptPrimitives.dll
LoadedModule[15]=C:\WINDOWS\System32\GDI32.dll
LoadedModule[16]=C:\WINDOWS\System32\win32u.dll
LoadedModule[17]=C:\WINDOWS\System32\gdi32full.dll
LoadedModule[18]=C:\WINDOWS\System32\msvcp_win.dll
LoadedModule[19]=C:\WINDOWS\System32\USER32.dll
LoadedModule[20]=C:\WINDOWS\System32\IMM32.DLL
LoadedModule[21]=C:\WINDOWS\System32\kernel.appcore.dll
LoadedModule[22]=C:\WINDOWS\SYSTEM32\VERSION.dll
LoadedModule[23]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
LoadedModule[24]=C:\WINDOWS\SYSTEM32\VCRUNTIME140_CLR0400.dll
LoadedModule[25]=C:\WINDOWS\SYSTEM32\ucrtbase_clr0400.dll
LoadedModule[26]=C:\WINDOWS\System32\psapi.dll
LoadedModule[27]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\mscorlib\5c1b7b73113a6f079ae59ad2eb210951\mscorlib.ni.dll
LoadedModule[28]=C:\WINDOWS\System32\ole32.dll
LoadedModule[29]=C:\WINDOWS\system32\uxtheme.dll
LoadedModule[30]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
LoadedModule[31]=C:\WINDOWS\SYSTEM32\wldp.dll
LoadedModule[32]=C:\WINDOWS\System32\CRYPT32.dll
LoadedModule[33]=C:\WINDOWS\System32\MSASN1.dll
LoadedModule[34]=C:\WINDOWS\System32\WINTRUST.dll
LoadedModule[35]=C:\WINDOWS\SYSTEM32\amsi.dll
LoadedModule[36]=C:\WINDOWS\System32\cryptsp.dll
LoadedModule[37]=C:\WINDOWS\SYSTEM32\USERENV.dll
LoadedModule[38]=C:\WINDOWS\System32\profapi.dll
LoadedModule[39]=C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpOav.dll
LoadedModule[40]=C:\WINDOWS\System32\OLEAUT32.dll
LoadedModule[41]=C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MPCLIENT.DLL
LoadedModule[42]=C:\WINDOWS\SYSTEM32\gpapi.dll
LoadedModule[43]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System\2d73de3e20f8b181b282eb1c24cb3073\System.ni.dll
LoadedModule[44]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Core\5be0e32e110e62f2b02a97dded898863\System.Core.ni.dll
LoadedModule[45]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WindowsBase\1f77e08b34793b6b05ad6a623b6bbc2e\WindowsBase.ni.dll
LoadedModule[46]=C:\WINDOWS\system32\rsaenh.dll
LoadedModule[47]=C:\WINDOWS\System32\bcrypt.dll
LoadedModule[48]=C:\WINDOWS\SYSTEM32\CRYPTBASE.dll
LoadedModule[49]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\PresentationCore\9754e52c25640218a14bdc3a3769ac4b\PresentationCore.ni.dll
LoadedModule[50]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\d3b2b6e4bea7ab5bef5c2ccd8159eed0\PresentationFramework.ni.dll
LoadedModule[51]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xaml\890f4e7a3c8591ffbcf7c4ff4938ec43\System.Xaml.ni.dll
LoadedModule[52]=C:\WINDOWS\SYSTEM32\dwrite.dll
LoadedModule[53]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
LoadedModule[54]=C:\WINDOWS\SYSTEM32\MSVCP140_CLR0400.dll
LoadedModule[55]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
LoadedModule[56]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Configuration\01a803d5d807f5fb10aed394638e8c31\System.Configuration.ni.dll
LoadedModule[57]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xml\c32f66994327be8a18db9876b49ebbee\System.Xml.ni.dll
LoadedModule[58]=C:\WINDOWS\System32\shell32.dll
LoadedModule[59]=C:\WINDOWS\System32\cfgmgr32.dll
LoadedModule[60]=C:\WINDOWS\System32\shcore.dll
LoadedModule[61]=C:\WINDOWS\System32\windows.storage.dll
LoadedModule[62]=C:\WINDOWS\System32\powrprof.dll
LoadedModule[63]=C:\WINDOWS\System32\UMPDC.dll
