Extras.Txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 24/10/2019 02:51:15 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\barro\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.18362.0)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,90 Gb Total Physical Memory | 0,49 Gb Available Physical Memory | 12,58% Memory free
11,81 Gb Paging File | 2,70 Gb Available in Paging File | 22,90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 107,22 Gb Total Space | 7,39 Gb Free Space | 6,89% Space Free | Partition Type: NTFS
Drive D: | 127,75 Mb Total Space | 9,84 Mb Free Space | 7,70% Space Free | Partition Type: exFAT
Drive G: | 28,84 Gb Total Space | 9,32 Gb Free Space | 32,33% Space Free | Partition Type: exFAT
Drive H: | 29,33 Gb Total Space | 24,86 Gb Free Space | 84,75% Space Free | Partition Type: FAT32
Drive I: | 29,35 Gb Total Space | 2,47 Gb Free Space | 8,43% Space Free | Partition Type: NTFS
Drive M: | 15,00 Gb Total Space | 0,02 Gb Free Space | 0,13% Space Free | Partition Type: FAT32
Drive N: | 7451,91 Gb Total Space | 2706,62 Gb Free Space | 36,32% Space Free | Partition Type: NTFS

Computer Name: ANTI-JJAD | User Name: barro | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days

[color=#E56717]========== Extra Registry (All) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = ] -- Reg Error: Key error. File not found
.cpl[@ = cplfile] -- C:\WINDOWS\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\WINDOWS\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf[@ = inffile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\WINDOWS\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\WINDOWS\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\WINDOWS\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = ] -- Reg Error: Key error. File not found
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = comfile] -- "%1" %*
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\WINDOWS\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.inf [@ = inffile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\WINDOWS\SysWow64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\WINDOWS\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\WINDOWS\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\WINDOWS\SysWow64\WScript.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2879697129-1855103171-3652533847-1001\SOFTWARE\Classes\<extension>]
.html [@ = SlimBrowserHTML-3D56D3BD457A6E15] -- C:\Program Files\SlimBrowser\slimbrowser.exe (FlashPeak Inc)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" {1E460BD7-F1C3-4B2E-88BF-4E770A288AF5}%U{1E460BD7-F1C3-4B2E-88BF-4E770A288AF5} %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- "C:\WINDOWS\System32\WScript.exe" "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- G:\Program Files (x86)\ParetoLogic\PCHA\noapp.exe %1 (ParetoLogic, Inc.)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [ByteFence Folder Scan] -- "C:\Program Files\ByteFence\ByteFenceScan.exe" /scan:"%1"
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- C:\WINDOWS\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" {1E460BD7-F1C3-4B2E-88BF-4E770A288AF5}%U{1E460BD7-F1C3-4B2E-88BF-4E770A288AF5} %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- "C:\WINDOWS\System32\WScript.exe" "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- "%SystemRoot%\system32\NOTEPAD.EXE" %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- G:\Program Files (x86)\ParetoLogic\PCHA\noapp.exe %1 (ParetoLogic, Inc.)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [ByteFence Folder Scan] -- "C:\Program Files\ByteFence\ByteFenceScan.exe" /scan:"%1"
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- C:\WINDOWS\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Feature]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av]
"DataMigrated" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av\{1A0271D5-3D4F-46DB-0C2C-AB37BA90D9F7}]
"GUID" = {1A0271D5-3D4F-46DB-0C2C-AB37BA90D9F7}
"DISPLAYNAME" = FortiClient AntiVirus
"STATE" = 266240
"PRODUCTEXE" = C:\Program Files\Fortinet\FortiClient\FortiClientConsole.exe -- (Fortinet Inc.)
"REPORTINGEXE" = C:\Program Files\Fortinet\FortiClient\FCWscD7.exe -- (Fortinet Inc.)

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av\{D68DDC3A-831F-4fae-9E44-DA132C1ACF46}]
"GUID" = {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
"DISPLAYNAME" = Windows Defender
"STATE" = 393472
"PRODUCTEXE" = windowsdefender://
"REPORTINGEXE" = %ProgramFiles%\Windows Defender\MsMpeng.exe -- (Microsoft Corporation)

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Fw]
"DataMigrated" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp\WebProtection]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 21 2D 69 A9 8E 86 D5 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Feature]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Fw]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp\WebProtection]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe" = C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe:*:Enabled:Photocopier Expert
"C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe" = C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe:*:Enabled:Photocopier Expert

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe" = C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe:*:Enabled:Photocopier Expert
"C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe" = C:\Program Files (x86)\Photocopier Expert\photocopierexpert.exe:*:Enabled:Photocopier Expert

