Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 25.04.2018
Exécuté par Quentin (30-04-2018 20:56:30)
Exécuté depuis C:\Users\Quentin\Desktop
Windows 10 Home Version 1709 16299.371 (X64) (2017-12-03 11:54:31)
Mode d'amorçage: Safe Mode (minimal)
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-529550410-3318124819-2480045889-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-529550410-3318124819-2480045889-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-529550410-3318124819-2480045889-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invité (S-1-5-21-529550410-3318124819-2480045889-501 - Limited - Disabled)
L2ZA93LA3Y (S-1-5-21-529550410-3318124819-2480045889-1002 - Limited - Enabled) => C:\Users\L2ZA93LA3Y
Quentin (S-1-5-21-529550410-3318124819-2480045889-1001 - Administrator - Enabled) => C:\Users\Quentin
WDAGUtilityAccount (S-1-5-21-529550410-3318124819-2480045889-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ableton Live 9 Suite (HKLM\...\{1D35814D-952D-4B55-A02D-BBD68CCB74C4}) (Version: 9.0.0.0 - Ableton)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
Cheat Engine 6.7 Beta 2 (HKLM\...\Cheat Engine 6.7 Beta 2_is1) (Version: - Cheat Engine)
Cosmoteer 0.12.12 (HKLM\...\{BC4C8EB1-3CD1-465D-B4D3-A15F9F0B4C4F}_is1) (Version: 0.12.12 - Walt Destler)
Crusader Kings II Jade Dragon (HKLM-x32\...\Crusader Kings II Jade Dragon_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\Discord) (Version: 0.0.300 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{5608B570-62D0-432A-A7CE-420EE204DDD1}) (Version: 1.1.121.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry 5 (HKLM-x32\...\Far Cry 5_is1) (Version: - )
Feu vert pour le permis de conduire - Correctif 2011 (HKLM-x32\...\{FA6A33F8-172D-4DE2-AC87-B336B10A0DF3}) (Version: - )
Feu Vert pour le permis de conduire (HKLM-x32\...\{26284E06-C005-4C6A-ADA6-1E99D843B08E}) (Version: - )
Frostpunk (HKLM-x32\...\Frostpunk_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Infinity (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\Infinity) (Version: 3.0.51 - WeMod)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Kingdoms and Castles (HKLM-x32\...\2067763543_is1) (Version: 108r3 - GOG.com)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Logic Pro 4.0 (HKLM-x32\...\Logic Pro_is1) (Version: - Babya)
Malwarebytes version 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Mass Effect: Andromeda (HKLM-x32\...\Mass Effect: Andromeda_is1) (Version: - )
Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.9226.2114 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\OneDriveSetup.exe) (Version: 18.044.0301.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Middle Earth Shadow of Mordor (HKLM-x32\...\Middle Earth Shadow of Mordor_is1) (Version: - )
Middle-earth - Shadow of Mordor GOTY (HKLM-x32\...\Middle-earth - Shadow of Mordor GOTY_is1) (Version: - )
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Monopoly Plus version 1.0 (HKLM\...\Monopoly Plus_is1) (Version: 1.0 - STEAMPUNKS)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{3566dda0-c3c3-433c-bf1b-45dc8d62b354}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.14 - ProtectDisc Software GmbH)
qBittorrent 3.3.15 (HKLM-x32\...\qBittorrent) (Version: 3.3.15 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8029 - Realtek Semiconductor Corp.)
Scribblenauts Unlimited (HKLM-x32\...\Scribblenauts Unlimited_is1) (Version: - )
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
South Park The Fractured But Whole version 1.0 (HKLM\...\South Park The Fractured But Whole_is1) (Version: 1.0 - CODEPUNKS)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Stellaris Apocalypse (HKLM-x32\...\Stellaris Apocalypse_is1) (Version: - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.29.69.1020 - Electronic Arts Inc.)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Total War: Warhammer (HKLM-x32\...\Total War: Warhammer_is1) (Version: - )
Totally Accurate Battle Simulator version 0.3.6 (HKLM-x32\...\{8670953D-FB1B-4365-B71A-A9560F37E1ED}_is1) (Version: 0.3.6 - Landfall)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Trust GXT Gaming Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: 1.00.0019 - )
Twitch (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 43.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {048C1AEF-33A4-4F61-8E29-5A08D16AFB89} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd)
Task: {0DBF1BC0-A7E7-416D-BD9D-41BBF5B6E250} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {11EAF7F5-3220-4037-B07B-8CBF39A1373F} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [2016-10-04] (InputMapper)
Task: {1DF83360-FECD-4010-AA94-FAAFF7DFA376} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd)
Task: {43017062-5161-4B9D-9018-A8837699BF90} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {47C5F2D4-46C7-404C-905F-44F3FB3D3901} - System32\Tasks\S-1-5-21-529550410-3318124819-2480045889-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {4BD5568F-547C-415A-894F-A6B468DE7B52} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-29] (Microsoft Corporation)
Task: {4F534F1A-078E-4D05-8BC8-AE5F9507C16D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {5663330C-31AB-4708-B480-FAE626EBBB8E} - \UCBrowserUpdaterCore -> Pas de fichier <==== ATTENTION
Task: {5EE903F5-5C34-4E2F-BA32-20C8FE999F98} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {6326D499-A930-4E51-9A7C-D9265688A02F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {90086AC8-7A47-4D1A-A6F4-DE47F559EAE6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {947498CE-53AE-4A3F-A078-52C8BDA8B06C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {9E971B9B-A087-4E27-A7A2-D7B724C2DFB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {AE7641F1-6A5B-4D5C-8A8F-027F7D8E52A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {B36AE2C5-44A0-4CF9-800F-9106C5A2D39F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-29] (Microsoft Corporation)
Task: {BEECAE19-EE09-422D-B0DE-AA305411DBC3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {CA0B3C34-996C-4024-A8E7-EFC138069A52} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
Task: {D4535237-960D-4E92-8734-0361D9667792} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {D6F27C56-58E2-440C-960D-557C9EBD2E10} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {ED69C157-8D07-4DB9-9472-6657DC874ECC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {F6E760AA-9E6D-4A5C-AD0E-FCF0BAA08816} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-30 19:52 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-03-14 12:49 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-03-14 12:49 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 002945024 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 000130560 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\PeopleUtilRT.Windows.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 007848448 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\Microsoft.People.NativeComponents.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\frseyxxh.sys:changelist [448]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\kelrpspq.sys:changelist [448]