LoadedModule[64]=C:\WINDOWS\System32\MSCTF.dll
LoadedModule[65]=C:\WINDOWS\System32\clbcatq.dll
LoadedModule[66]=C:\Windows\System32\taskschd.dll
LoadedModule[67]=C:\Windows\System32\SspiCli.dll
LoadedModule[68]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Manaa57fc8cc#\06fc9ebfb2d47c629e815c97f9774b23\System.Management.Automation.ni.dll
LoadedModule[69]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P1706cafe#\9674d2212dc4c6adca02d922f9e12c30\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
LoadedModule[70]=C:\Windows\System32\MSISIP.DLL
LoadedModule[71]=C:\WINDOWS\System32\coml2.dll
LoadedModule[72]=C:\Windows\System32\wshext.dll
LoadedModule[73]=C:\Windows\System32\AppxSip.dll
LoadedModule[74]=C:\WINDOWS\SYSTEM32\tdh.dll
LoadedModule[75]=C:\WINDOWS\SYSTEM32\OpcServices.DLL
LoadedModule[76]=C:\WINDOWS\SYSTEM32\XmlLite.dll
LoadedModule[77]=C:\WINDOWS\SYSTEM32\mintdh.dll
LoadedModule[78]=C:\WINDOWS\SYSTEM32\urlmon.dll
LoadedModule[79]=C:\WINDOWS\SYSTEM32\iertutil.dll
LoadedModule[80]=C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
LoadedModule[81]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\fc5695c3b8600c9992611c3ad73cd08c\System.Configuration.Install.ni.dll
LoadedModule[82]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Pb378ec07#\0558b2bea9d6056ad188445308cb7e5f\Microsoft.PowerShell.ConsoleHost.ni.dll
LoadedModule[83]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P521220ea#\f184ed11b6f66a9a627bf3850aa1da36\Microsoft.PowerShell.Commands.Utility.ni.dll
LoadedModule[84]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Pae3498d9#\5301dc01d17c41d43642fbce3210d15a\Microsoft.PowerShell.Commands.Management.ni.dll
LoadedModule[85]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Mf49f6405#\e3493a9830573753cefb4bde6e2182ce\Microsoft.Management.Infrastructure.ni.dll
LoadedModule[86]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P6f792626#\e920188151246d6385a416a62bd0c115\Microsoft.PowerShell.Security.ni.dll
LoadedModule[87]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.We0722664#\08d8d783c70ae66c47c64734c0828e92\Microsoft.WSMan.Management.ni.dll
LoadedModule[88]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Data\40324b44b308b2a7d30534c7b7d9185b\System.Data.ni.dll
LoadedModule[89]=C:\WINDOWS\Microsoft.Net\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
LoadedModule[90]=C:\WINDOWS\System32\WS2_32.dll
LoadedModule[91]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Management\8954090bb02f1e74f8b57ac10640ac4b\System.Management.ni.dll
LoadedModule[92]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Dired13b18a9#\b8fbfa4a8a4b94de0f6cf3a8878acbe6\System.DirectoryServices.ni.dll
LoadedModule[93]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Numerics\add20c6c7a9123ab1cb9ccc01c51feca\System.Numerics.ni.dll
LoadedModule[94]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Transactions\8cef7002f5f198d588f27b3d8f732315\System.Transactions.ni.dll
LoadedModule[95]=C:\WINDOWS\Microsoft.Net\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
LoadedModule[96]=C:\WINDOWS\SYSTEM32\secur32.dll
LoadedModule[97]=C:\Windows\System32\cryptnet.dll
LoadedModule[98]=C:\WINDOWS\SYSTEM32\PROPSYS.dll
LoadedModule[99]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.M870d558a#\f3df123a7393f2bba20f25d8c6fc8226\Microsoft.Management.Infrastructure.Native.ni.dll