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{010BE863-F1F7-4CD6-ACC1-9DB3E1B65023}" = lport=18209 | protocol=17 | dir=in | app=c:\program files (x86)\nero\nero tuneitup\autopilot.exe |
"{1415164F-2A02-4957-9E7C-0C6E0D7C1CF0}" = lport=18209 | protocol=17 | dir=out | app=c:\program files (x86)\nero\nero tuneitup\autopilot.exe |
"{83F936C0-834D-4B02-8E8F-CB8E4745B718}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\avast software\browser\application\avastbrowser.exe |
"{CD9E671F-66E7-487C-B309-254FC696A868}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\windowsapps\microsoft.office.desktop.outlook_16051.12026.20334.0_x86__8wekyb3d8bbwe\office16\outlook.exe |
"{D7C32C4A-FA8B-4F5E-9164-5057C2346854}" = lport=18209 | protocol=17 | dir=in | app=c:\program files (x86)\nero\nero tuneitup\autopilot.exe |
"{FACA3583-3EA6-4DE8-BBA5-8A8629C9C087}" = lport=18209 | protocol=17 | dir=out | app=c:\program files (x86)\nero\nero tuneitup\autopilot.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{001000E3-0146-492D-B02D-767B09088638}" = dir=in | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{0046E970-5E50-4270-9946-6CD9648CCE33}" = dir=in | name=@{microsoft.oneconnect_3.1811.3082.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{01488560-6B25-4E9A-A036-58CE0141BB2B}" = dir=out | name=@{microsoft.lockapp_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{0225F57B-7548-4ADE-AF39-BB305B6C0F05}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{02D6191F-D1AE-453A-8FD0-5CFA1FB87715}" = dir=in | app=c:\users\barro\appdata\local\apowersoft\apowersoft online launcher\apowersoft online launcher.exe |
"{02FF7B1A-471E-4C5E-AF5D-946485C87F99}" = dir=in | app=c:\program files\fortinet\forticlient\fortiwad.exe |
"{03729616-0ADD-457A-BA87-3D4C68336A41}" = dir=out | name=@{microsoft.people_10.3.3472.2000_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{039E4C0E-55A4-4635-9BC7-3F9C875008FC}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{03C6FB83-D880-49D7-9992-C93A8DDA41F0}" = dir=out | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{049AFCF3-DD43-423C-AFC3-838AA5953A0F}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{06336471-C468-4B8C-80DA-1801FD0DD0D5}" = dir=out | name=shell input application |
"{06777F8D-644A-4276-BF82-027DAA9EB31C}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{06C2D0A7-55D7-4A7B-89A1-AE4FB438E34B}" = dir=in | name=@{microsoft.windows.cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{06E52AE6-C2EE-40B4-AB19-77BF1654C883}" = protocol=6 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe |
"{0778FFE1-2CF2-4403-B499-391478F918E5}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{083CAB89-28B6-464C-A41B-42B746925523}" = dir=in | name=@{microsoft.microsoftedge_44.18362.387.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{085D3D41-5E5F-43E2-A9DE-DCF3AF6B1005}" = dir=out | name=@{samsungelectronicscoltd.galaxysetting_1.0.60.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.galaxysetting/resources/w10_setting_application_title} |
"{08B2A27D-CDB6-4F30-9940-F4451F2B3826}" = dir=in | name=@{microsoft.ppiprojection_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{08B52DB1-9C6B-4043-A933-651AB3374826}" = dir=out | name=@{microsoft.windows.photos_2019.19041.20110.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{08C84523-1966-4A0A-A764-DAD6D700BCD7}" = dir=out | name=office |
"{0915C27B-9CEB-49F4-9EB3-0B8CB00020E7}" = protocol=17 | dir=in | app=c:\program files (x86)\bitlord\bitlord.exe |
"{0DFB38A3-B0B9-4C23-81E4-51EB1069A060}" = dir=out | name=@{microsoft.windows.holographicfirstrun_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.holographicfirstrun/resources/pkgdisplayname} |
"{0E087008-5C7C-4269-985F-16A0EED0CE31}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1903.2331.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{0E0E51ED-D1A6-4874-9BAD-4ECA03485EDC}" = dir=in | name=onenote |
"{117B2976-AC21-4B3C-A157-C98952A4E751}" = dir=out | name=xbox game bar plugin |
"{11AD2790-2185-4951-BED7-727EDBD8C962}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{11B851F6-EB37-4A35-9E6B-66D7C8221AC8}" = protocol=17 | dir=out | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{11BB5BCB-F3D4-4F80-8929-23A92BB597B2}" = dir=out | name=@{microsoft.windows.photos_2019.19041.20110.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{143A0C1F-C57C-4423-A126-A6FDE061B0DD}" = dir=in | name=microsoft sticky notes |
"{14862022-CABC-48FB-B0C5-912F81CFD7A7}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{15BBEACD-7065-4378-BD3F-3C699F3AC0DE}" = dir=out | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{171E34F6-E1BB-4641-BEAA-1CD2C13E533D}" = dir=out | name=xbox game bar plugin |
"{1740C6DA-F05E-4A2D-904C-A9928710FCE6}" = protocol=6 | dir=out | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{19F2C196-B5C5-4A30-8F6C-A19F64086639}" = dir=in | app=c:\program files\fortinet\forticlient\fortiesnac.exe |
"{1A2C68C7-28ED-45DD-8C18-19708555DDED}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{1B182A4E-3376-4808-99FA-F31F48A1645F}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{1DFA537B-C175-4A83-95D6-D52BFB65A110}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{1E57992F-31EA-418E-8CDF-B3E192B82AA2}" = dir=out | name=@{microsoft.yourphone_0.0.13313.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.yourphone/resources/appname} |
"{2067505C-C9EA-4E38-AD7F-111EF70A3066}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{2078A76C-DB38-4335-A536-FC9FBC1E3FD2}" = dir=out | name=@{microsoft.yourphone_0.0.13313.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.yourphone/resources/appname} |
"{20E91AA6-34D8-4641-B4F9-BB07A379FB42}" = dir=out | name=onenote |
"{22D2CFCC-4D68-41E6-976E-210E9F52E8D8}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{246D402C-EB2B-47D1-A026-58D20C19AC67}" = dir=out | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{24C460D5-2AA2-427B-B663-178FD35D901B}" = protocol=6 | dir=in | app=n:\4 - moby dawn - anti-jjad en internet repairs for barro account\ultraadwarekiller.exe |
"{24C92CC5-52E6-429B-AE87-31F45F9E23D5}" = protocol=6 | dir=in | app=c:\program files (x86)\premieropinion\pmropn.exe |
"{257B986C-B72F-49A0-96D6-231202BF7D54}" = dir=out | app=c:\users\barro\appdata\local\apowersoft\online audio recorder\online audio recorder.exe |
"{25B08A6D-4C83-46CC-851A-BAA9EE76D162}" = dir=out | app=c:\program files (x86)\dvdvideosoft\free torrent download\freetorrentdownload.exe |
"{267DF13E-8A92-457B-A6BE-8FE274175EFA}" = dir=in | app=c:\program files (x86)\dvdvideosoft\free torrent download\freetorrentdownload.exe |
"{26DCF9ED-510B-4F69-A05B-86C0572FF304}" = dir=in | name=microsoft sticky notes |
"{2755CCC0-EE44-450B-BD4A-83415672CEB1}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{27CEF85E-DE4A-4E84-AD9D-5AFD22F4A77F}" = dir=in | name=@{microsoft.desktopappinstaller_1.0.31351.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{288719BF-9ED7-4D5C-B66D-2D4B4F4BAAE8}" = dir=in | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{290AF287-BE57-463E-9BAB-F2CF56CF308E}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{2993B093-4E67-4C31-9744-DF96BD401BF7}" = dir=in | app=c:\users\barro\appdata\local\apowersoft\online audio recorder\online audio recorder.exe |
"{2A3BDDE6-42CA-4444-84B1-BA485BD9D612}" = dir=out | name=microsoft sticky notes |
"{2A8EA05A-69E8-4310-9C8B-02E9B63EE676}" = dir=out | name=ms-resource:/oneconnect/appstorename |
"{2B2E18EB-B462-431F-AA0E-F6F4D10604B8}" = dir=in | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{2C71FC36-2FD5-4049-8E80-65A2214DF0D7}" = dir=out | name=samsung notes |
"{2DA868D6-9E0E-43E5-B434-86792BC63D6A}" = dir=in | name=@{microsoft.xboxgamingoverlay_2.26.14003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxgamingoverlay/resources/gamebar} |