AlternateDataStreams: C:\Users\Public\AppData:CSM [470]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-02-05 14:26 - 2018-04-23 21:45 - 000001002 ____R C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: Le média n'est pas connecté à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Cm108Sound"
HKLM\...\StartupApproved\Run: => "Login"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{9660C3C0-7B75-4A24-A9EF-586D2FD41E8C}] => (Allow) D:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{0ABF1439-3CC5-421D-B51D-476239DFCC07}] => (Allow) D:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{DDAC3CF0-52E0-4DAD-8B96-58C7C1BF000A}] => (Allow) D:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{DD2653D2-F44B-4222-9BA0-AE2D10A18486}] => (Allow) D:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [UDP Query User{1E4A0AD1-3864-462F-9E14-1F15F9F68A2D}F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{8D667238-81A5-4DA9-B498-BCF845EAA4E4}F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{C4500952-2A57-435D-A807-D05701E11455}D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{7A1DD0BB-0463-4C0F-B007-A73F850C39C8}D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{9210F5F5-6DDE-4768-A0A1-29804BA5DCB0}D:\monopoly plus\monopoly.exe] => (Allow) D:\monopoly plus\monopoly.exe
FirewallRules: [TCP Query User{1DC53FC3-0E4F-4462-B27D-53A87B1E3523}D:\monopoly plus\monopoly.exe] => (Allow) D:\monopoly plus\monopoly.exe
FirewallRules: [{E3CDFAD4-8EEC-4466-935F-C1FBA54F96E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AB8EEB7E-9EC1-4BA7-AFE3-151333266858}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{720A77E8-1FEA-43D2-8F11-C97D508ECF58}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6939FBE4-ED03-4A8F-AF6A-47A0827D192D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C58E4007-AF28-4B49-B452-844BA7B3DD96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{78EA95EC-EEAF-4BE7-B8E2-84AF7E5B09CE}] => (Allow) D:\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{E111633A-F927-4181-9D4A-0B2AA248247D}] => (Allow) D:\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{29B77E0D-A092-43E7-9790-362CF4994718}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{92E4FE14-FF12-431B-A49F-8174329D2605}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{94D46718-9EE0-45E6-AED4-746EAF81AC74}] => (Allow) LPort=25565
FirewallRules: [UDP Query User{B985BCBA-8CEC-4FD6-9F8C-60FB5A32EBD2}C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{61E2FE50-EC3F-45B1-8D6C-B7B04D6DC405}C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B70BE613-7266-495A-BBB6-090EC4DB93CE}E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{5F7858D5-A276-4296-A8B8-26C6BC40402E}E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{25C42B3D-6CB7-4F92-BF85-97D9857E4EF3}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{FBC88FFD-8457-4603-AB1E-76F5523FFDFA}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe
FirewallRules: [{CA0622A1-1157-4642-ABAA-49A1302CB369}] => (Allow) D:\SteamLibrary\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{1FED0CC9-E6E9-420C-96DF-E6B3DCEB60BA}] => (Allow) D:\SteamLibrary\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{1DB4425A-F2E9-4EEF-B044-51378C8A6CE4}] => (Allow) E:\SteamLibrary\steamapps\common\Dead Cells\deadcells_dx.exe
FirewallRules: [{198F2654-D43C-4958-A94A-9E3E236E6F1C}] => (Allow) E:\SteamLibrary\steamapps\common\Dead Cells\deadcells_dx.exe
FirewallRules: [UDP Query User{3F7ACB10-7DEA-45D1-9D40-580BFE1934BD}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{365D5B89-9CB2-4993-B537-44B03ACDC557}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{604242DB-3949-44C8-9E05-58AE4E0A9192}C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe
FirewallRules: [TCP Query User{9F5C3688-5C05-4F56-9C79-419F7C0787AB}C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe
FirewallRules: [UDP Query User{45B301D8-AA76-464F-81C5-FF0D4B8BD926}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{4857E991-87CE-4F1A-A9D2-F529AEEA3A16}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{3E22B1EB-80A8-4DB8-8569-0F6DF5BADA2D}] => (Allow) D:\qbtorrent\qBittorrent\qbittorrent.exe
FirewallRules: [{FD049BBB-2CDE-4CB1-98A1-10339D9E053C}] => (Allow) D:\qbtorrent\qBittorrent\qbittorrent.exe
FirewallRules: [{E40C2892-5707-49E9-B3C8-F76B87B70B53}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [UDP Query User{56D31D47-2576-443A-94BE-8F5063DA85BB}D:\games\total war - warhammer\warhammer.exe] => (Allow) D:\games\total war - warhammer\warhammer.exe
FirewallRules: [TCP Query User{66AAADBB-399F-48D6-A4B2-386ED240D359}D:\games\total war - warhammer\warhammer.exe] => (Allow) D:\games\total war - warhammer\warhammer.exe
FirewallRules: [UDP Query User{30F7B005-C0AB-4E05-9976-0BB15608F839}D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe
FirewallRules: [TCP Query User{82BB3B4A-457E-4523-BF8C-C39CB5AD17A1}D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe
FirewallRules: [{9DA4078B-0A9E-4DEE-96F1-5B00A962E04D}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{BC655B01-ED90-45B6-A209-D03A5DE6B634}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{4F27EFE0-AD4C-41B1-B777-1F7ABB696BBD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E2D8E626-096F-4893-B5AC-F012CA8562F2}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B8311EA1-388A-4259-BFCF-91DBD9E112E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5DB76F8A-7366-41B1-BA3E-4934E989CCCE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3AC8DC74-2D9B-4854-B057-85484A5E6695}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F0B8DC8A-A30F-482E-9082-5E9D81A41A8E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{ECF530C5-B91E-486C-9FCA-B03888E2D5B4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C9A8C67A-557D-4D56-99DC-2B4A1D233879}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{692217E2-AE7A-4481-8710-A3E6A7FAECC4}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{7C25D6BC-078F-491E-85B3-2262DA4CDE09}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{EE736BBB-051A-42AF-8B17-3CA4E23BABAD}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{6078A7BA-42E8-4FD5-94BD-DA0B3154D2D9}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{04C72A09-95E3-4E76-87D5-6D44B00A0332}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{05954389-92EC-4D16-8932-44EE24BDDB44}D:\jeux\overwatch\overwatch.exe] => (Allow) D:\jeux\overwatch\overwatch.exe
FirewallRules: [UDP Query User{9D967528-6E95-4BB9-A5F4-D009341EC4BC}D:\jeux\overwatch\overwatch.exe] => (Allow) D:\jeux\overwatch\overwatch.exe
FirewallRules: [{81D1BB13-0A6B-45BE-B272-47D6E7DEF451}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{9D2BFC81-FD81-45BA-9D21-9727079680F6}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{C1905969-68FC-4C02-BD25-13FEE14D5675}D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe
FirewallRules: [UDP Query User{4E59F368-B7F4-4DA9-B961-3C2D17F40F20}D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe
FirewallRules: [{BB1380DC-8E62-49AE-AA7B-7D07A1DB0E04}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{5757C82A-453A-4D43-94F6-4CF84B301C3F}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{79DA913B-35BD-45A1-ACA0-85F32E57C174}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{F5D5E662-9A7E-4098-AFF7-5C0011B5BDFB}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [TCP Query User{5DEF9F4D-21AC-42B0-9914-196F50788769}E:\northgard.v0.1.3886\northgard.exe] => (Allow) E:\northgard.v0.1.3886\northgard.exe
FirewallRules: [UDP Query User{84190C97-A2C8-4890-9D85-2EACA7F2088D}E:\northgard.v0.1.3886\northgard.exe] => (Allow) E:\northgard.v0.1.3886\northgard.exe
FirewallRules: [TCP Query User{9E14D519-FA88-4A4E-90B1-719B56AC33CA}C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe] => (Allow) C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe
FirewallRules: [UDP Query User{CC0AEB33-F11D-4535-A0D8-649608709240}C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe] => (Allow) C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe
FirewallRules: [TCP Query User{0748A3CE-EC99-4FD8-93A2-02E3221731C3}C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Block) C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [UDP Query User{AA112190-646A-4B32-86A8-DB8736C09F20}C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Block) C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [{A358C8A9-CBD6-4DD9-ADC4-8D93C7BA386C}] => (Allow) E:\SteamLibrary\steamapps\common\NewZ\NewZLauncher.exe
FirewallRules: [{2B4CFC2F-64C3-4D09-B93C-9EEEEC738D52}] => (Allow) E:\SteamLibrary\steamapps\common\NewZ\NewZLauncher.exe
FirewallRules: [TCP Query User{729A6F6A-7B7A-4C52-BCF8-13C02B889249}E:\steamlibrary\steamapps\common\newz\thenewz.exe] => (Allow) E:\steamlibrary\steamapps\common\newz\thenewz.exe
FirewallRules: [UDP Query User{FC7408A0-03A7-408C-A22E-3063BB59912F}E:\steamlibrary\steamapps\common\newz\thenewz.exe] => (Allow) E:\steamlibrary\steamapps\common\newz\thenewz.exe
FirewallRules: [{4839C9AA-B456-491B-B65B-C307E8153CE6}] => (Allow) D:\SteamLibrary\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{7ABE0726-40C0-419B-B75C-E8BC506F9AA3}] => (Allow) D:\SteamLibrary\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{F117CDD3-E74C-4DFB-A7EF-01A83D8D16E9}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{BFD8B6B9-9E0F-489C-8119-74E88AB8C092}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{9B707490-4668-4A9F-8E87-9744CB47BB0F}] => (Allow) E:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{82CA4159-A865-4CAB-A61F-B9AD93D8AE08}] => (Allow) E:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [TCP Query User{016C620A-825D-42AD-AD49-02C0FC2DF1E0}D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [UDP Query User{6A0E36A8-104A-49E2-9AD0-AF6671C68A7F}D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [TCP Query User{7D7DC31F-B5DF-4A92-9D06-CBCDDD55DA65}D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{7EC7FC46-5A97-4CB9-8906-600B65CDD5E2}D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [{5C1D8861-FB59-4AB9-A461-A7B127BE1C21}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{8B9558EB-D1B4-49AB-B3D1-EAE0E4189E35}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{5560F5A0-D919-41C9-A201-17E43DD3F61B}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{FD04FA01-86A5-4C60-92FD-F54AD932F449}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [TCP Query User{B754027F-4E4E-408F-B18A-0C07E7AE3E78}D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe
FirewallRules: [UDP Query User{C3C88948-B692-47F6-8838-CFAA93A2CD89}D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe
FirewallRules: [{0E9C70F6-ECB0-441D-96D5-E1249BE7119E}] => (Allow) E:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{12B6709C-F014-405C-9790-C8A550912876}] => (Allow) E:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{A7F99C14-C8D7-4E80-88A4-EA0C8AABEAC7}D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe] => (Allow) D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe
FirewallRules: [UDP Query User{0E67592E-D2F4-498A-8957-A4D7B09EC405}D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe] => (Allow) D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe
FirewallRules: [{9DA72144-BA4A-47E4-B9BF-F531DCE12E40}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [TCP Query User{E3BDF543-D65B-4F13-B1F6-233A345D03E0}F:\diablo iii\x64\diablo iii64.exe] => (Allow) F:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{875CA352-A63B-495B-B44B-F97AE55CC5A6}F:\diablo iii\x64\diablo iii64.exe] => (Allow) F:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{D72406C3-4111-4BD4-A041-C02118FDC91E}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [UDP Query User{B7280CA6-07AB-48F0-8FFC-3C6C5DEA46B5}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{21C662B1-E788-459F-AF58-2FBB5183C70B}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{098340E3-2174-4337-9B71-5FFEB1A53703}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{867CD5A9-27C1-4F85-AE99-53F2378E2AAE}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{C4C21E12-C604-426C-988D-F80E35EB40A5}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{67D817CB-B132-4B35-BB4F-B4BA9D052FF9}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [{141EDCD2-91B7-4C88-BB30-F9A921FA75DD}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [{779CA83E-CE54-482A-9268-5870E06FD699}] => (Allow) D:\SteamLibrary\steamapps\common\Laser League Beta\LaserLeague.exe
FirewallRules: [{F8FD665F-5DD9-4ED6-8596-1E46451A6191}] => (Allow) D:\SteamLibrary\steamapps\common\Laser League Beta\LaserLeague.exe
FirewallRules: [TCP Query User{C59D7577-0BDB-4676-960D-F56EE1F3EB90}D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe
FirewallRules: [UDP Query User{F52EB9E5-C966-44E8-8B10-F05D705705D8}D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe
FirewallRules: [{7F837AB8-50A3-4AB7-93F2-697FCC7BF140}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{CC6062CB-6EC5-44A8-B1E2-02E8609271BE}] => (Allow) D:\SteamLibrary\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{8D45F09E-06AC-408B-A4D6-DD58A199777F}] => (Allow) D:\SteamLibrary\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{91812936-F5C9-4C23-A894-2BFE7A92839D}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{D8F49167-7AC3-4E3D-9854-A1FB33CF7B37}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{2D68E284-A984-4A44-A823-DD943D5308BE}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{BEDDAD13-8ACD-4AB1-BCF8-B7DDC727845B}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [TCP Query User{4EE2DB5F-31C6-4C84-BF6D-7160FA62CDB9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{DD93ACBE-D546-48E4-A520-6CB1576F13E9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [{1A990A57-FA46-4B6F-8110-12339B0BD091}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{65F08566-726A-4C53-BB7F-5999FC177627}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{13826D26-FD1B-41BC-BA19-847DB4D75C82}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{1143B62D-5F2F-4EB0-816F-6B6796759A1D}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{562959E5-5E1E-4AFE-834A-DF56D8D5E316}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [TCP Query User{914D7934-CC97-4D74-98BA-B3EB96C8AA4C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [UDP Query User{4CB30D61-B732-4580-A90D-20DC9B90149C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [{1D2E808D-64C1-4847-9B8E-1207A695EECF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C044711C-4A13-4352-A108-AE59C16D5901}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{46DEB40E-89C6-4F9E-847F-14E12DEBBDEA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F140F7A6-59F2-4585-B12F-D14BDB46EFAC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{58B896BC-13D3-4307-B3EB-A60C67A1B343}D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{3E17878D-22EE-4B84-83B5-CE45CC748B6A}D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe
FirewallRules: [TCP Query User{C6A9239A-F7A3-4649-BB24-AB266243508E}D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe
FirewallRules: [UDP Query User{9CADF62E-BFD5-471B-9651-EE0B7ACF056C}D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe
FirewallRules: [TCP Query User{2448C0FE-20DC-4CAA-A3EE-87232AA0BC0B}H:\codex\game\bin\ts4_x64.exe] => (Allow) H:\codex\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{0DB2DF89-2FCD-4BA1-820B-F05EBE4D2AAE}H:\codex\game\bin\ts4_x64.exe] => (Allow) H:\codex\game\bin\ts4_x64.exe
FirewallRules: [{7AF056BC-21E4-4C08-8F36-332AE16A97B2}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\hl2.exe
FirewallRules: [{3813C985-1EBF-47A4-AD14-0C40E0E0CD1A}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\hl2.exe
FirewallRules: [{749D20AD-A602-45A9-8E89-D2591585367E}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [{A4CC999F-D890-4A7B-8AB6-487770852FA2}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [{11675AE5-7B15-4D01-AAB2-2BCB6AB1E1C6}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{3DC891A9-1A33-42FF-BB01-9F09F7140053}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{0AFBAB28-41DE-41DB-9CCE-D691B5DF7740}] => (Allow) C:\Users\Quentin\AppData\Local\yc\Application\yc.exe
FirewallRules: [{A2EE0616-0F84-43E4-9544-5C68E0C99541}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5F3819A3-B06E-40B8-91EE-9B22497232B6}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{E5328321-2533-414D-92D6-BFDA23677420}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{57A03CCF-8AA8-4E51-BB37-85288A516285}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{D0A3E410-6F76-43A7-8B2F-A045454857FB}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{EEEA7AA9-3B47-4F9B-8FC3-A66A265AB868}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{456F7F80-1C85-49B9-9E5D-EF84C07372D4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{2ED3C515-738F-42AA-BF7D-947D22580950}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{01FE21C8-B5E7-4B16-89B5-3DEA5118203D}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{F11FE1F8-2E06-481F-94FF-E90D31C4C053}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Souris Microsoft PS/2
Description: Souris Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (04/30/2018 08:54:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : ntdll.dll, version : 10.0.16299.334, horodatage : 0x71be8751
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00088c43
ID du processus défaillant : 0x59c
Heure de début de l’application défaillante : 0x01d3e0b49b3f9758
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 44708df0-074a-434a-9bfd-4655e2ac7a34
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 08:53:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : KERNELBASE.dll, version : 10.0.16299.371, horodatage : 0xee297154
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000f20ce
ID du processus défaillant : 0xb04
Heure de début de l’application défaillante : 0x01d3e0b4951bb6eb
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : cfedf856-73d3-4f18-9073-47704610f42c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 08:32:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.4.2018.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 28d0
Heure de début : 01d3e0b169cbb75e
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\Quentin\Downloads\FRST64.exe
ID de rapport : 4282fe81-925e-4964-b897-ecba51930166
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (04/30/2018 07:53:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme qbittorrent.exe version 3.3.15.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 79c
Heure de début : 01d3e0ac13ac3310
Heure de fin : 38
Chemin d'accès de l'application : D:\qbtorrent\qBittorrent\qbittorrent.exe
ID de rapport : fa251e12-aad7-4e91-84b2-fb5ca7ae72ea
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (04/30/2018 07:32:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0x23ec
Heure de début de l’application défaillante : 0x01d3e0a929e6787b
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 6a84749b-2fe8-4702-a3e9-bc91af64587c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:19:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : ntdll.dll, version : 10.0.16299.334, horodatage : 0x71be8751
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0004e5eb
ID du processus défaillant : 0x244
Heure de début de l’application défaillante : 0x01d3e09f04db720e
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : b01e379b-d7c5-4af8-9490-bad2f5e7be6c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:07:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam - Copie.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0xbb8
Heure de début de l’application défaillante : 0x01d3e09d5d5a48e0
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam - Copie.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 0928c8b1-478c-4241-984a-e9be957228e6
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:07:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0x690
Heure de début de l’application défaillante : 0x01d3e09d53372c0c
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 334c240c-b1f8-48a8-9389-9784187a0976
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (04/30/2018 08:56:36 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:31 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:17 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:05 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:55:41 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (04/30/2018 08:55:39 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:55:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service netprofm avec les arguments « Non disponible » pour exécuter le serveur :
{A47979D2-C419-11D9-A5B4-001185AD2B89}
Error: (04/30/2018 08:55:31 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service dps avec les arguments « Non disponible » pour exécuter le serveur :