LoadedModule[100]=C:\WINDOWS\SYSTEM32\Microsoft.Management.Infrastructure.Native.Unmanaged.DLL
LoadedModule[101]=C:\WINDOWS\SYSTEM32\mi.dll
LoadedModule[102]=C:\WINDOWS\SYSTEM32\miutils.dll
LoadedModule[103]=C:\WINDOWS\system32\wmidcom.dll
LoadedModule[104]=C:\WINDOWS\SYSTEM32\DPAPI.DLL
LoadedModule[105]=C:\WINDOWS\system32\wbem\wbemprox.dll
LoadedModule[106]=C:\WINDOWS\SYSTEM32\wbemcomn.dll
LoadedModule[107]=C:\WINDOWS\system32\wbem\wbemsvc.dll
LoadedModule[108]=C:\WINDOWS\system32\wbem\fastprox.dll
LoadedModule[109]=C:\WINDOWS\SYSTEM32\iphlpapi.dll
LoadedModule[110]=C:\WINDOWS\SYSTEM32\DNSAPI.dll
LoadedModule[111]=C:\WINDOWS\System32\NSI.dll
LoadedModule[112]=C:\WINDOWS\SYSTEM32\dhcpcsvc6.DLL
LoadedModule[113]=C:\WINDOWS\SYSTEM32\dhcpcsvc.DLL
LoadedModule[114]=C:\WINDOWS\SYSTEM32\WINNSI.DLL
LoadedModule[115]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\1298713307536b22b4a10c2093c69a33\System.Runtime.Serialization.ni.dll
LoadedModule[116]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\diasymreader.dll
OsInfo[0].Key=vermaj
OsInfo[0].Value=10
OsInfo[1].Key=vermin
OsInfo[1].Value=0
OsInfo[2].Key=verbld
OsInfo[2].Value=18363
OsInfo[3].Key=ubr
OsInfo[3].Value=836
OsInfo[4].Key=versp
OsInfo[4].Value=0
OsInfo[5].Key=arch
OsInfo[5].Value=9
OsInfo[6].Key=lcid
OsInfo[6].Value=4105
OsInfo[7].Key=geoid
OsInfo[7].Value=39
OsInfo[8].Key=sku
OsInfo[8].Value=48
OsInfo[9].Key=domain
OsInfo[9].Value=0
OsInfo[10].Key=prodsuite
OsInfo[10].Value=256
OsInfo[11].Key=ntprodtype
OsInfo[11].Value=1
OsInfo[12].Key=platid
OsInfo[12].Value=10
OsInfo[13].Key=sr
OsInfo[13].Value=0
OsInfo[14].Key=tmsi
OsInfo[14].Value=402648
OsInfo[15].Key=osinsty
OsInfo[15].Value=3
OsInfo[16].Key=iever
OsInfo[16].Value=11.836.18362.0-11.0.190
OsInfo[17].Key=portos
OsInfo[17].Value=0
OsInfo[18].Key=ram
OsInfo[18].Value=3931
OsInfo[19].Key=svolsz
OsInfo[19].Value=83
OsInfo[20].Key=wimbt
OsInfo[20].Value=0
OsInfo[21].Key=blddt
OsInfo[21].Value=190318
OsInfo[22].Key=bldtm
OsInfo[22].Value=1202
OsInfo[23].Key=bldbrch
OsInfo[23].Value=19h1_release
OsInfo[24].Key=bldchk
OsInfo[24].Value=0
OsInfo[25].Key=wpvermaj
OsInfo[25].Value=0
OsInfo[26].Key=wpvermin
OsInfo[26].Value=0
OsInfo[27].Key=wpbuildmaj
OsInfo[27].Value=0
OsInfo[28].Key=wpbuildmin
OsInfo[28].Value=0
OsInfo[29].Key=osver
OsInfo[29].Value=10.0.18362.836.amd64fre.19h1_release.190318-1202
OsInfo[30].Key=buildflightid
OsInfo[30].Value=2d8eb154-7875-4e36-a93e-76c075c27b0f
OsInfo[31].Key=edition
OsInfo[31].Value=Professional
OsInfo[32].Key=ring
OsInfo[32].Value=Retail
OsInfo[33].Key=expid
OsInfo[34].Key=containerid
OsInfo[35].Key=containertype
OsInfo[36].Key=edu
OsInfo[36].Value=0
File[0].CabName=WERInternalMetadata.xml
File[0].Path=WER45DB.tmp.WERInternalMetadata.xml
File[0].Flags=327683
File[0].Type=5
File[0].Original.Path=\\?\C:\ProgramData\Microsoft\Windows\WER\Temp\WER45DB.tmp.WERInternalMetadata.xml
FriendlyEventName=Stopped working
ConsentKey=CLR20r3
AppName=LMT Anti Logger
AppPath=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
NsPartner=windows
NsGroup=windows8
ApplicationIdentity=A62CB0E70B121CF476BCCEB345DE5092
MetadataHash=2053112868
Fichier(s) attaché(s):
LMT directory.jpg (80.21 KB)
Sylvie a écrit:
Le non fonctionnement se traduit comment ? y a-t-il des messages d'erreur ?
