Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21-03-2021
Exécuté par Nabil (24-03-2021 12:04:07)
Exécuté depuis C:\Users\33781\Desktop
Windows 10 Home Version 20H2 19042.867 (X64) (2021-03-22 19:44:04)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-881727507-557841450-4041733101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-881727507-557841450-4041733101-503 - Limited - Disabled)
Invité (S-1-5-21-881727507-557841450-4041733101-501 - Limited - Disabled)
Nabil (S-1-5-21-881727507-557841450-4041733101-1001 - Administrator - Enabled) => C:\Users\33781
WDAGUtilityAccount (S-1-5-21-881727507-557841450-4041733101-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0) (Version: 21.0 - Adobe Systems Incorporated)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blitz 1.13.140 (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.13.140 - Blitz, Inc.)
Borderless Gaming (HKLM-x32\...\Borderless Gaming_is1) (Version: 9.5.6 - Andrew Sampson)
Discord (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{B937FE60-4887-4C53-8C57-8821CBA819FD}) (Version: 1.1.279.0 - Epic Games, Inc.)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.90 - Google LLC)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{86ED81C0-A445-4200-9162-2E9E36BA997E}) (Version: 17.2.11.1033 - Intel Corporation)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
KULT XENON (HKLM-x32\...\{31DC070C-1EA3-48B2-9301-F0F0EEDF484E}_is1) (Version: 1.0 - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lunar Client (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 2.5.3 - Moonsworth, LLC)
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.13801.20294 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.57 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.52.1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2019 (HKLM-x32\...\{1edcd8d2-905a-4e93-bfdf-92ed5601528a}) (Version: 16.0.28801 - Microsoft Corporation)
MiniTool Power Data Recovery 9.2 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 9.2 - MiniTool Software Limited)
Node.js (HKLM\...\{70453304-793B-4FAB-A673-FB14AF816C9B}) (Version: 14.15.4 - Node.js Foundation)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 461.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.92 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.94.46774 - Electronic Arts, Inc.)
Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
uTorrent Web (HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\utweb) (Version: 1.1.3 - BitTorrent, Inc.)
VEGAS Pro 17.0 (HKLM\...\{8D36A81E-17CF-11EA-AE80-00155D6302F2}) (Version: 17.0.387 - VEGAS)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 1.0.8.1 - Voicemod S.L.)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
XMind 10.2.1 (HKLM\...\fbd30ee5-8150-549e-9aed-fd9d444364fb) (Version: 10.2.1 - XMind Ltd.)
Packages:
=========
AudioWizard -> C:\Program Files\WindowsApps\ICEpower.AudioWizard_1.5.28.0_x64__dxp88312j1fgj [2020-12-09] (ICEpower)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-07] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-03-22] (Microsoft Corporation)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-03-22] (INTEL CORP)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.0.1.0_neutral__w1wdnht996qgy [2019-06-29] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-22] (Microsoft Studios) [MS Ad]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_2.3.18.0_x64__qmba6cd70vzyy [2021-03-06] (ASUSTeK COMPUTER INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-03-22] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.18.233.0_x64__dt26b99r8h8gj [2020-12-08] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0 [2021-03-08] (Spotify AB) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-08] () [Fichier non signé] [Fichier en cours d'utilisation]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-05-08] () [Fichier non signé] [Fichier en cours d'utilisation]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_9ec766fc3b32fb0e\nvshext.dll [2021-03-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Fichier non signé]
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2020-12-07 11:17 - 2020-12-08 17:51 - 000179200 _____ (Fortemedia) [Fichier non signé] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.18.233.0_x64__dt26b99r8h8gj\FMAPOCTL.dll