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Windows Defender:
===================================
Date: 2018-04-30 20:54:09.731
Description:
L'apport de modification par D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe à %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:54:09.730Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\
Nom du processus : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:53:59.200
Description:
L'apport de modification par D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe à %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:53:59.200Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\
Nom du processus : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:37.380
Description:
L'apport de modification par D:\Games\Frostpunk\Frostpunk.exe à %userprofile%\Documents\Steam\CODEX\323190 a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:37.379Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\Steam\CODEX\323190
Nom du processus : D:\Games\Frostpunk\Frostpunk.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:22.224
Description:
L'apport de modification par C:\Windows\System32\notepad.exe à %desktopdirectory%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:22.223Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %desktopdirectory%\
Nom du processus : C:\Windows\System32\notepad.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:22.224
Description:
L'apport de modification par C:\Windows\System32\notepad.exe à %desktopdirectory%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:22.223Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %desktopdirectory%\
Nom du processus : C:\Windows\System32\notepad.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:55:28.117
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2018-04-24 21:34:40.549
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2018-04-23 21:15:30.853
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.267.224.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.14800.3
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Date: 2018-04-23 21:05:29.555
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
CodeIntegrity:
===================================
Date: 2018-04-30 19:52:17.825
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 8%
Mémoire physique - RAM - totale: 16344.03 MB
Mémoire physique - RAM - disponible: 15024.9 MB
Mémoire virtuelle totale: 18776.03 MB
Mémoire virtuelle disponible: 17648.1 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:111.24 GB) (Free:9.21 GB) NTFS
Drive d: (Nouveau nom) (Fixed) (Total:931.39 GB) (Free:251.96 GB) NTFS
Drive e: (SSD #2) (Fixed) (Total:167.58 GB) (Free:69.03 GB) NTFS
Drive f: (Nouveau nom) (Fixed) (Total:465.76 GB) (Free:347.98 GB) NTFS
Drive g: (Nouveau nom) (Fixed) (Total:100.29 GB) (Free:92.74 GB) NTFS
\\?\Volume{c75601df-95c3-4337-96c1-8b7fe24e35c0}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{e638554c-0dda-4183-adf7-351558349895}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{4f5afb5b-0000-0000-0000-100000000000}\ (PQSERVICE) (Fixed) (Total:11.5 GB) (Free:0 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 167.7 GB) (Disk ID: 3395F0F6)
Partition 1: (Active) - (Size=167.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 2C612C60)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 4 (MBR Code: Windows 7 or Vista) (Size: 111.8 GB) (Disk ID: 4F5AFB5B)
Partition 1: (Not Active) - (Size=11.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=100.3 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================
Exécuté par Quentin (30-04-2018 20:56:30)
Exécuté depuis C:\Users\Quentin\Desktop
Windows 10 Home Version 1709 16299.371 (X64) (2017-12-03 11:54:31)
Mode d'amorçage: Safe Mode (minimal)
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-529550410-3318124819-2480045889-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-529550410-3318124819-2480045889-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-529550410-3318124819-2480045889-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invité (S-1-5-21-529550410-3318124819-2480045889-501 - Limited - Disabled)
L2ZA93LA3Y (S-1-5-21-529550410-3318124819-2480045889-1002 - Limited - Enabled) => C:\Users\L2ZA93LA3Y
Quentin (S-1-5-21-529550410-3318124819-2480045889-1001 - Administrator - Enabled) => C:\Users\Quentin
WDAGUtilityAccount (S-1-5-21-529550410-3318124819-2480045889-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ableton Live 9 Suite (HKLM\...\{1D35814D-952D-4B55-A02D-BBD68CCB74C4}) (Version: 9.0.0.0 - Ableton)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.41 - Piriform)
Cheat Engine 6.7 Beta 2 (HKLM\...\Cheat Engine 6.7 Beta 2_is1) (Version: - Cheat Engine)
Cosmoteer 0.12.12 (HKLM\...\{BC4C8EB1-3CD1-465D-B4D3-A15F9F0B4C4F}_is1) (Version: 0.12.12 - Walt Destler)
Crusader Kings II Jade Dragon (HKLM-x32\...\Crusader Kings II Jade Dragon_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\Discord) (Version: 0.0.300 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{5608B570-62D0-432A-A7CE-420EE204DDD1}) (Version: 1.1.121.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry 5 (HKLM-x32\...\Far Cry 5_is1) (Version: - )
Feu vert pour le permis de conduire - Correctif 2011 (HKLM-x32\...\{FA6A33F8-172D-4DE2-AC87-B336B10A0DF3}) (Version: - )
Feu Vert pour le permis de conduire (HKLM-x32\...\{26284E06-C005-4C6A-ADA6-1E99D843B08E}) (Version: - )
Frostpunk (HKLM-x32\...\Frostpunk_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Infinity (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\Infinity) (Version: 3.0.51 - WeMod)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Kingdoms and Castles (HKLM-x32\...\2067763543_is1) (Version: 108r3 - GOG.com)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Logic Pro 4.0 (HKLM-x32\...\Logic Pro_is1) (Version: - Babya)
Malwarebytes version 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
Mass Effect: Andromeda (HKLM-x32\...\Mass Effect: Andromeda_is1) (Version: - )
Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.9226.2114 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\OneDriveSetup.exe) (Version: 18.044.0301.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Middle Earth Shadow of Mordor (HKLM-x32\...\Middle Earth Shadow of Mordor_is1) (Version: - )
Middle-earth - Shadow of Mordor GOTY (HKLM-x32\...\Middle-earth - Shadow of Mordor GOTY_is1) (Version: - )
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Monopoly Plus version 1.0 (HKLM\...\Monopoly Plus_is1) (Version: 1.0 - STEAMPUNKS)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.9226.2114 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{3566dda0-c3c3-433c-bf1b-45dc8d62b354}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
ProtectDisc Driver, Version 11 (HKLM-x32\...\ProtectDisc Driver 11) (Version: 11.0.0.14 - ProtectDisc Software GmbH)
qBittorrent 3.3.15 (HKLM-x32\...\qBittorrent) (Version: 3.3.15 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8029 - Realtek Semiconductor Corp.)