Quels réglages ont été faits dans l'application ?
y a-t-il d'autres logiciels avec des fonctions similaires en cours d'exécution ?
Des informations complémentaires pourraient aider le développeur.
LMT Anti Logger v 3.9.3 n'a pas fonctionné sur ma tour testeur.
Ci-joint, une capture d'écran du répertoire "Crash" de Windows 10 Pro 64-bit.
Ci-joint également, l'intérieur du fichier Report.wer:
Version=1
EventType=CLR20r3
EventTime=132353096166770052
ReportType=2
Consent=1
UploadTime=132353096210337809
ReportStatus=100
ReportIdentifier=8e393017-9abb-4db3-8fe7-709e1199f8a4
IntegratorReportIdentifier=644e1995-c9cc-4f25-8830-ed60e7cd1921
Wow64Host=34404
NsAppName=LMT Anti Logger.exe
OriginalFilename=LMT Anti Logger.exe
AppSessionGuid=000004b4-0001-0040-7941-8d887036d601
TargetAppId=W:0000eda8eb519938a517d28c7a5d879144cc0000ffff!0000edfc517bb984827c10d20acb2b774e4d30f55634!LMT Anti Logger.exe
TargetAppVer=2101//11//09:23:45:01!0!LMT Anti Logger.exe
BootId=4294967295
ServiceSplit=2324627640
TargetAsId=418
IsFatal=1
EtwNonCollectReason=1
Response.type=4
Sig[0].Name=Problem Signature 01
Sig[0].Value=LMT Anti Logger.exe
Sig[1].Name=Problem Signature 02
Sig[1].Value=3.9.3.0
Sig[2].Name=Problem Signature 03
Sig[2].Value=f8042c7d
Sig[3].Name=Problem Signature 04
Sig[3].Value=PresentationFramework
Sig[4].Name=Problem Signature 05
Sig[4].Value=4.8.4180.0
Sig[5].Name=Problem Signature 06
Sig[5].Value=5e7d255f
Sig[6].Name=Problem Signature 07
Sig[6].Value=2388
Sig[7].Name=Problem Signature 08
Sig[7].Value=0
Sig[8].Name=Problem Signature 09
Sig[8].Value=System.Windows.Markup.XamlParse
DynamicSig[1].Name=OS Version
DynamicSig[1].Value=10.0.18363.2.0.0.256.48
DynamicSig[2].Name=Locale ID
DynamicSig[2].Value=1033
DynamicSig[22].Name=Additional Information 1
DynamicSig[22].Value=10dc
DynamicSig[23].Name=Additional Information 2
DynamicSig[23].Value=10dcd86ebf5c23a5f372941c93064187
DynamicSig[24].Name=Additional Information 3
DynamicSig[24].Value=0d00
DynamicSig[25].Name=Additional Information 4
DynamicSig[25].Value=0d0030da06a24af7c744b387444b9914
UI[2]=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
LoadedModule[0]=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
LoadedModule[1]=C:\WINDOWS\SYSTEM32\ntdll.dll
LoadedModule[2]=C:\WINDOWS\SYSTEM32\MSCOREE.DLL
LoadedModule[3]=C:\WINDOWS\System32\KERNEL32.dll
LoadedModule[4]=C:\WINDOWS\System32\KERNELBASE.dll
LoadedModule[5]=C:\WINDOWS\SYSTEM32\apphelp.dll
LoadedModule[6]=C:\WINDOWS\System32\ADVAPI32.dll
LoadedModule[7]=C:\WINDOWS\System32\msvcrt.dll
LoadedModule[8]=C:\WINDOWS\System32\sechost.dll
LoadedModule[9]=C:\WINDOWS\System32\RPCRT4.dll
LoadedModule[10]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
LoadedModule[11]=C:\WINDOWS\System32\SHLWAPI.dll
LoadedModule[12]=C:\WINDOWS\System32\combase.dll
LoadedModule[13]=C:\WINDOWS\System32\ucrtbase.dll
LoadedModule[14]=C:\WINDOWS\System32\bcryptPrimitives.dll
LoadedModule[15]=C:\WINDOWS\System32\GDI32.dll
LoadedModule[16]=C:\WINDOWS\System32\win32u.dll
LoadedModule[17]=C:\WINDOWS\System32\gdi32full.dll
LoadedModule[18]=C:\WINDOWS\System32\msvcp_win.dll
LoadedModule[19]=C:\WINDOWS\System32\USER32.dll
LoadedModule[20]=C:\WINDOWS\System32\IMM32.DLL
LoadedModule[21]=C:\WINDOWS\System32\kernel.appcore.dll