2019-05-08 07:05 - 2019-05-08 07:05 - 000126976 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2020-07-09 15:15 - 2020-07-09 15:15 - 000023040 _____ (Synaptics Incorporated.) [Fichier non signé] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.18.233.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-03-20 19:51 - 2021-03-20 19:51 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfjhiqhnhm [0]
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`pgyjhiqhnhm [0]
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKU\S-1-5-21-881727507-557841450-4041733101-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-881727507-557841450-4041733101-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-881727507-557841450-4041733101-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D090920-N0700A9FCDBB39EF&form=CONBDF&conlogo=CT3335799&q={searchTerms}
SearchScopes: HKU\S-1-5-21-881727507-557841450-4041733101-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D090920-N0700A9FCDBB39EF&form=CONBDF&conlogo=CT3335799&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-02-24] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-02-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\sharepoint.com -> hxxps://univgrenoble-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2020-09-28 09:32 - 2020-09-28 09:32 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\nodejs\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-881727507-557841450-4041733101-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\33781\OneDrive\Images\Saved Pictures\one_piece_4k-1920x1080.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-881727507-557841450-4041733101-1001\...\StartupApproved\Run: => "com.blitz.app"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{1BB9BDB7-5DEC-4C0D-8DD1-780E821638E9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Valhalla\ACValhalla_Plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E8711DD2-5425-425D-BA40-DBAD2817846E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.57\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{C3BBF7E1-2AB8-4AA6-B33B-FAFF08405745}C:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe] => (Allow) C:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe => Pas de fichier
FirewallRules: [TCP Query User{4977D927-3440-4F47-AFEF-FF095A953BF8}C:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe] => (Allow) C:\program files\epic games\worldwarz\en_us\client\bin\pc\wwzretailegs.exe => Pas de fichier
FirewallRules: [UDP Query User{39BAA996-D3D8-4A53-A8DD-65A75D4D6247}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed unity\acu.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed unity\acu.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{8120A30F-DEE8-4BB4-99F9-EBB1E567624A}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed unity\acu.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed unity\acu.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{75EC98D4-2D6B-4C14-AE92-810319DF4B2F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{F3DBD704-B093-4DEC-8196-6E17D6A88C6F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{DDA3CC70-0A47-478E-AD89-64DB4072645E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6B120C12-CE6E-42E5-92AF-5567C7ECCE74}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EBFF2BDF-D1AD-4513-9E8A-E1B6B4000849}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9799AACD-70E6-4D6E-931F-8866626209FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D2A49062-9DAE-445A-B99B-ACFEE91723AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D21F088C-B010-456A-A947-2831C7839D8F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CF1E5D24-BE08-48E3-8DAB-B37781D7EACD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{888385FE-7D6C-4A30-9A91-80AB76E94D3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E925FFEC-28FE-4005-9D19-7A3103AEECFF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.154.592.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{805F02BB-E2ED-470E-AB74-141A5FDABA2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{B5838E67-3260-4AA6-B280-2334EEA2F4D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{A91A5CD5-A370-416A-A42D-A57A6A37AF4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Fichier non signé]
FirewallRules: [{2DE4F1E5-1183-4BA6-8777-380829DA2166}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Fichier non signé]