"{2E980F4B-65FE-45BB-8F54-1BDB775FB3C9}" = dir=in | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{2F2EF9D1-991B-40A2-9BB5-48B4B0F6F5D5}" = dir=out | name=print 3d |
"{2F837E31-FAB9-4850-8057-0E5E6E1A50DB}" = dir=out | name=@{microsoft.gethelp_10.1706.22112.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.gethelp/resources/appdisplayname} |
"{30A7F841-DB06-48E3-AA3E-59E1D6B18A55}" = dir=in | name=@{microsoft.windows.shellexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{3267EF54-1F16-4D9D-90C2-043C8AE1D8B0}" = dir=out | name=ms-resource:appstorename |
"{33A0232F-6BF1-4304-A466-26862BEF231C}" = dir=out | name=shell input application |
"{351B749C-B33F-44EB-91FA-165C99ABD851}" = dir=in | app=c:\program files\fortinet\forticlient\ipsec.exe |
"{35614C02-1CC6-4FE0-82A7-67A5693B3A85}" = dir=out | name=@{microsoft.ppiprojection_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{37B08B9E-6F68-4698-9AF7-9AA66B444731}" = dir=out | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{37C71DF8-7369-4C05-ACA5-A23C7ADBDB41}" = protocol=17 | dir=in | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{39066C53-D2A3-4615-B828-F88F0398BCAF}" = dir=out | name=skype |
"{39D51014-6E9D-4701-894D-69F2440CD151}" = dir=out | name=@{microsoft.microsoftstickynotes_3.7.71.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftstickynotes/resources/stickynotesstoreappname} |
"{3D399876-F08F-40F2-896F-F15ED578359F}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{3E137AF7-460D-4B49-93F9-20BD98FB83AD}" = dir=out | name=@{microsoft.windows.narratorquickstart_10.0.18362.387_neutral_neutral_8wekyb3d8bbwe?ms-resource://microsoft.windows.narratorquickstart/resources/appdisplayname} |
"{411E8562-D482-48F8-AADD-61AA9E3EE8D4}" = dir=out | name=@{microsoft.oneconnect_5.1906.1791.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnectstrings/oneconnect/appstorename} |
"{41BF30F0-9FF1-4071-9616-769E93EF96B5}" = dir=out | name=xbox game bar plugin |
"{45116A31-E4B8-4FEF-8728-C4E1C7C9AAD0}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1903.2331.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{45199282-1E93-41FC-A038-C04D8B2A6A3F}" = dir=out | name=office |
"{4820541A-E724-4751-B71A-9E01628611AA}" = dir=out | name=@{samsungelectronicscoltd.galaxysetting_1.0.60.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.galaxysetting/resources/w10_setting_application_title} |
"{49878EAA-93E1-4DE6-B716-6DDAA9B218EA}" = dir=out | name=xbox tcui |
"{49FE8211-4199-41E0-98FC-78B32B7ED87E}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{4A584AB6-C00F-4D0E-9855-59FD7A36684A}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1903.2331.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{4C53A9A5-9B8A-4403-ABA8-23C2205ECE96}" = dir=in | name=@{microsoft.microsoftedge_44.18362.387.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{4D15DE73-435B-4719-9364-61EAABA9A4BA}" = dir=out | name=@{microsoft.zunevideo_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{4D173D60-6D35-4124-B63F-9E882FA10AFD}" = dir=out | name=@{microsoft.mixedreality.portal_2000.19010.1151.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mixedreality.portal/resources/pkgdisplayname} |
"{4D1A0B54-ADCA-4D09-A8C3-4DC2D90CFE2D}" = protocol=6 | dir=out | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{4D5E5FDB-A585-4E52-BEF1-99C4AD4A3FFE}" = dir=in | app=c:\program files\fortinet\forticlient\fortifws.exe |
"{4E0615F0-97F1-4A0A-A82A-9FA51116AF39}" = dir=out | name=xbox tcui |
"{4E0D20C6-FF16-4B3D-AB59-05436FE0627E}" = dir=out | name=@{microsoft.accountscontrol_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{4EFCE3B3-D18D-4C1B-AD60-A80DD0839E40}" = dir=out | name=@{microsoft.storepurchaseapp_11910.1001.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.storepurchaseapp/resources/displaytitle} |
"{4F470FA8-EBBA-463F-A8FE-0A7EF4948A10}" = dir=in | app=c:\program files\fortinet\forticlient\fortiproxy.exe |
"{505D8707-90B3-42F4-BD35-2BC3CEA344A9}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{50D615CC-1514-4127-8200-F0242B07543C}" = dir=in | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{51071104-4E49-4EA7-9C8F-4077F909E20A}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{5142A74B-C409-4774-A916-64705383D0E9}" = dir=out | name=ms-resource:appstorename |
"{51BD824C-1B76-41E0-B3E7-A2D62FDFEF6D}" = dir=out | name=@{microsoft.people_10.3.3472.2000_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{51D6F44A-D7A6-437D-B697-0D120058F425}" = dir=out | name=@{microsoft.win32webviewhost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{53A1BF10-A34F-4BF0-8FB1-3EE3C99F5551}" = protocol=17 | dir=in | app=n:\4 - moby dawn - anti-jjad en internet repairs for barro account\ultraadwarekiller.exe |
"{5588BBC5-724C-4764-AE28-7C8558CCF742}" = dir=out | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{55B68278-9FF9-4E7D-9790-8B98BB32FA26}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{575E61F4-A562-48A1-9BB1-21506AF3E8C8}" = dir=out | name=@{microsoft.desktopappinstaller_1.0.31351.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{576915C2-9606-4EA8-B1CF-139156BD67EB}" = dir=in | app=c:\program files\fortinet\forticlient\fortiproxy.exe |
"{58901036-DBAB-4E70-9D03-9901600E31B8}" = dir=out | name=@{microsoft.windows.holographicfirstrun_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.holographicfirstrun/resources/pkgdisplayname} |
"{5AF7768C-9E3F-4AF6-A679-5AACBACB5862}" = dir=in | name=microsoft sticky notes |
"{5CFECF91-F708-45FB-A921-7611262642E8}" = dir=out | name=@{microsoft.xboxapp_48.58.11001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{5E7A638C-041B-4985-A4BE-4800505FD2A6}" = dir=out | name=@{microsoft.windowsstore_11910.1001.5.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{5F825217-501F-40A5-B6E8-735F12C9CF23}" = dir=in | name=@{microsoft.windowsstore_11910.1001.5.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{60681738-B32E-41EF-B29C-B223EEDE6C47}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{612ADED7-CCE6-4C4D-87B3-4A1DD344859A}" = dir=in | name=@{microsoft.xboxgamingoverlay_2.26.14003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxgamingoverlay/resources/gamebar} |
"{62389FE1-E504-41D7-A858-0AE37F87B862}" = dir=in | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{628C09EF-97DF-4781-8851-85E9D5217B78}" = dir=in | name=@{microsoft.windowsstore_11910.1001.5.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{6354F23E-FDB3-4C29-B5E7-A0AE206B8339}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{63854539-EB7D-4894-8A42-31AEDBC84877}" = dir=in | name=ms-resource:/oneconnect/appstorename |
"{6553EDB3-1B46-4C44-92FD-CC68CB7BE1A8}" = dir=out | name=@{microsoft.bingweather_4.32.12463.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{6880BA49-8063-41F1-A22B-18BDF910F419}" = dir=out | name=@{microsoft.windows.cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{68C6F6C4-C8EF-4F77-8E3F-29EA6101CAE3}" = dir=in | name=@{microsoft.ppiprojection_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{68CCAB67-5295-4368-BEDD-A8C10A3B37E0}" = dir=out | name=@{microsoft.oneconnect_3.1811.3082.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{6A2711E1-1D02-4F7C-9160-EE2DD1EFB8D4}" = dir=out | name=@{microsoft.getstarted_8.1.22422.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{6B419A2D-D24D-4289-8120-37161057B9B9}" = dir=out | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{6C6F74CF-237A-4850-A1EE-6DABA4F3EE1C}" = dir=out | name=samsung notes |
"{6C9B764B-1237-4A80-AFD8-19AC03BE98D5}" = dir=in | name=print 3d |