LoadedModule[22]=C:\WINDOWS\SYSTEM32\VERSION.dll
LoadedModule[23]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
LoadedModule[24]=C:\WINDOWS\SYSTEM32\VCRUNTIME140_CLR0400.dll
LoadedModule[25]=C:\WINDOWS\SYSTEM32\ucrtbase_clr0400.dll
LoadedModule[26]=C:\WINDOWS\System32\psapi.dll
LoadedModule[27]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\mscorlib\5c1b7b73113a6f079ae59ad2eb210951\mscorlib.ni.dll
LoadedModule[28]=C:\WINDOWS\System32\ole32.dll
LoadedModule[29]=C:\WINDOWS\system32\uxtheme.dll
LoadedModule[30]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
LoadedModule[31]=C:\WINDOWS\SYSTEM32\wldp.dll
LoadedModule[32]=C:\WINDOWS\System32\CRYPT32.dll
LoadedModule[33]=C:\WINDOWS\System32\MSASN1.dll
LoadedModule[34]=C:\WINDOWS\System32\WINTRUST.dll
LoadedModule[35]=C:\WINDOWS\SYSTEM32\amsi.dll
LoadedModule[36]=C:\WINDOWS\System32\cryptsp.dll
LoadedModule[37]=C:\WINDOWS\SYSTEM32\USERENV.dll
LoadedModule[38]=C:\WINDOWS\System32\profapi.dll
LoadedModule[39]=C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpOav.dll
LoadedModule[40]=C:\WINDOWS\System32\OLEAUT32.dll
LoadedModule[41]=C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MPCLIENT.DLL
LoadedModule[42]=C:\WINDOWS\SYSTEM32\gpapi.dll
LoadedModule[43]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System\2d73de3e20f8b181b282eb1c24cb3073\System.ni.dll
LoadedModule[44]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Core\5be0e32e110e62f2b02a97dded898863\System.Core.ni.dll
LoadedModule[45]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WindowsBase\1f77e08b34793b6b05ad6a623b6bbc2e\WindowsBase.ni.dll
LoadedModule[46]=C:\WINDOWS\system32\rsaenh.dll
LoadedModule[47]=C:\WINDOWS\System32\bcrypt.dll
LoadedModule[48]=C:\WINDOWS\SYSTEM32\CRYPTBASE.dll
LoadedModule[49]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\PresentationCore\9754e52c25640218a14bdc3a3769ac4b\PresentationCore.ni.dll
LoadedModule[50]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\d3b2b6e4bea7ab5bef5c2ccd8159eed0\PresentationFramework.ni.dll
LoadedModule[51]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xaml\890f4e7a3c8591ffbcf7c4ff4938ec43\System.Xaml.ni.dll
LoadedModule[52]=C:\WINDOWS\SYSTEM32\dwrite.dll
LoadedModule[53]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
LoadedModule[54]=C:\WINDOWS\SYSTEM32\MSVCP140_CLR0400.dll
LoadedModule[55]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
LoadedModule[56]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Configuration\01a803d5d807f5fb10aed394638e8c31\System.Configuration.ni.dll
LoadedModule[57]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xml\c32f66994327be8a18db9876b49ebbee\System.Xml.ni.dll
LoadedModule[58]=C:\WINDOWS\System32\shell32.dll
LoadedModule[59]=C:\WINDOWS\System32\cfgmgr32.dll
LoadedModule[60]=C:\WINDOWS\System32\shcore.dll
LoadedModule[61]=C:\WINDOWS\System32\windows.storage.dll
LoadedModule[62]=C:\WINDOWS\System32\powrprof.dll
LoadedModule[63]=C:\WINDOWS\System32\UMPDC.dll
LoadedModule[64]=C:\WINDOWS\System32\MSCTF.dll
LoadedModule[65]=C:\WINDOWS\System32\clbcatq.dll
LoadedModule[66]=C:\Windows\System32\taskschd.dll
LoadedModule[67]=C:\Windows\System32\SspiCli.dll