FirewallRules: [{C454A2DA-D38B-4D55-B198-CFCC5B91E855}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{84A73AF8-E55A-4B82-B7C9-E0C70371A651}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{F807D537-5C29-4CBF-9C72-9C6299F6953A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{5CFE9F78-D345-4AA0-932E-B3D298430EB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [UDP Query User{2834D19D-B385-44AC-BED6-070F77A2A1B5}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => Pas de fichier
FirewallRules: [TCP Query User{B0119D68-E655-4FAE-8CD3-10055D3CDF11}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => Pas de fichier
FirewallRules: [{B78D8395-0B18-467F-B80E-66A1A605AB48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé]
FirewallRules: [{24E06F6B-BBD1-4D9C-8C7F-0BA3B28BF63C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé]
FirewallRules: [UDP Query User{9B5FD8EB-49A2-4B57-BBA6-E66E158F770F}C:\users\33781\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe] => (Allow) C:\users\33781\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe
FirewallRules: [TCP Query User{6266EE3C-4ABF-4B3F-B0FF-E24ABDD6F904}C:\users\33781\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe] => (Allow) C:\users\33781\.lunarclient\jre\zulu8.50.0.53-ca-fx-jre8.0.275-win_x64\bin\javaw.exe
FirewallRules: [UDP Query User{2C89656A-F88E-49A0-AA48-E8B85C4F0B82}C:\program files (x86)\steam\steamapps\common\sandstorm_beta\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm_beta\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{065C9230-3925-456A-B96C-890CF24B86D1}C:\program files (x86)\steam\steamapps\common\sandstorm_beta\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm_beta\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [{39C6BE95-81BD-4A0C-9E7F-A67FE04C77F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\sogame\game\sogame.exe => Pas de fichier
FirewallRules: [{9831EFC9-EF14-4313-8684-EDA31FEE7A73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\sogame\game\sogame.exe => Pas de fichier
FirewallRules: [{55A4B0B2-D767-4F59-99DC-8759E7737C0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2C77053B-473F-48B2-B0C7-E64D12BB85C1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CEFEDC92-E389-4EC8-9512-76BFA0F5B07C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6CA1A666-6DB4-4691-A503-B5BBB145CD86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{FE176F32-8986-4F01-8FA4-187D1132676E}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{102ADC0B-F269-4DD1-9E60-D93375A4FFEC}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [UDP Query User{1ECD4499-141B-4510-B62F-B23F954FDC98}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{D7CE885D-043A-477A-A045-477E6286C6E7}C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\sandstorm\insurgency\binaries\win64\insurgencyclient-win64-shipping.exe => Pas de fichier
FirewallRules: [UDP Query User{1B7A09DA-83B5-4282-B253-10E919FF6520}C:\users\33781\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\33781\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [TCP Query User{8DA39C7B-CA83-4D7B-81C8-1C0914CEE254}C:\users\33781\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\33781\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [UDP Query User{42E8295A-CEA2-4B3E-BFA5-3ABAAEB03D82}C:\program files\java\jre1.8.0_271\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\java.exe => Pas de fichier
FirewallRules: [TCP Query User{0BC3AC96-8D10-4E6E-9C61-F9D3A2B8BEEC}C:\program files\java\jre1.8.0_271\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\java.exe => Pas de fichier
FirewallRules: [UDP Query User{52731CA6-5A08-4883-98BC-66A582DC3B10}C:\program files\java\jre1.8.0_271\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\java.exe => Pas de fichier
FirewallRules: [TCP Query User{60805497-3E1B-4CAD-998D-CD3E87701A59}C:\program files\java\jre1.8.0_271\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\java.exe => Pas de fichier
FirewallRules: [UDP Query User{1CAA6957-B7D8-4ED8-BF5C-D9F85AB85F28}C:\users\33781\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\33781\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{7371611B-7A7C-45E0-9789-DF29E751AA25}C:\users\33781\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\33781\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{F0B81E2A-0DDA-4318-9D8E-B6EAA54B2119}C:\users\33781\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\33781\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [TCP Query User{FB63CA1B-73EE-4261-924D-944105F172E6}C:\users\33781\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\33781\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.)