"{6CD59F40-B1D7-44F9-B78C-15B41E261CA5}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{6D4A2872-ED51-4DF9-8AA0-138F00612C33}" = dir=in | name=@{microsoft.xboxapp_48.58.11001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{6F40530F-B776-4F3B-8B4D-179B6F5E00D5}" = dir=out | name=ms-resource:appstorename |
"{6FC21B91-3733-4688-A842-052B6833E334}" = dir=out | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{7032B3DB-16E7-48F7-AD68-19136F142BE7}" = dir=out | name=@{microsoft.zunevideo_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{712731AE-1F68-41C3-B5FD-BAB3783FAD33}" = dir=out | name=@{microsoft.zunemusic_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{715A79C3-3CCB-4FDF-8B87-10B66A30437B}" = dir=out | name=@{microsoft.windowscalculator_10.1804.11545.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscalculator/resources/appstorename} |
"{733C8FEB-B96F-4E70-B9FB-8D5AFFFFDC4F}" = dir=in | app=c:\program files\fortinet\forticlient\fortiesnac.exe |
"{73D8D8DA-47AA-4238-9DC3-C442E9C58AAF}" = dir=out | name=@{microsoft.win32webviewhost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{76B7DF04-9BCF-48E4-8B22-CFB072F64728}" = dir=in | app=c:\program files\fortinet\forticlient\fortifws.exe |
"{7808CF29-7C04-4B4F-A472-C9176BFE6B03}" = dir=out | app=c:\program files (x86)\innovative solutions\vpn pro\vpnpro.exe |
"{79169C18-2C16-4781-84F0-4E146A95BF06}" = dir=out | name=skype |
"{79C866A5-9DC8-4B30-B002-B1F29AFCD2AA}" = dir=out | name=microsoft office desktop apps |
"{7CDD8662-31C4-44DB-A98C-B5B76BB019D2}" = dir=out | name=@{microsoft.windowsmaps_5.1809.2762.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{7E9D9EBD-0AA2-425C-BF8A-288B9ED56251}" = dir=in | name=@{microsoft.windows.shellexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{7F832854-1D53-4369-8BAC-5514945806E0}" = dir=out | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{803A2A24-BA36-456A-A729-6E1EB3AD3132}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{8102F60C-F7A1-44C9-8C72-66E76890C26F}" = dir=out | name=@{microsoft.microsoftedge_41.16299.1004.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{82D8FFC6-80A1-4D29-9914-FB50B2E5AD91}" = dir=out | name=@{microsoft.windowscamera_2019.821.30.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscamera/lenssdk/resources/appstorename} |
"{833E43E8-5B6D-4D46-9DBC-0F29C075274B}" = protocol=17 | dir=in | app=c:\program files (x86)\relevantknowledge\rlvknlg.exe |
"{83D3EA0C-5D72-4CD4-8B5E-3AF77941FE3C}" = dir=in | name=microsoft solitaire collection |
"{844C4E52-F2FE-4B48-A9DA-BF8FD351DC82}" = dir=in | app=c:\program files (x86)\dropbox\client\dropbox.exe |
"{854A9A3D-FDFA-46F6-B254-BB9B2800F103}" = dir=in | name=print 3d |
"{8555E41E-97E4-4B68-89E7-30C29C0CC19E}" = dir=out | name=@{microsoft.xboxgamingoverlay_2.26.14003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxgamingoverlay/resources/gamebar} |
"{85576946-8BD8-44A7-A383-4CA419AAAAF9}" = dir=out | name=@{microsoft.oneconnect_3.1811.3082.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{85B72F12-7532-40A0-A4F0-D13F947EE87A}" = dir=out | name=@{microsoft.ppiprojection_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{87F19F0C-1469-42D7-83F3-12EC075B2D06}" = dir=out | name=microsoft office desktop apps |
"{88D1558F-8F15-4E19-8DF9-9E6DB052B19F}" = dir=out | name=microsoft pay |
"{899D6966-D19B-489A-BA7D-A2B8C6F92C60}" = dir=in | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{8A28FCDA-0621-42BE-A292-82FE89063A7B}" = dir=out | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{8B265EAE-C083-40A9-A3EB-6FDE945AAA42}" = dir=out | name=ms-resource:appstorename |
"{8B8FA919-00BE-452D-BC63-BD76FFA90159}" = protocol=6 | dir=out | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{8BAA9E28-00B8-4E3B-ADA1-368B0D79FF7F}" = dir=in | name=microsoft solitaire collection |
"{8BEBFF3B-4C36-4942-A76C-BF043787D9A8}" = dir=out | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{8D5C6FEB-2642-4A14-950E-33AB7010A3EC}" = dir=out | name=onenote |
"{8E70E749-4C84-4F32-BB07-FF150BEF5302}" = dir=in | name=@{microsoft.oneconnect_3.1811.3082.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{8EB0F916-860C-402A-8F50-4329CE3CB144}" = protocol=6 | dir=in | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{90E21252-6351-4676-A1DE-BFE087B8DEEA}" = dir=out | name=@{microsoft.accountscontrol_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{91454954-99D6-42FA-83B9-F2DBA5B06F78}" = dir=out | name=@{microsoft.desktopappinstaller_1.0.31351.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{926AF424-EC23-4123-9CED-238B4B3E1430}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{93A3B616-8270-4149-8286-67AC7D0D5829}" = dir=out | name=@{microsoft.mixedreality.portal_2000.19010.1151.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mixedreality.portal/resources/pkgdisplayname} |
"{941A1757-DCBD-4457-B743-4F40B401CF76}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{95D5A4E2-6F6D-4657-81C6-FFC0172E095F}" = dir=out | name=@{microsoft.windowscalculator_10.1804.11545.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscalculator/resources/appstorename} |
"{96C6A75D-BF4C-4E97-A7BE-B00EC1DA18DF}" = dir=in | name=@{microsoft.windows.photos_2019.19041.20110.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{98AA7F61-5DFD-4487-AC35-06410A212F1F}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{9B777219-91DA-4BEB-A35A-3BC1304EA2B2}" = dir=out | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{9DCAFE6A-6FE7-43DE-B12B-2DBA13E44EC7}" = dir=out | name=print 3d |
"{9E0260F3-1491-4A06-83E7-F5F75815EDF4}" = dir=in | name=@{microsoft.windows.photos_2019.19041.20110.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{9F1B2ED7-0A2F-4FF8-B0B9-1E4A58BA5440}" = dir=out | name=microsoft sticky notes |
"{A26286D7-B19F-4A4D-9BEF-307AE0EF7BEC}" = dir=out | name=@{microsoft.microsoft3dviewer_7.1908.9012.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoft3dviewer/common.view.uwp/resources/storeappname} |
"{A36225B0-0FAD-4717-AC49-8DFA1641415B}" = dir=out | name=@{microsoft.lockapp_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{A5B576E5-C996-4B42-A727-F875F000C50F}" = dir=in | name=@{microsoft.microsoftedge_41.16299.1004.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{A785F01A-36C5-49D3-B035-5808FA1643B5}" = dir=in | name=@{microsoft.zunemusic_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{AA07D801-B46B-4883-A9E6-221A7EF0A73F}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{AB8A0719-E762-4E61-A344-882EAE7D9F24}" = dir=out | name=onenote |
"{ABC0554E-878B-49E4-8438-A1A1E8009FAC}" = dir=out | name=@{microsoft.microsoftedge_44.18362.387.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{AC23D7DC-AB5B-4895-872B-A0B8BB7E2067}" = dir=out | name=@{microsoft.mspaint_6.1907.18017.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mspaint/resources/appname} |
"{ACC8C55A-CC18-4688-B78B-7E17639ED37B}" = dir=in | name=skype |
"{ADCAC55A-F49A-4FC0-BBD8-CFAE3B0E687F}" = dir=out | name=microsoft pay |
"{ADF39D1F-EC33-4AB4-9336-03A10DFC8160}" = dir=out | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{AE017D82-4A60-48BF-90B7-E7BE9D8CEDC4}" = protocol=6 | dir=in | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{B10BA0F5-CD0E-4561-9807-9E1B6D6A4E06}" = dir=in | name=skype |
"{B164492B-02E6-4B1F-B8C6-61D6E7DB879D}" = dir=out | name=@{microsoft.xboxgamingoverlay_2.26.14003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxgamingoverlay/resources/gamebar} |
"{B231D357-3E5F-4530-940A-DEE32F950FA2}" = dir=in | name=skype |
"{B35B1F55-3C72-4328-B068-65519EC87C93}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{B3F7B526-2AC9-44B9-8FD0-4FA8DB6CF035}" = dir=in | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{B66B722F-F1F2-45AB-B076-EF96BA974703}" = protocol=17 | dir=in | app=n:\4 - moby dawn - anti-jjad en internet repairs for barro account\ultraadwarekiller64.exe |