LoadedModule[68]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Manaa57fc8cc#\06fc9ebfb2d47c629e815c97f9774b23\System.Management.Automation.ni.dll
LoadedModule[69]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P1706cafe#\9674d2212dc4c6adca02d922f9e12c30\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
LoadedModule[70]=C:\Windows\System32\MSISIP.DLL
LoadedModule[71]=C:\WINDOWS\System32\coml2.dll
LoadedModule[72]=C:\Windows\System32\wshext.dll
LoadedModule[73]=C:\Windows\System32\AppxSip.dll
LoadedModule[74]=C:\WINDOWS\SYSTEM32\tdh.dll
LoadedModule[75]=C:\WINDOWS\SYSTEM32\OpcServices.DLL
LoadedModule[76]=C:\WINDOWS\SYSTEM32\XmlLite.dll
LoadedModule[77]=C:\WINDOWS\SYSTEM32\mintdh.dll
LoadedModule[78]=C:\WINDOWS\SYSTEM32\urlmon.dll
LoadedModule[79]=C:\WINDOWS\SYSTEM32\iertutil.dll
LoadedModule[80]=C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
LoadedModule[81]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\fc5695c3b8600c9992611c3ad73cd08c\System.Configuration.Install.ni.dll
LoadedModule[82]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Pb378ec07#\0558b2bea9d6056ad188445308cb7e5f\Microsoft.PowerShell.ConsoleHost.ni.dll
LoadedModule[83]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P521220ea#\f184ed11b6f66a9a627bf3850aa1da36\Microsoft.PowerShell.Commands.Utility.ni.dll
LoadedModule[84]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Pae3498d9#\5301dc01d17c41d43642fbce3210d15a\Microsoft.PowerShell.Commands.Management.ni.dll
LoadedModule[85]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Mf49f6405#\e3493a9830573753cefb4bde6e2182ce\Microsoft.Management.Infrastructure.ni.dll
LoadedModule[86]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.P6f792626#\e920188151246d6385a416a62bd0c115\Microsoft.PowerShell.Security.ni.dll
LoadedModule[87]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.We0722664#\08d8d783c70ae66c47c64734c0828e92\Microsoft.WSMan.Management.ni.dll
LoadedModule[88]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Data\40324b44b308b2a7d30534c7b7d9185b\System.Data.ni.dll
LoadedModule[89]=C:\WINDOWS\Microsoft.Net\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
LoadedModule[90]=C:\WINDOWS\System32\WS2_32.dll
LoadedModule[91]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Management\8954090bb02f1e74f8b57ac10640ac4b\System.Management.ni.dll
LoadedModule[92]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Dired13b18a9#\b8fbfa4a8a4b94de0f6cf3a8878acbe6\System.DirectoryServices.ni.dll
LoadedModule[93]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Numerics\add20c6c7a9123ab1cb9ccc01c51feca\System.Numerics.ni.dll
LoadedModule[94]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Transactions\8cef7002f5f198d588f27b3d8f732315\System.Transactions.ni.dll
LoadedModule[95]=C:\WINDOWS\Microsoft.Net\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
LoadedModule[96]=C:\WINDOWS\SYSTEM32\secur32.dll
LoadedModule[97]=C:\Windows\System32\cryptnet.dll
LoadedModule[98]=C:\WINDOWS\SYSTEM32\PROPSYS.dll
LoadedModule[99]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.M870d558a#\f3df123a7393f2bba20f25d8c6fc8226\Microsoft.Management.Infrastructure.Native.ni.dll
LoadedModule[100]=C:\WINDOWS\SYSTEM32\Microsoft.Management.Infrastructure.Native.Unmanaged.DLL