Scribblenauts Unlimited (HKLM-x32\...\Scribblenauts Unlimited_is1) (Version: - )
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
South Park The Fractured But Whole version 1.0 (HKLM\...\South Park The Fractured But Whole_is1) (Version: 1.0 - CODEPUNKS)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Stellaris Apocalypse (HKLM-x32\...\Stellaris Apocalypse_is1) (Version: - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.29.69.1020 - Electronic Arts Inc.)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Total War: Warhammer (HKLM-x32\...\Total War: Warhammer_is1) (Version: - )
Totally Accurate Battle Simulator version 0.3.6 (HKLM-x32\...\{8670953D-FB1B-4365-B71A-A9560F37E1ED}_is1) (Version: 0.3.6 - Landfall)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Trust GXT Gaming Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: 1.00.0019 - )
Twitch (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 43.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {048C1AEF-33A4-4F61-8E29-5A08D16AFB89} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-03-06] (Piriform Ltd)
Task: {0DBF1BC0-A7E7-416D-BD9D-41BBF5B6E250} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {11EAF7F5-3220-4037-B07B-8CBF39A1373F} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [2016-10-04] (InputMapper)
Task: {1DF83360-FECD-4010-AA94-FAAFF7DFA376} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-03-06] (Piriform Ltd)
Task: {43017062-5161-4B9D-9018-A8837699BF90} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {47C5F2D4-46C7-404C-905F-44F3FB3D3901} - System32\Tasks\S-1-5-21-529550410-3318124819-2480045889-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {4BD5568F-547C-415A-894F-A6B468DE7B52} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-29] (Microsoft Corporation)
Task: {4F534F1A-078E-4D05-8BC8-AE5F9507C16D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {5663330C-31AB-4708-B480-FAE626EBBB8E} - \UCBrowserUpdaterCore -> Pas de fichier <==== ATTENTION
Task: {5EE903F5-5C34-4E2F-BA32-20C8FE999F98} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {6326D499-A930-4E51-9A7C-D9265688A02F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {90086AC8-7A47-4D1A-A6F4-DE47F559EAE6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {947498CE-53AE-4A3F-A078-52C8BDA8B06C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {9E971B9B-A087-4E27-A7A2-D7B724C2DFB0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {AE7641F1-6A5B-4D5C-8A8F-027F7D8E52A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {B36AE2C5-44A0-4CF9-800F-9106C5A2D39F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-29] (Microsoft Corporation)
Task: {BEECAE19-EE09-422D-B0DE-AA305411DBC3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {CA0B3C34-996C-4024-A8E7-EFC138069A52} - System32\Tasks\UCBrowserUpdater => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
Task: {D4535237-960D-4E92-8734-0361D9667792} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {D6F27C56-58E2-440C-960D-557C9EBD2E10} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-23] (Microsoft Corporation)
Task: {ED69C157-8D07-4DB9-9472-6657DC874ECC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
Task: {F6E760AA-9E6D-4A5C-AD0E-FCF0BAA08816} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.14.17639.18041-0\MpCmdRun.exe [2018-04-26] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\WINDOWS\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-30 19:52 - 2018-03-12 15:09 - 002300192 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-03-14 12:49 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-03-14 12:49 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 002945024 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\People.BackgroundTasks.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 000130560 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\PeopleUtilRT.Windows.dll
2017-12-23 15:02 - 2017-12-23 15:02 - 007848448 _____ () C:\Program Files\WindowsApps\Microsoft.People_10.3.3472.1000_x64__8wekyb3d8bbwe\Microsoft.People.NativeComponents.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\frseyxxh.sys:changelist [448]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\kelrpspq.sys:changelist [448]
AlternateDataStreams: C:\Users\Public\AppData:CSM [470]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-02-05 14:26 - 2018-04-23 21:45 - 000001002 ____R C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: Le média n'est pas connecté à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Cm108Sound"
HKLM\...\StartupApproved\Run: => "Login"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-529550410-3318124819-2480045889-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{9660C3C0-7B75-4A24-A9EF-586D2FD41E8C}] => (Allow) D:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{0ABF1439-3CC5-421D-B51D-476239DFCC07}] => (Allow) D:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{DDAC3CF0-52E0-4DAD-8B96-58C7C1BF000A}] => (Allow) D:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [{DD2653D2-F44B-4222-9BA0-AE2D10A18486}] => (Allow) D:\SteamLibrary\steamapps\common\FTL Faster Than Light\FTLGame.exe
FirewallRules: [UDP Query User{1E4A0AD1-3864-462F-9E14-1F15F9F68A2D}F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{8D667238-81A5-4DA9-B498-BCF845EAA4E4}F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{C4500952-2A57-435D-A807-D05701E11455}D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [TCP Query User{7A1DD0BB-0463-4C0F-B007-A73F850C39C8}D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe] => (Allow) D:\steamlibrary\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{9210F5F5-6DDE-4768-A0A1-29804BA5DCB0}D:\monopoly plus\monopoly.exe] => (Allow) D:\monopoly plus\monopoly.exe
FirewallRules: [TCP Query User{1DC53FC3-0E4F-4462-B27D-53A87B1E3523}D:\monopoly plus\monopoly.exe] => (Allow) D:\monopoly plus\monopoly.exe
FirewallRules: [{E3CDFAD4-8EEC-4466-935F-C1FBA54F96E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AB8EEB7E-9EC1-4BA7-AFE3-151333266858}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{720A77E8-1FEA-43D2-8F11-C97D508ECF58}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6939FBE4-ED03-4A8F-AF6A-47A0827D192D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C58E4007-AF28-4B49-B452-844BA7B3DD96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{78EA95EC-EEAF-4BE7-B8E2-84AF7E5B09CE}] => (Allow) D:\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{E111633A-F927-4181-9D4A-0B2AA248247D}] => (Allow) D:\Assassin's Creed Origins\ACOrigins.exe
FirewallRules: [{29B77E0D-A092-43E7-9790-362CF4994718}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{92E4FE14-FF12-431B-A49F-8174329D2605}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{94D46718-9EE0-45E6-AED4-746EAF81AC74}] => (Allow) LPort=25565
FirewallRules: [UDP Query User{B985BCBA-8CEC-4FD6-9F8C-60FB5A32EBD2}C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{61E2FE50-EC3F-45B1-8D6C-B7B04D6DC405}C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\quentin\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B70BE613-7266-495A-BBB6-090EC4DB93CE}E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{5F7858D5-A276-4296-A8B8-26C6BC40402E}E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{25C42B3D-6CB7-4F92-BF85-97D9857E4EF3}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{FBC88FFD-8457-4603-AB1E-76F5523FFDFA}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe
FirewallRules: [{CA0622A1-1157-4642-ABAA-49A1302CB369}] => (Allow) D:\SteamLibrary\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{1FED0CC9-E6E9-420C-96DF-E6B3DCEB60BA}] => (Allow) D:\SteamLibrary\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{1DB4425A-F2E9-4EEF-B044-51378C8A6CE4}] => (Allow) E:\SteamLibrary\steamapps\common\Dead Cells\deadcells_dx.exe
FirewallRules: [{198F2654-D43C-4958-A94A-9E3E236E6F1C}] => (Allow) E:\SteamLibrary\steamapps\common\Dead Cells\deadcells_dx.exe
FirewallRules: [UDP Query User{3F7ACB10-7DEA-45D1-9D40-580BFE1934BD}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{365D5B89-9CB2-4993-B537-44B03ACDC557}F:\diablo iii\diablo iii.exe] => (Allow) F:\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{604242DB-3949-44C8-9E05-58AE4E0A9192}C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe
FirewallRules: [TCP Query User{9F5C3688-5C05-4F56-9C79-419F7C0787AB}C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.9262\battle.net.exe
FirewallRules: [UDP Query User{45B301D8-AA76-464F-81C5-FF0D4B8BD926}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{4857E991-87CE-4F1A-A9D2-F529AEEA3A16}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{3E22B1EB-80A8-4DB8-8569-0F6DF5BADA2D}] => (Allow) D:\qbtorrent\qBittorrent\qbittorrent.exe
FirewallRules: [{FD049BBB-2CDE-4CB1-98A1-10339D9E053C}] => (Allow) D:\qbtorrent\qBittorrent\qbittorrent.exe
FirewallRules: [{E40C2892-5707-49E9-B3C8-F76B87B70B53}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [UDP Query User{56D31D47-2576-443A-94BE-8F5063DA85BB}D:\games\total war - warhammer\warhammer.exe] => (Allow) D:\games\total war - warhammer\warhammer.exe
FirewallRules: [TCP Query User{66AAADBB-399F-48D6-A4B2-386ED240D359}D:\games\total war - warhammer\warhammer.exe] => (Allow) D:\games\total war - warhammer\warhammer.exe
FirewallRules: [UDP Query User{30F7B005-C0AB-4E05-9976-0BB15608F839}D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe
FirewallRules: [TCP Query User{82BB3B4A-457E-4523-BF8C-C39CB5AD17A1}D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base54518\sc2_x64.exe
FirewallRules: [{9DA4078B-0A9E-4DEE-96F1-5B00A962E04D}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{BC655B01-ED90-45B6-A209-D03A5DE6B634}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{4F27EFE0-AD4C-41B1-B777-1F7ABB696BBD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E2D8E626-096F-4893-B5AC-F012CA8562F2}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B8311EA1-388A-4259-BFCF-91DBD9E112E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5DB76F8A-7366-41B1-BA3E-4934E989CCCE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3AC8DC74-2D9B-4854-B057-85484A5E6695}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F0B8DC8A-A30F-482E-9082-5E9D81A41A8E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{ECF530C5-B91E-486C-9FCA-B03888E2D5B4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C9A8C67A-557D-4D56-99DC-2B4A1D233879}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{692217E2-AE7A-4481-8710-A3E6A7FAECC4}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{7C25D6BC-078F-491E-85B3-2262DA4CDE09}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{EE736BBB-051A-42AF-8B17-3CA4E23BABAD}] => (Allow) D:\SteamLibrary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{6078A7BA-42E8-4FD5-94BD-DA0B3154D2D9}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{04C72A09-95E3-4E76-87D5-6D44B00A0332}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{05954389-92EC-4D16-8932-44EE24BDDB44}D:\jeux\overwatch\overwatch.exe] => (Allow) D:\jeux\overwatch\overwatch.exe
FirewallRules: [UDP Query User{9D967528-6E95-4BB9-A5F4-D009341EC4BC}D:\jeux\overwatch\overwatch.exe] => (Allow) D:\jeux\overwatch\overwatch.exe
FirewallRules: [{81D1BB13-0A6B-45BE-B272-47D6E7DEF451}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{9D2BFC81-FD81-45BA-9D21-9727079680F6}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{C1905969-68FC-4C02-BD25-13FEE14D5675}D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe
FirewallRules: [UDP Query User{4E59F368-B7F4-4DA9-B961-3C2D17F40F20}D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe] => (Allow) D:\steamlibrary\steamapps\common\mk10\binaries\retail\mk10.exe
FirewallRules: [{BB1380DC-8E62-49AE-AA7B-7D07A1DB0E04}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{5757C82A-453A-4D43-94F6-4CF84B301C3F}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{79DA913B-35BD-45A1-ACA0-85F32E57C174}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{F5D5E662-9A7E-4098-AFF7-5C0011B5BDFB}] => (Allow) E:\SteamLibrary\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [TCP Query User{5DEF9F4D-21AC-42B0-9914-196F50788769}E:\northgard.v0.1.3886\northgard.exe] => (Allow) E:\northgard.v0.1.3886\northgard.exe
FirewallRules: [UDP Query User{84190C97-A2C8-4890-9D85-2EACA7F2088D}E:\northgard.v0.1.3886\northgard.exe] => (Allow) E:\northgard.v0.1.3886\northgard.exe
FirewallRules: [TCP Query User{9E14D519-FA88-4A4E-90B1-719B56AC33CA}C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe] => (Allow) C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe
FirewallRules: [UDP Query User{CC0AEB33-F11D-4535-A0D8-649608709240}C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe] => (Allow) C:\users\quentin\desktop\utorrent pro 3.4.9 b_42606\crack files\utorrent.exe
FirewallRules: [TCP Query User{0748A3CE-EC99-4FD8-93A2-02E3221731C3}C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Block) C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [UDP Query User{AA112190-646A-4B32-86A8-DB8736C09F20}C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe] => (Block) C:\users\quentin\appdata\roaming\utorrent\updates\3.4.9_43295.exe
FirewallRules: [{A358C8A9-CBD6-4DD9-ADC4-8D93C7BA386C}] => (Allow) E:\SteamLibrary\steamapps\common\NewZ\NewZLauncher.exe
FirewallRules: [{2B4CFC2F-64C3-4D09-B93C-9EEEEC738D52}] => (Allow) E:\SteamLibrary\steamapps\common\NewZ\NewZLauncher.exe
FirewallRules: [TCP Query User{729A6F6A-7B7A-4C52-BCF8-13C02B889249}E:\steamlibrary\steamapps\common\newz\thenewz.exe] => (Allow) E:\steamlibrary\steamapps\common\newz\thenewz.exe
FirewallRules: [UDP Query User{FC7408A0-03A7-408C-A22E-3063BB59912F}E:\steamlibrary\steamapps\common\newz\thenewz.exe] => (Allow) E:\steamlibrary\steamapps\common\newz\thenewz.exe
FirewallRules: [{4839C9AA-B456-491B-B65B-C307E8153CE6}] => (Allow) D:\SteamLibrary\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{7ABE0726-40C0-419B-B75C-E8BC506F9AA3}] => (Allow) D:\SteamLibrary\steamapps\common\CraftTheWorld\CraftWorld.exe