FirewallRules: [{57AF61C7-3F5D-4CBF-986B-0B62ABC1E653}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{0C4EFA48-CF29-4253-8158-C42CBD9DCD52}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe => Pas de fichier
FirewallRules: [TCP Query User{4CF2B09E-A207-49E0-A548-54DF4C077DAE}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe => Pas de fichier
FirewallRules: [UDP Query User{054E461A-9FFA-4AFA-B820-008716A1DF29}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Pas de fichier
FirewallRules: [TCP Query User{A35C5316-03C1-49B6-B138-F15556A46E94}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Pas de fichier
FirewallRules: [UDP Query User{3FBA6669-C75A-40E4-827A-6B909FC4184E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Pas de fichier
FirewallRules: [TCP Query User{46D0F656-2816-4BEE-9918-7B386C50CC60}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => Pas de fichier
FirewallRules: [{6CE1A9E9-D8D9-4E5F-89F7-96A226EFC373}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{23253554-014E-46FF-BD66-92ECEB2ED03C}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{ACE49991-B315-41B3-AEA4-A5723493FC42}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{AF69CB89-5184-4AE1-B2F2-0D3CC6F801CE}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [UDP Query User{A00FF0CA-E7CA-45E5-9BD7-AEA6C7043B45}C:\program files (x86)\teamspeak 3 client\ts3client_win32.exe] => (Block) C:\program files (x86)\teamspeak 3 client\ts3client_win32.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [TCP Query User{A2FF5D00-C0AD-4DEC-8125-A5AE42C2769B}C:\program files (x86)\teamspeak 3 client\ts3client_win32.exe] => (Block) C:\program files (x86)\teamspeak 3 client\ts3client_win32.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH)
FirewallRules: [UDP Query User{5B4C93A6-095C-4C74-9A38-77DF825BDC6B}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_chromebrowser] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_chromebrowser => Pas de fichier
FirewallRules: [TCP Query User{49BC4AE3-B1F0-4914-ADC1-B4DDB4507324}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_chromebrowser] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_chromebrowser => Pas de fichier
FirewallRules: [{ED81594F-D8BA-4B05-AAA4-DB1CD8D49918}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => Pas de fichier
FirewallRules: [UDP Query User{83A39BF3-0B78-4789-A4E3-7BA2C3B27880}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier
FirewallRules: [TCP Query User{D3F03630-9CFA-4CF5-B7A4-9737F12D1429}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier
FirewallRules: [UDP Query User{965F60E7-0023-4981-957F-9308D1FB4036}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe => Pas de fichier
FirewallRules: [TCP Query User{11784304-816B-4AFC-8D20-C44CFD2B9624}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2060_gtaprocess.exe => Pas de fichier
FirewallRules: [{597469EE-B213-4C94-A63A-3DD06706185B}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe => Pas de fichier
FirewallRules: [{A5CA0C89-F8FF-4D5A-A1B0-E8A5C96F45F1}] => (Allow) C:\Program Files (x86)\LetsView\LetsView\LetsView.exe => Pas de fichier
FirewallRules: [{CE55482C-9FA5-460E-B1B8-3E834A8F4075}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier
FirewallRules: [{91939277-8BB3-4010-BDA2-0419DA330735}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier
FirewallRules: [UDP Query User{A7E8A19F-36D6-4243-A1EA-0955D9254BFC}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier
FirewallRules: [TCP Query User{1421AF55-DF03-4BFD-956F-185D039C8689}C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\33781\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier
FirewallRules: [UDP Query User{E64D30CE-AE8A-4192-A88B-FBEA646F60B8}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Pas de fichier
FirewallRules: [TCP Query User{1B6BCDE0-AAA6-4D38-9CBB-54F74772EE71}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Pas de fichier
FirewallRules: [UDP Query User{B1AF2DB5-B479-4B98-99B1-14156425F319}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Pas de fichier
FirewallRules: [TCP Query User{C7CD8458-EE7F-4AEB-B617-E9CA5C22E9C2}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe => Pas de fichier