LoadedModule[101]=C:\WINDOWS\SYSTEM32\mi.dll
LoadedModule[102]=C:\WINDOWS\SYSTEM32\miutils.dll
LoadedModule[103]=C:\WINDOWS\system32\wmidcom.dll
LoadedModule[104]=C:\WINDOWS\SYSTEM32\DPAPI.DLL
LoadedModule[105]=C:\WINDOWS\system32\wbem\wbemprox.dll
LoadedModule[106]=C:\WINDOWS\SYSTEM32\wbemcomn.dll
LoadedModule[107]=C:\WINDOWS\system32\wbem\wbemsvc.dll
LoadedModule[108]=C:\WINDOWS\system32\wbem\fastprox.dll
LoadedModule[109]=C:\WINDOWS\SYSTEM32\iphlpapi.dll
LoadedModule[110]=C:\WINDOWS\SYSTEM32\DNSAPI.dll
LoadedModule[111]=C:\WINDOWS\System32\NSI.dll
LoadedModule[112]=C:\WINDOWS\SYSTEM32\dhcpcsvc6.DLL
LoadedModule[113]=C:\WINDOWS\SYSTEM32\dhcpcsvc.DLL
LoadedModule[114]=C:\WINDOWS\SYSTEM32\WINNSI.DLL
LoadedModule[115]=C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\1298713307536b22b4a10c2093c69a33\System.Runtime.Serialization.ni.dll
LoadedModule[116]=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\diasymreader.dll
OsInfo[0].Key=vermaj
OsInfo[0].Value=10
OsInfo[1].Key=vermin
OsInfo[1].Value=0
OsInfo[2].Key=verbld
OsInfo[2].Value=18363
OsInfo[3].Key=ubr
OsInfo[3].Value=836
OsInfo[4].Key=versp
OsInfo[4].Value=0
OsInfo[5].Key=arch
OsInfo[5].Value=9
OsInfo[6].Key=lcid
OsInfo[6].Value=4105
OsInfo[7].Key=geoid
OsInfo[7].Value=39
OsInfo[8].Key=sku
OsInfo[8].Value=48
OsInfo[9].Key=domain
OsInfo[9].Value=0
OsInfo[10].Key=prodsuite
OsInfo[10].Value=256
OsInfo[11].Key=ntprodtype
OsInfo[11].Value=1
OsInfo[12].Key=platid
OsInfo[12].Value=10
OsInfo[13].Key=sr
OsInfo[13].Value=0
OsInfo[14].Key=tmsi
OsInfo[14].Value=402648
OsInfo[15].Key=osinsty
OsInfo[15].Value=3
OsInfo[16].Key=iever
OsInfo[16].Value=11.836.18362.0-11.0.190
OsInfo[17].Key=portos
OsInfo[17].Value=0
OsInfo[18].Key=ram
OsInfo[18].Value=3931
OsInfo[19].Key=svolsz
OsInfo[19].Value=83
OsInfo[20].Key=wimbt
OsInfo[20].Value=0
OsInfo[21].Key=blddt
OsInfo[21].Value=190318
OsInfo[22].Key=bldtm
OsInfo[22].Value=1202
OsInfo[23].Key=bldbrch
OsInfo[23].Value=19h1_release
OsInfo[24].Key=bldchk
OsInfo[24].Value=0
OsInfo[25].Key=wpvermaj
OsInfo[25].Value=0
OsInfo[26].Key=wpvermin
OsInfo[26].Value=0
OsInfo[27].Key=wpbuildmaj
OsInfo[27].Value=0
OsInfo[28].Key=wpbuildmin
OsInfo[28].Value=0
OsInfo[29].Key=osver
OsInfo[29].Value=10.0.18362.836.amd64fre.19h1_release.190318-1202
OsInfo[30].Key=buildflightid
OsInfo[30].Value=2d8eb154-7875-4e36-a93e-76c075c27b0f
OsInfo[31].Key=edition
OsInfo[31].Value=Professional
OsInfo[32].Key=ring
OsInfo[32].Value=Retail
OsInfo[33].Key=expid
OsInfo[34].Key=containerid
OsInfo[35].Key=containertype
OsInfo[36].Key=edu
OsInfo[36].Value=0
File[0].CabName=WERInternalMetadata.xml
File[0].Path=WER45DB.tmp.WERInternalMetadata.xml
File[0].Flags=327683
File[0].Type=5
File[0].Original.Path=\\?\C:\ProgramData\Microsoft\Windows\WER\Temp\WER45DB.tmp.WERInternalMetadata.xml
FriendlyEventName=Stopped working
ConsentKey=CLR20r3
AppName=LMT Anti Logger
AppPath=C:\Program Files\Le Minh Thanh\LMT Anti Logger\LMT Anti Logger.exe
NsPartner=windows
NsGroup=windows8
ApplicationIdentity=A62CB0E70B121CF476BCCEB345DE5092
MetadataHash=2053112868
Fichier(s) attaché(s):
LMT directory.jpg (80.21 KB)Cette contribution était de : http://www.gratilog.net/xoops/newbb/viewtopic.php?forum=7&topic_id=16796&post_id=198063