"{B7E3B9F7-EFC7-477A-BA4D-2AC56D1E8460}" = dir=in | name=@{microsoft.win32webviewhost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{B965AC29-097A-4D91-B3A0-15949EC2F761}" = dir=out | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{B9838C0F-E7D0-4179-A5D6-620E00931181}" = dir=in | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{B9BD1E82-FF56-4139-8F20-D379EBD24331}" = protocol=6 | dir=in | app=c:\program files\qbittorrent\qbittorrent.exe |
"{BA172765-3211-42B0-928A-423D6567E086}" = dir=out | name=@{microsoft.windows.photos_2019.19071.17920.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{BA44867F-9E04-42A5-914B-8B8B7D3DB799}" = dir=out | name=shell input application |
"{BCAF648D-821C-473F-9DAF-735C0ED99E13}" = dir=out | name=@{microsoft.mspaint_6.1907.18017.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mspaint/resources/appname} |
"{BCC730B0-67F7-4D43-801F-A0BFEEA9FD91}" = dir=out | app=c:\users\barro\appdata\local\apowersoft\apowersoft online launcher\apowersoft online launcher.exe |
"{BD5EF1BF-0580-40C5-960D-FB7549C50E7A}" = dir=out | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{BDED43D4-76FF-4DAC-B6AD-36534E132B81}" = dir=out | name=@{microsoft.zunemusic_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{BE0BE85E-8E79-4EA8-A39C-4065653CF204}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{BEDD1631-E4C5-46BC-A125-B1552A1C4C10}" = dir=out | name=@{microsoft.getstarted_6.15.12641.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{BF97F5FE-F936-4511-9858-3BC6BA3F1680}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.16299.1004.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{C058DB24-2770-470B-BFE5-F8A2E63A1AD6}" = dir=out | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{C0F5E049-EEA5-4E62-A098-212C8FC4CCFD}" = dir=out | name=@{microsoft.accountscontrol_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{C10268A3-A958-4CEF-AC45-81D5B13375DD}" = protocol=6 | dir=in | app=c:\program files\uvk - ultra virus killer\uvk_en64.exe |
"{C15EEB5D-423B-4739-99E5-AF356DF55DBF}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{C1ACD66E-1301-496F-AC42-F14E6720A4B1}" = dir=in | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{C36653A9-57F8-4AD5-976B-798BC9214E9D}" = dir=in | name=@{microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{C3A134BF-CC1B-466A-A5C2-998CC3818EBD}" = dir=in | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{C3AFF9E9-09CE-4D52-BEB5-B118B7AE9A79}" = dir=in | app=c:\program files\fortinet\forticlient\ipsec.exe |
"{C413A778-D8A7-4099-BC1D-FA80E9C4D1C0}" = protocol=6 | dir=in | app=c:\program files\windowsapps\samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy\desktopapp\samsungflowdesktop.exe |
"{C5A6D053-E3CA-47D3-9F9D-35ABF5798946}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{C642ADE2-5D2A-4526-9CEC-767C4A38F4B5}" = dir=in | name=@{samsungelectronicscoltd.samsungflux_4.3.5.0_x64__wyx1vj98g3asy?ms-resource://samsungelectronicscoltd.samsungflux/resources/displayname} |
"{C6A3A920-94AA-4FC5-8D31-481282BB935F}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{C7315641-0A92-4333-9F73-92DAD89E8BD4}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{C80291FE-6EB3-41F7-9B2D-DA55CE8FAC64}" = dir=out | name=@{microsoft.getstarted_6.15.12641.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{C9BE06A4-1751-4198-A017-25A6F87B66F7}" = protocol=17 | dir=in | app=c:\program files (x86)\premieropinion\pmropn.exe |
"{CAE93088-3720-49B7-A79F-667BB030B350}" = dir=out | name=@{microsoft.lockapp_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{CC8D0EE2-5237-43C4-9FD5-2113F5A56F61}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1903.2331.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{CD6CBC55-3338-46C2-9235-7C80B4BE4EB0}" = dir=out | name=@{microsoft.windowsstore_11910.1001.5.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{CE2CF6BB-F84E-4783-80F5-A79C0BE32787}" = protocol=17 | dir=in | app=c:\program files\qbittorrent\qbittorrent.exe |
"{D022B719-74C2-4EA8-B250-865F4FF8419D}" = dir=in | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{D1A2C245-F0B6-4F57-80AA-2B172011E732}" = dir=out | name=microsoft solitaire collection |
"{D233B5FC-67E0-4CC9-8B4D-87FC0436C56D}" = dir=in | app=c:\program files\fortinet\forticlient\fortiwad.exe |
"{D26E4DF6-E9DC-468F-B54A-B26C6F1BCC70}" = dir=in | name=@{microsoft.win32webviewhost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{D4687B1B-4C43-4168-A6BE-8EAD93174271}" = dir=in | name=@{microsoft.oneconnect_5.1906.1791.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnectstrings/oneconnect/appstorename} |
"{D4EB6E6C-682C-4814-AD1D-E3722A8A1DCC}" = dir=in | name=@{microsoft.zunevideo_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{D59BB669-46C5-4469-A70E-40C42ABC0B31}" = protocol=17 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{D66D77D4-1CC6-4033-A338-4C2049304683}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.18362.387.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{D6B639E2-67EA-4D0E-BE42-6690C525400A}" = dir=out | name=microsoft pay |
"{D7291C32-BA52-4F53-995B-5AA7A029740D}" = dir=out | name=microsoft sticky notes |
"{D7B2EDF5-2727-4360-AAB2-3619FC6B28E4}" = dir=in | name=@{microsoft.xboxapp_48.58.11001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{D8A1FBC9-17B3-45C0-962D-CA485A5DD880}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.18362.387_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{DA4AA45B-2F69-44DA-A5E3-CFB0B0BEF426}" = dir=out | name=@{microsoft.bingweather_4.32.12463.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{DA9C7B53-E6C1-44A5-A28B-93D6C1158502}" = protocol=6 | dir=in | app=n:\4 - moby dawn - anti-jjad en internet repairs for barro account\ultraadwarekiller64.exe |
"{DC566C44-519B-48F4-9F9E-6565E7322AAA}" = dir=out | name=windows_ie_ac_001 |
"{DC843ACE-34E6-4691-AAED-615D0EFA2380}" = dir=out | name=@{microsoft.windowscamera_2019.124.60.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscamera/lenssdk/resources/appstorename} |
"{DED15ED6-5B13-44D3-95CB-B449A03FD880}" = protocol=6 | dir=in | app=c:\program files\bitcomet\bitcomet.exe |
"{E0F0EBCF-32E8-4281-9040-933A354C1948}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{E0FF9481-3189-41A9-A48A-FC2EA93B1678}" = protocol=6 | dir=out | app=c:\program files\uvk - ultra virus killer\uvk_en64.exe |
"{E2542803-996E-4B94-A8A6-EFF1FA83DC6A}" = dir=out | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{E3AD23D9-B3E5-474F-9CF3-B2FF8F4CAB56}" = dir=out | name=shell input application |
"{E4194108-C133-442A-B97F-E05E4FDD658C}" = dir=in | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{E5601227-A567-4853-A83C-07C3BC36B0ED}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{E5AD74D1-01DA-4335-9EFD-C6CD321FAB53}" = dir=out | name=@{microsoft.windowscalculator_10.1908.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscalculator/resources/appstorename} |
"{E5EE4383-E2EC-4D21-86EF-1E39691CCFD3}" = protocol=6 | dir=in | app=c:\program files (x86)\relevantknowledge\rlvknlg.exe |
"{E6F1E1CB-501B-4DBA-BAD8-A4832A0883F3}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{E6F79117-8A14-4955-A35B-ED8628FD5771}" = dir=out | name=@{microsoft.storepurchaseapp_11910.1001.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.storepurchaseapp/resources/displaytitle} |
"{E8297CBC-BF6B-43C2-8A8A-7EA0367CC02C}" = dir=in | name=@{microsoft.windows.photos_2019.19071.17920.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{E9121985-1C30-47A7-ACC9-924D9A8988BE}" = dir=out | name=@{microsoft.xboxapp_48.58.11001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{E9E12649-5E29-42BF-A230-84746380B208}" = dir=out | name=@{microsoft.windowscamera_2019.124.60.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscamera/lenssdk/resources/appstorename} |