FirewallRules: [UDP Query User{7F0C87BE-B163-4460-9417-5341E6D77F51}C:\users\33781\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\33781\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F4A70C29-B82F-456E-8B67-E0806470FFE4}C:\users\33781\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\33781\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{24FA8298-52A3-4429-9994-2D2E5C18C11F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{AE978179-7DFD-42DE-BA28-3B6290572543}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{87F8A9CB-D04F-4AC8-8AB2-81D0E15BEB50}C:\users\33781\appdata\local\vysor\app-3.1.4\vysor.exe] => (Allow) C:\users\33781\appdata\local\vysor\app-3.1.4\vysor.exe (Vysor Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{8A1A739B-218A-455D-B654-5082785687DB}C:\users\33781\appdata\local\vysor\app-3.1.4\vysor.exe] => (Allow) C:\users\33781\appdata\local\vysor\app-3.1.4\vysor.exe (Vysor Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{085ED721-20C6-4EC0-9860-2F50F04F904F}C:\program files (x86)\tenorshare\ultdata - android data recovery\ultdata for android.exe] => (Allow) C:\program files (x86)\tenorshare\ultdata - android data recovery\ultdata for android.exe => Pas de fichier
FirewallRules: [TCP Query User{B58A7FE2-2FF1-476A-B6DE-A4602C0F7C77}C:\program files (x86)\tenorshare\ultdata - android data recovery\ultdata for android.exe] => (Allow) C:\program files (x86)\tenorshare\ultdata - android data recovery\ultdata for android.exe => Pas de fichier
FirewallRules: [{780F42F1-A4EA-47C2-AC5C-45D6D0BBDB13}] => (Allow) C:\Users\33781\Downloads\ultdata-android.exe => Pas de fichier
FirewallRules: [{02DD85F2-52CA-41DD-8291-50731A4BEEEE}] => (Allow) C:\Users\33781\Downloads\ultdata-android.exe => Pas de fichier
FirewallRules: [UDP Query User{745585A6-A867-4928-BBB1-9639C99FB671}C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{D4E90B21-2A10-4A08-9A4C-726655584B92}C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{207886F2-6BDC-4617-85DF-BCE419D9FFBE}C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{22819491-3790-459A-8081-1766CFA2D65D}C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\onedrive\documents\my games\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [{F765B12B-A639-4FD7-A236-CDD2F6A42ABB}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{2CE47A26-EA13-4546-AC5B-3389BCBE8048}C:\users\33781\desktop\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\desktop\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{C8489A7B-53D3-4565-A703-5C3D506B026C}C:\users\33781\desktop\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe] => (Allow) C:\users\33781\desktop\among.us.v2020.9.9s\among.us.v2020.9.9s\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{AA94667C-B40F-431C-834E-9B43873AE99B}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe => Pas de fichier
FirewallRules: [TCP Query User{065FBF11-A5C9-4D90-8090-DFD3FB380621}C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe => Pas de fichier
FirewallRules: [UDP Query User{6CFB30D0-5F19-4417-8DDD-793D517B0A2A}C:\users\33781\desktop\discord.bot.maker\discord bot maker\discord bot maker.exe] => (Block) C:\users\33781\desktop\discord.bot.maker\discord bot maker\discord bot maker.exe => Pas de fichier
FirewallRules: [TCP Query User{C940ACAE-8833-48EB-9226-3BB8519B40F0}C:\users\33781\desktop\discord.bot.maker\discord bot maker\discord bot maker.exe] => (Block) C:\users\33781\desktop\discord.bot.maker\discord bot maker\discord bot maker.exe => Pas de fichier
FirewallRules: [{4C0F4545-18A3-4699-B308-B1F26CD0EC7C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7A6F19B5-06F0-4D77-9AEF-2E481CC376E1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{E9878E64-0419-4AD7-A8A5-3A50C601F47A}C:\users\33781\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\33781\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{607F9591-329F-421B-B421-4C5038168E3A}C:\users\33781\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\33781\appdata\roaming\utorrent web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Fichier non signé]
FirewallRules: [{DBEFFCEC-FB65-4467-B4F4-7804EE1CA0F3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0DFD0927-425E-42B9-A6D7-122CBDAFF363}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EB7CE006-8FB2-43DE-9452-803B7F6B5FC1}] => (Allow) C:\Users\33781\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Fichier non signé]
FirewallRules: [{B3FAC625-AD23-44C6-80BC-4D78B8B10723}] => (Allow) C:\Users\33781\AppData\Roaming\uTorrent Web\utweb.exe (Jenkins Win Client Build CA -> BitTorrent Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{0073AD0B-7A89-45E6-8727-5B2E59F2E471}C:\users\33781\appdata\roaming\files\bin\kmss.exe] => (Allow) C:\users\33781\appdata\roaming\files\bin\kmss.exe => Pas de fichier
FirewallRules: [TCP Query User{D9D975E0-EE30-4137-9D50-24ED075ED9CF}C:\users\33781\appdata\roaming\files\bin\kmss.exe] => (Allow) C:\users\33781\appdata\roaming\files\bin\kmss.exe => Pas de fichier