"{EA044ECF-9D7A-4F09-BDD1-D2BB13F28EDE}" = dir=out | name=@{microsoft.ppiprojection_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{EA641C9F-678B-42CC-822F-669B1634557D}" = dir=in | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{EABA1003-B7D4-4BE6-8896-39163DBF64B7}" = dir=in | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{EADF548E-EDF7-4576-94E3-8A0191F80AC6}" = dir=out | name=@{microsoft.microsoft3dviewer_7.1908.9012.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoft3dviewer/common.view.uwp/resources/storeappname} |
"{EB58FB08-B35E-4914-8143-24798DDBE56E}" = dir=out | name=@{microsoft.accountscontrol_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{EC5F4911-55D1-4D8E-A01E-0EA53247249E}" = dir=in | name=@{microsoft.zunemusic_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{EE7F2589-6367-4837-B2CD-BBCC8DA416C5}" = dir=in | name=@{microsoft.zunevideo_10.19072.18011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{F0E0FD45-FFE6-4E5D-86D6-600816E7463B}" = dir=out | name=@{microsoft.lockapp_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{F23DAE64-8E19-49AC-958B-05BE7FAEC686}" = dir=out | name=@{microsoft.xboxidentityprovider_12.54.26001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{F2E2A300-98C8-4FC1-8D2A-ECF8BF74CB76}" = dir=in | name=onenote |
"{F3B984F6-9610-4AE8-B63D-1048E19E8F7C}" = dir=out | name=microsoft solitaire collection |
"{F5ABD900-E1FF-4BC9-8447-EEF7D6FB054D}" = dir=out | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{F6034D3B-E56F-41B2-A196-D2B2B6DA3550}" = dir=out | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{F685D2AF-B366-4B14-B2DD-32CE3425ED60}" = dir=in | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{F69FD643-5F74-4553-90AA-81AD0E56B37F}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{F6D385AB-7691-41D6-B917-B6A8C0B0C74D}" = dir=out | name=@{microsoft.gethelp_10.1706.22112.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.gethelp/resources/appdisplayname} |
"{F7B074B2-2A24-4EAB-8649-CA2B417399F7}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.387_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{F7DD0C00-C808-476D-9C24-8B0978A82E55}" = dir=in | name=@{microsoft.messaging_4.1901.10241.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{F80606A1-6F54-482F-8904-61FCFA718FB4}" = dir=out | name=@{microsoft.windows.narratorquickstart_10.0.18362.387_neutral_neutral_8wekyb3d8bbwe?ms-resource://microsoft.windows.narratorquickstart/resources/appdisplayname} |
"{F823039D-1A4C-45DA-9086-228CADF78C7F}" = dir=in | name=@{microsoft.microsoftstickynotes_3.7.71.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftstickynotes/resources/stickynotesstoreappname} |
"{F83AAD0C-484B-4AAD-B942-C95379E109C7}" = dir=in | name=onenote |
"{F8AE3D14-BB18-44F9-9ACC-14616EF7E821}" = dir=in | name=@{microsoft.desktopappinstaller_1.0.31351.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{FAE96208-0332-4453-84D5-39AD5603C403}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.16299.1004_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{FB3B15BC-3AD0-4541-B8C8-21875F27ACF6}" = dir=out | name=@{microsoft.windowsmaps_5.1809.2762.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{FB738CC3-77E9-40B3-B947-83157FD203FC}" = dir=out | name=microsoft pay |
"{FCC4088D-23B7-4577-AE36-02C2CE885851}" = dir=out | name=microsoft office desktop apps |
"{FD064A71-10FC-4361-ACC3-FDE8572B79DB}" = dir=out | name=@{microsoft.microsoftedge_44.18362.387.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{FF49CABC-0155-4F33-AFFD-53C141129350}" = dir=out | name=skype |
"TCP Query User{4E5EE08F-12C4-4220-A1AD-4DD038842519}C:\program files (x86)\avg\browser\application\avgbrowser.exe" = protocol=6 | dir=in | app=c:\program files (x86)\avg\browser\application\avgbrowser.exe |
"UDP Query User{17449FF7-C040-4561-A38D-58539ED2604C}C:\program files (x86)\avg\browser\application\avgbrowser.exe" = protocol=17 | dir=in | app=c:\program files (x86)\avg\browser\application\avgbrowser.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{06886E89-6E1B-4DD9-87F9-B9E25F63D74F}" = Intel(R) Rapid Storage Technology
"{0A11EA01-B192-8948-0540-E47987A2734C}_is1" = Ashampoo ZIP Pro 3
"{125B62DE-4575-4D4D-982F-AB6F9E913B54}" = Intel(R) Management Engine Components
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{258E992F-46AD-45FB-B83B-0CE0EC6FC549}" = Intel(R) Management Engine Driver
"{26A24AE4-039D-4CA4-87B4-2F64180221F0}" = Java 8 Update 221 (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F64180231F0}" = Java 8 Update 231 (64-bit)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{37E567C7-EB03-4349-B068-1FD0A2CD55FE}_is1" = Isoo Backup 4.2.1
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{40F6FB81-1B50-443B-A8E0-BC70E62CFB21}" = Adblock Plus pour IE (32-bits et 64-bits)
"{44DE19DF-AA86-497A-9CCA-4F52D0BFF9A8}" = AdAwareInstaller
"{4C7CA6F1-4691-449D-B574-559726CDA825}_is1" = Driver Tonic
"{4FFA2088-8317-3B14-93CD-4C699DB37843}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{54E1FF2B-7F22-4620-B4CE-9C96F69A226F}" = Paragon Hard Disk Manager"! 17 Advanced
"{5C7A5F94-02E9-4C5D-A594-B1F10865965A}" = AntimalwareEngine
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FFF7119-74E8-442E-970E-50BAD81D5371}" = AdAwareUpdater
"{5FFF7119-74E8-442E-970E-50BAD81D5371}_AdAwareUpdater" = adaware antivirus
"{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}" = Qualcomm Atheros Bluetooth Installer (64)
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 4.2.1
"{6C52001F-6C52-40C5-B3C5-EFC1B527DC32}" = Snagit 2019
"{75A94977-608C-4164-94A1-98FCB75743C0}" = Win8StartMenu
"{81520FC5-3518-40E9-9803-70CE8A801D07}" = Intel(R) Chipset Device Software
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8B4DBB94-B69B-4C4F-AADD-C10CFB220F1F}" = Microsoft VC++ redistributables repacked.
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{97D17486-D465-4102-83A4-F788846EA3CF}" = FortiClient
"{986F408D-7973-440E-8B50-6DEA8587DEE6}" = ACDSee Photo Editor 10 (64-bit)
"{9D29FC96-9EEE-4253-943F-96B3BBFDD0B6}" = Microsoft Visual C++ 2017 X64 Additional Runtime - 14.16.27024
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{C0C78593-1CF0-4CD8-A80C-191FE561F5A5}" = WlSarService
"{C74F8E1D-A095-4140-AF8F-FC8AF88B81EA}" = GeekBuddy
"{C9552825-7BF2-4344-BA91-D3CD46F4C442}" = Intel(R) Trusted Connect Service Client x64
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D21EED26-59C0-4315-BDCC-D682496465E9}" = Samsung Recovery
"{DF4E2424-348F-4227-9096-8EA478DFAB4E}" = Intel(R) Management Engine Components
"{E9456C3E-2BE5-49BA-9A8A-13E94D74E757}" = Identity Inspector
"{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}" = Intel(R) ME UninstallLegacy
"{F1B0FB3A-E0EA-47A6-9383-3650655403B0}" = Microsoft Visual C++ 2017 X64 Minimum Runtime - 14.16.27024
"{F339C545-24DC-4870-AA32-6EB6B0500B95}" = UpdateAssistant
"{fd13f4a2-b0d8-4cad-9ccf-d4128eaf25ff}_is1" = WebDiscover Browser 4.28.2
"7-Zip" = 7-Zip 19.00 (x64)
"DAEMON Tools Lite" = DAEMON Tools Lite
"Defraggler" = Defraggler
"Firefox Developer Edition 70.0 (x64 fr)" = Firefox Developer Edition 70.0 (x64 fr)
"Mozilla Firefox 70.0 (x64 fr)" = Mozilla Firefox 70.0 (x64 fr)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 12.17.1863" = Opera 12.17
"SlimBrowser" = FlashPeak SlimBrowser 64bit
"Totalcmd64" = Total Commander 64+32-bit (Remove or Repair)
"UpdateStar Product Key Finder_is1" = UpdateStar Product Key Finder
"VLC media player" = VLC media player
"VulkanRT1.0.33.0" = Vulkan Run Time Libraries 1.0.33.0
"VulkanRT1.0.33.0-2" = Vulkan Run Time Libraries 1.0.33.0
"WinRAR archiver" = WinRAR 5.71 (64-bit)
"WinZip Driver Updater" = WinZip Driver Updater
"WinZip Registry Optimizer" = WinZip Registry Optimizer