FirewallRules: [{DC2BA40A-DFDA-4F3F-9029-7DD228661B2C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{020E62B1-49AA-4295-BA5C-EA0D81A9338A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CCDF22CB-1C85-4172-BC1D-923A22732347}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{16AD0664-3888-415E-8997-D7A347BE025B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{C555A9D5-BC04-4DB4-84B3-10AF16C3A41B}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => Pas de fichier
FirewallRules: [TCP Query User{A6BC2B3C-7DDB-4CC6-ACAD-7C0896692869}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => Pas de fichier
FirewallRules: [UDP Query User{3FB6DE4D-0808-4CCC-999C-548EE0B8AA94}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => Pas de fichier
FirewallRules: [TCP Query User{BA8914FE-04D8-4B48-B899-DE45FEE56298}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => Pas de fichier
FirewallRules: [{EC03EF59-6B28-47E8-ABFE-A534CFE0108B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{526158DF-5FE2-45FF-BACD-5DDBADE9C9CD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{7D1335F1-1BFA-45E4-99F7-B42BAE517EC8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{71B4CC1F-A74D-4A00-A157-E2A18E7FE803}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A92B3303-0CFA-4CCD-8638-E6D8ACDF738F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50EC99A2-2857-4D42-A126-E017D7EE4F9A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{798487C8-51E3-433C-A756-40C240824D2E}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_2346917970a59cb8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{2E887FA3-FB4E-4E8E-A7AD-EF120E4552CD}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_2346917970a59cb8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{F52C7BFD-04DE-4542-B538-B1317AD05073}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_2346917970a59cb8\ASUSLinkNear\AsusLinkNear.exe (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
==================== Points de restauration =========================
24-03-2021 10:49:22 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (03/24/2021 11:56:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.19041.844, horodatage : 0x5d74feca
Nom du module défaillant : RPCRT4.dll, version : 10.0.19041.746, horodatage : 0xf564aeb4
Code d’exception : 0xc0020043
Décalage d’erreur : 0x00000000000a94b4
ID du processus défaillant : 0x1ef0
Heure de début de l’application défaillante : 0x01d7209348904c55
Chemin d’accès de l’application défaillante : C:\WINDOWS\Explorer.EXE
Chemin d’accès du module défaillant: C:\WINDOWS\System32\RPCRT4.dll
ID de rapport : 0e32ba19-60e0-47e7-87ce-28626f2ed4f1
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (03/24/2021 11:56:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante iaStorAfsService.exe, version : 17.8.0.1065, horodatage : 0x5dee848f
Nom du module défaillant : iaStorAfsService.exe, version : 17.8.0.1065, horodatage : 0x5dee848f
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000075039
ID du processus défaillant : 0x102c
Heure de début de l’application défaillante : 0x01d720934565cb7a
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\iaStorAfsService.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\iaStorAfsService.exe
ID de rapport : dcdd6bf9-af22-429a-956a-eaf6990d4836
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (03/24/2021 10:47:44 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Error: (03/23/2021 09:28:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (03/23/2021 09:28:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (03/23/2021 09:28:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (03/23/2021 09:28:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (03/23/2021 11:19:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante OpenBullet.exe, version : 1.0.0.0, horodatage : 0x5ee22dd6
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.804, horodatage : 0xb610d74d
Code d’exception : 0xe0434352
Décalage d’erreur : 0x0012a8b2
ID du processus défaillant : 0x7bc
Heure de début de l’application défaillante : 0x01d71fcdf861da99
Chemin d’accès de l’application défaillante : C:\Users\33781\AppData\Local\Temp\OpenBullet.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : fff4ff9b-e09b-4304-8277-a88a4370c299
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (03/24/2021 11:56:56 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Optane(TM) Memory Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (03/24/2021 10:50:50 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-923R35GN)
Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/24/2021 10:49:45 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80240017 : 2020-10 Mise à jour de sécurité pour Adobe Flash Player sous Windows 10 Version 20H2 sur systèmes x64 (KB4580325).