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{074CBAD4-DB6D-4AD8-8A4B-C14B07C48531}" = UpdateStar
"{099218A5-A723-43DC-8DB5-6173656A1E94}" = Dropbox Update Helper
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1" = Booking
"{154846BF-85C8-4E8F-913F-9CB68D7715CF}" = InnerSoft CAD 4.1 Multilingual for AutoCAD 2019 32/64
"{19F7E289-17B8-44EC-A099-927507B6F739}" = Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.21.27702
"{1B739A9E-2DF6-DE43-2E09-701BF34A6D42}" = muvee Reveal Encore
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1" = Apowersoft Online Launcher version 1.7.5
"{20CA507E-24AA-4741-87CF-CC1B250790B7}" = Qualcomm Atheros 11ac Wireless LAN Installer
"{213668DB-2263-4E2D-ABB8-487FD539130E}" = Microsoft Visual C++ 2019 X86 Additional Runtime - 14.21.27702
"{2452C59D-5140-4A9A-A97F-B925390619E1}" = Silent Install Builder 5
"{26A24AE4-039D-4CA4-87B4-2F32180221F0}" = Java 8 Update 221
"{26A24AE4-039D-4CA4-87B4-2F32180231F0}" = Java 8 Update 231
"{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}" = Intel(R) Trusted Connect Services Client
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{39EA6AA6-F891-4D70-867D-839DA49948D2}" = Adobe Shockwave Player 12.2
"{3C13BD8A-5DAB-4ac8-ACFF-20E1996B33D0}_is1" = 4Videosoft Téléchargeur Vidéo 6.0.36
"{3CBF3EBB-235D-4c29-A68B-2BB1F428586E}" = ParetoLogic PC Health Advisor
"{442464F9-D35B-43A8-9260-9CBC42CF24C6}" = Social Network Controller
"{49483CD6-CB26-49EB-8C43-B0EA00927B5F}" = CyberLink ActionDirector 3
"{49697869-be8e-427d-81a0-c334d1d14950}" = Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D922459-6A2E-4E43-B7A1-86872A9078F3}" = >;>A>2>9 ?><>I=8: ;8A0
"{5493FC89-21E8-4D88-BCA1-4D33F1410968}" = Air Command
"{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1" = Panda USB Vaccine 1.0.1.16
"{56C76A75-BF3A-41E9-96D6-929E058DD38F}" = Microsoft VC++ redistributables repacked.
"{5CA05DDA-A896-46D5-85B8-DA2C05D56158}" = Nero SoundTrax
"{609EF020-8001-4DE7-855A-A07C3A67C3CA}" = LogMeIn Client
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}" = Bing Bureau
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{87A08690-781E-4A8E-8300-775A2EA02932}" = Show Window
"{8D987B21-A33F-4023-9A50-CE782CD41BB9}" = Nero SoundTrax
"{92cc9a56-fcaa-48ae-8939-d4aa90e8abc2}" = Snagit 2019
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AE50BCC5-3FA3-45D1-A675-A5F96EA12131}" = Qualys BrowserCheck
"{aeaa61cb-7f18-4686-a635-ab7df2cadec1}" = Web Companion
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B7DF423F-02E6-40d1-936B-BAF28C884C00}_is1" = 4Videosoft Convertisseur Vidéo Platinum 5.2.30
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint 2.5
"{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1" = SRWare Iron version 76.0.3950.0
"{C9552825-7BF2-4344-BA91-D3CD46F4C441}" = Intel(R) Trusted Connect Service Client x86
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CDB4F12C-2E9E-48CC-8591-663964C1BAE3}" = Samsung System Agent
"{D15DF9B0-3A98-4BEF-B7D5-FC3AEA473628}" = COMODO Secure Shopping
"{D7EACFE3-BC6A-48bb-B28C-4DBF318225E3}" = CyberLink PowerProducer 6
"{EB511CD1-C87C-490D-A7B1-D6C47F57820F}" = Prerequisite installer
"{eeb86aef-4a5d-4b75-9d74-f16d438fc286}" = PremierOpinion
"{EF758C50-5FA2-4B0A-86D3-8B65B176BC53}" = Main service
"{F030BFE8-8476-4C08-A553-233DE80A2BE1}" = Nero Info
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FCF5FF66-C2FB-45C1-B46E-7A596657B016}" = GoTo Opener
"{fd9b6070-d13e-45dc-819b-41806bf45b6b}" = Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027
"1992736F-C90A-481C-B21B-EE34CAD07387" = Intel(R) Virtual Buttons
"AC3Filter" = AC3Filter (remove only)
"Adobe Flash Player NPAPI" = Adobe Flash Player 32 NPAPI
"Adobe Flash Player PPAPI" = Adobe Flash Player 32 PPAPI
"Advanced SystemCare_is1" = Advanced SystemCare 12
"AIMP" = AIMP
"Anti-JJAD & UPdatestar setup without mc-flurry widen-ushuaia" = Anti-JJAD & UPdatestar setup without mc-flurry widen-ushuaia
"Anti-Twin 2019-10-20 15.19.12" = Anti-Twin (Installation 20/10/2019)
"AU11_is1" = Advanced Uninstaller PRO - Version 12
"Audacity_is1" = Audacity 2.3.2
"Avast Secure Browser" = Avast Secure Browser
"AVG Secure Browser" = AVG Secure Browser
"BitComet_x64" = BitComet 1.59
"Comodo Dragon" = Comodo Dragon
"Compel install Adaptec WinASPI-4.6.0(1021)_is1" = Compel Adaptec WinASPI
"Deluge" = Deluge 1.3.15
"DMX5_is1" = DriverMax 11
"Driver Booster_is1" = Driver Booster 7
"Dropbox" = Dropbox
"Easy-Social Social Login Launcher" = Easy-Social - Social Login Launcher - An application that Launches Social Networking sites
"eScan Anti-Virus (AV) Edition for Windows_is1" = eScan Anti-Virus (AV) Edition for Windows
"FormatFactory" = FormatFactory 4.9.0.0
"Free Sound Recorder_is1" = Free Sound Recorder v10.8.2.4
"Free Studio_is1" = Free Studio
"Free Torrent Download_is1" = Free Torrent Download
"Free YouTube Download_is1" = Free YouTube Download
"FreeFileSync_is1" = FreeFileSync 10.17
"Goodgame Big Farm" = Goodgame Big Farm
"Goodgame Empire" = Goodgame Empire
"Google Chrome" = Google Chrome
"InlogOptimizer_is1" = InlogOptimizer version 3.1
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint 2.5
"InstallShield_{D7EACFE3-BC6A-48bb-B28C-4DBF318225E3}" = CyberLink PowerProducer 6
"IObit Software Updater_is1" = IObit Software Updater
"IObitUninstall" = IObit Uninstaller 9
"IrfanView" = IrfanView 4.53 (32-bit)
"LFS Hyper-UEFM-Anti-JJAD-Aide Sociale & Vivre Avec Quelqu'un Softwares-Softwares i a timofache non-sécurisés setup+entretien Pre_Scan pour forums" = LFS Hyper-UEFM-Anti-JJAD-Aide Sociale & Vivre Avec Quelqu'un Softwares-Softwares i a timofache non-sécurisés setup+entretien Pre_Scan pour forums
"Moo0 RightClicker" = Moo0 Clic Droit 1.56
"Moo0 VideoCutter" = Moo0 Couper la Vidéo 1.17
"Moo0 VoiceRecorder" = Moo0 Enregistreur audio 1.49
"Multitimer_is1" = Multitimer version 1.0
"Nero_tuneitup_is1" = Nero TuneItUp
"NVDA" = NVDA
"OneSafe PC Cleaner_is1" = OneSafe PC Cleaner v6.9.12.0
"Opera 64.0.3417.61" = Opera Stable 64.0.3417.61
"Password Finder_is1" = UpdateStar Password Finder
"qBittorrent" = qBittorrent 4.1.8
"QQPCMgr" = PC Manager12.3
"RegCure" = RegCure
"Slowin Killer" = Slowin' Killer
"Social Downloader for Facebook, Instagram and Twitter_is1" = Social Downloader for Facebook, Instagram and Twitter 2.7.0.0
"Social Lite_is1" = Social Lite 2
"SocialFolders" = SocialFolders
"Soutien Anti-JJAD & UPdatestar without Anti Trojan Elite's bug setup" = Soutien Anti-JJAD & UPdatestar without Anti Trojan Elite's bug setup
"Stellar Data Recovery Professional_is1" = Stellar Data Recovery Professional
"The KMPlayer" = KMPlayer (remove only)
"Usbfix" = UsbFix Anti-Malware Premium
"UX Pack" = macOS UX Pack
"Video Converter_is1" = UpdateStar Video Converter
"VPNPRO_is1" = VPN PRO
"WarThunder" = WarThunder
"Wise Auto Shutdown_is1" = Wise Auto Shutdown 1.7.5
"World Of Warships" = World Of Warships