Error: (03/24/2021 10:47:48 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-923R35GN)
Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/24/2021 10:47:35 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service IMF Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (03/24/2021 08:16:09 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-923R35GN)
Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/23/2021 09:31:44 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-923R35GN)
Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/23/2021 09:31:43 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-923R35GN)
Description: Le serveur {7966B4D8-4FDC-4126-A10B-39A3209AD251} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Windows Defender:
================
Date: 2021-03-24 10:07:44
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {46E06D9D-5224-4DCF-85FA-C8071D87EB50}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2021-03-24 08:59:31
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {5F4B835B-C2E3-4684-9A94-5C8E02108954}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : LAPTOP-923R35GN\Nabil
Date: 2021-03-24 08:59:31
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\33781\Downloads\Sapphire Plugins By Safted.rar; file:_C:\Users\33781\Downloads\Sapphire Plugins By Safted.rar->Sapphire Plugins (SVP)\Patch.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : LAPTOP-923R35GN\Nabil
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.333.1041.0, AS: 1.333.1041.0, NIS: 1.333.1041.0
Version du moteur : AM: 1.1.17900.7, NIS: 1.1.17900.7
Date: 2021-03-24 08:29:14
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/CryptInject!ml&threatid=2147760506&enterprise=0
Nom : Trojan:Win32/CryptInject!ml
ID : 2147760506
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\33781\AppData\Local\Temp\Rar$EXb412.1013\Release\Update.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-923R35GN\Nabil
Nom du processus : C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFCore.exe
Version de la veille de sécurité : AV: 1.333.1041.0, AS: 1.333.1041.0, NIS: 1.333.1041.0
Version du moteur : AM: 1.1.17900.7, NIS: 1.1.17900.7
Date: 2021-03-23 21:30:19
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.AA04&threatid=2147757461&enterprise=0
Nom : Trojan:Win32/Ymacco.AA04
ID : 2147757461
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\33781\cscript\Dxpserver.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-923R35GN\Nabil
Nom du processus : C:\Windows\System32\wscript.exe
Version de la veille de sécurité : AV: 1.333.1041.0, AS: 1.333.1041.0, NIS: 1.333.1041.0
Version du moteur : AM: 1.1.17900.7, NIS: 1.1.17900.7
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. X571GT.308 12/17/2020
Carte mère: ASUSTeK COMPUTER INC. X571GT
Processeur: Intel(R) Core(TM) i5-8300H CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 67%
Mémoire physique - RAM - totale: 8044.61 MB
Mémoire physique - RAM - disponible: 2623.57 MB
Mémoire virtuelle totale: 14956.61 MB
Mémoire virtuelle disponible: 7552.48 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:475.96 GB) (Free:99.36 GB) NTFS
\\?\Volume{a2665128-cce1-4f8b-b448-349d4bcfee05}\ () (Fixed) (Total:0.7 GB) (Free:0.08 GB) NTFS
\\?\Volume{ccdc35ae-7c96-4a2f-baa3-dc16bd07fb2a}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 5BD68D71)
Partition: GPT.
==================== Fin de Addition.txt =======================