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-2879697129-1855103171-3652533847-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"LiteStep Installer" = LiteStep
"uTorrent" = µTorrent
"WinDirStat" = WinDirStat 1.1.2

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-2879697129-1855103171-3652533847-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GoToAssist Remote Support Expert" = GoToAssist Expert 4.7.0.1673
"MixPad" = MixPad - Mixeur de fichiers audio
"OneDriveSetup.exe" = Microsoft OneDrive
"YandexBrowser" = Yandex

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 23/10/2019 03:23:13 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (5344,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 04:44:27 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (3408,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 07:03:23 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (8040,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 11:03:23 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (17600,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 14:01:07 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (13212,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 15:03:23 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (16336,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 19:03:21 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (7776,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 19:54:25 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (3372,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 20:12:34 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (11120,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error - 23/10/2019 20:52:28 | Computer Name = ANTI-JJAD | Source = ESENT | ID = 455
Description = svchost (1444,R,98) TILEREPOSITORYS-1-5-18: L erreur -1023 (0xfffffc01)
s est produite lors de l ouverture d un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

[ Microsoft-Windows-Diagnostics-Performance/Operational Events ]
Error - 19/10/2019 22:27:19 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 101
Description =

Error - 19/10/2019 22:27:19 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 101
Description =

Error - 19/10/2019 22:27:19 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 110
Description =

Error - 21/10/2019 12:48:19 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 200
Description =

Error - 21/10/2019 12:48:20 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 100
Description =

Error - 21/10/2019 12:48:20 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 101
Description =

Error - 21/10/2019 12:48:20 | Computer Name = DESKTOP-QQFU17M | Source = Microsoft-Windows-Diagnostics-Performance | ID = 101
Description =

Error - 22/10/2019 05:34:51 | Computer Name = ANTI-JJAD | Source = Microsoft-Windows-Diagnostics-Performance | ID = 203
Description =

[ Parameters Events ]
OTL encountered an error while reading this event log. It may be corrupt.
[ State Events ]
OTL encountered an error while reading this event log. It may be corrupt.
Error - 22/10/2019 23:38:46 | Computer Name = ANTI-JJAD | Source = disk | ID = 262298
Description = L opération d E/S à l adresse de bloc logique 0xf4800 pour le disque
2 (nom d objet périphérique physique : \Device\000000be) a échoué en raison d une
erreur matérielle.

Error - 22/10/2019 23:38:46 | Computer Name = ANTI-JJAD | Source = disk | ID = 262298
Description = L opération d E/S à l adresse de bloc logique 0xf4800 pour le disque
2 (nom d objet périphérique physique : \Device\000000be) a échoué en raison d une
erreur matérielle.

Error - 22/10/2019 23:39:09 | Computer Name = ANTI-JJAD | Source = Service Control Manager | ID = 7003
Description = Le service HTTP dépend du service suivant : WinQuic. Ce dernier n est
peut-être pas installé.

Error - 22/10/2019 23:39:41 | Computer Name = ANTI-JJAD | Source = Service Control Manager | ID = 7003
Description = Le service HTTP dépend du service suivant : WinQuic. Ce dernier n est
peut-être pas installé.

Error - 22/10/2019 23:42:51 | Computer Name = ANTI-JJAD | Source = Service Control Manager | ID = 7003
Description = Le service HTTP dépend du service suivant : WinQuic. Ce dernier n est
peut-être pas installé.

Error - 22/10/2019 23:43:47 | Computer Name = ANTI-JJAD | Source = Application Popup | ID = 1060
Description =

Error - 22/10/2019 23:43:47 | Computer Name = ANTI-JJAD | Source = Service Control Manager | ID = 7000
Description = Le service eapihdrv n a pas pu démarrer en raison de l erreur : %%1275

Error - 22/10/2019 23:43:48 | Computer Name = ANTI-JJAD | Source = Application Popup | ID = 1060
Description =

Error - 22/10/2019 23:43:48 | Computer Name = ANTI-JJAD | Source = Service Control Manager | ID = 7000
Description = Le service eapihdrv n a pas pu démarrer en raison de l erreur : %%1275

Error - 22/10/2019 23:43:48 | Computer Name = ANTI-JJAD | Source = Application Popup | ID = 1060
Description =

< End of report >

Signaler le contenu de ce document