FirewallRules: [{F117CDD3-E74C-4DFB-A7EF-01A83D8D16E9}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{BFD8B6B9-9E0F-489C-8119-74E88AB8C092}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{9B707490-4668-4A9F-8E87-9744CB47BB0F}] => (Allow) E:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{82CA4159-A865-4CAB-A61F-B9AD93D8AE08}] => (Allow) E:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [TCP Query User{016C620A-825D-42AD-AD49-02C0FC2DF1E0}D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [UDP Query User{6A0E36A8-104A-49E2-9AD0-AF6671C68A7F}D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [TCP Query User{7D7DC31F-B5DF-4A92-9D06-CBCDDD55DA65}D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{7EC7FC46-5A97-4CB9-8906-600B65CDD5E2}D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steamlibrary\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [{5C1D8861-FB59-4AB9-A461-A7B127BE1C21}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{8B9558EB-D1B4-49AB-B3D1-EAE0E4189E35}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{5560F5A0-D919-41C9-A201-17E43DD3F61B}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{FD04FA01-86A5-4C60-92FD-F54AD932F449}] => (Allow) C:\Users\Quentin\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [TCP Query User{B754027F-4E4E-408F-B18A-0C07E7AE3E78}D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe
FirewallRules: [UDP Query User{C3C88948-B692-47F6-8838-CFAA93A2CD89}D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe] => (Allow) D:\jeux\starcraft ii\versions\base53644\sc2_x64.exe
FirewallRules: [{0E9C70F6-ECB0-441D-96D5-E1249BE7119E}] => (Allow) E:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{12B6709C-F014-405C-9790-C8A550912876}] => (Allow) E:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{A7F99C14-C8D7-4E80-88A4-EA0C8AABEAC7}D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe] => (Allow) D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe
FirewallRules: [UDP Query User{0E67592E-D2F4-498A-8957-A4D7B09EC405}D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe] => (Allow) D:\steamlibrary\steamapps\common\worms clan wars\wormsclanwars.exe
FirewallRules: [{9DA72144-BA4A-47E4-B9BF-F531DCE12E40}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [TCP Query User{E3BDF543-D65B-4F13-B1F6-233A345D03E0}F:\diablo iii\x64\diablo iii64.exe] => (Allow) F:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{875CA352-A63B-495B-B44B-F97AE55CC5A6}F:\diablo iii\x64\diablo iii64.exe] => (Allow) F:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{D72406C3-4111-4BD4-A041-C02118FDC91E}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [UDP Query User{B7280CA6-07AB-48F0-8FFC-3C6C5DEA46B5}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{21C662B1-E788-459F-AF58-2FBB5183C70B}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{098340E3-2174-4337-9B71-5FFEB1A53703}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{867CD5A9-27C1-4F85-AE99-53F2378E2AAE}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{C4C21E12-C604-426C-988D-F80E35EB40A5}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{67D817CB-B132-4B35-BB4F-B4BA9D052FF9}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [{141EDCD2-91B7-4C88-BB30-F9A921FA75DD}] => (Allow) D:\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe
FirewallRules: [{779CA83E-CE54-482A-9268-5870E06FD699}] => (Allow) D:\SteamLibrary\steamapps\common\Laser League Beta\LaserLeague.exe
FirewallRules: [{F8FD665F-5DD9-4ED6-8596-1E46451A6191}] => (Allow) D:\SteamLibrary\steamapps\common\Laser League Beta\LaserLeague.exe
FirewallRules: [TCP Query User{C59D7577-0BDB-4676-960D-F56EE1F3EB90}D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe
FirewallRules: [UDP Query User{F52EB9E5-C966-44E8-8B10-F05D705705D8}D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\laser league beta\gameproject\binaries\win64\gameproject-win64-shipping.exe
FirewallRules: [{7F837AB8-50A3-4AB7-93F2-697FCC7BF140}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{CC6062CB-6EC5-44A8-B1E2-02E8609271BE}] => (Allow) D:\SteamLibrary\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{8D45F09E-06AC-408B-A4D6-DD58A199777F}] => (Allow) D:\SteamLibrary\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe
FirewallRules: [{91812936-F5C9-4C23-A894-2BFE7A92839D}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{D8F49167-7AC3-4E3D-9854-A1FB33CF7B37}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{2D68E284-A984-4A44-A823-DD943D5308BE}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{BEDDAD13-8ACD-4AB1-BCF8-B7DDC727845B}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [TCP Query User{4EE2DB5F-31C6-4C84-BF6D-7160FA62CDB9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{DD93ACBE-D546-48E4-A520-6CB1576F13E9}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [{1A990A57-FA46-4B6F-8110-12339B0BD091}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{65F08566-726A-4C53-BB7F-5999FC177627}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{13826D26-FD1B-41BC-BA19-847DB4D75C82}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{1143B62D-5F2F-4EB0-816F-6B6796759A1D}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{562959E5-5E1E-4AFE-834A-DF56D8D5E316}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [TCP Query User{914D7934-CC97-4D74-98BA-B3EB96C8AA4C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [UDP Query User{4CB30D61-B732-4580-A90D-20DC9B90149C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [{1D2E808D-64C1-4847-9B8E-1207A695EECF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C044711C-4A13-4352-A108-AE59C16D5901}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{46DEB40E-89C6-4F9E-847F-14E12DEBBDEA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F140F7A6-59F2-4585-B12F-D14BDB46EFAC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{58B896BC-13D3-4307-B3EB-A60C67A1B343}D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{3E17878D-22EE-4B84-83B5-CE45CC748B6A}D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4_x64.exe
FirewallRules: [TCP Query User{C6A9239A-F7A3-4649-BB24-AB266243508E}D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe
FirewallRules: [UDP Query User{9CADF62E-BFD5-471B-9651-EE0B7ACF056C}D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe] => (Allow) D:\games\the sims 4 my first pet stuff\game\bin\ts4.exe
FirewallRules: [TCP Query User{2448C0FE-20DC-4CAA-A3EE-87232AA0BC0B}H:\codex\game\bin\ts4_x64.exe] => (Allow) H:\codex\game\bin\ts4_x64.exe
FirewallRules: [UDP Query User{0DB2DF89-2FCD-4BA1-820B-F05EBE4D2AAE}H:\codex\game\bin\ts4_x64.exe] => (Allow) H:\codex\game\bin\ts4_x64.exe
FirewallRules: [{7AF056BC-21E4-4C08-8F36-332AE16A97B2}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\hl2.exe
FirewallRules: [{3813C985-1EBF-47A4-AD14-0C40E0E0CD1A}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\hl2.exe
FirewallRules: [{749D20AD-A602-45A9-8E89-D2591585367E}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [{A4CC999F-D890-4A7B-8AB6-487770852FA2}] => (Allow) D:\SteamLibrary\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [{11675AE5-7B15-4D01-AAB2-2BCB6AB1E1C6}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{3DC891A9-1A33-42FF-BB01-9F09F7140053}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{0AFBAB28-41DE-41DB-9CCE-D691B5DF7740}] => (Allow) C:\Users\Quentin\AppData\Local\yc\Application\yc.exe
FirewallRules: [{A2EE0616-0F84-43E4-9544-5C68E0C99541}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5F3819A3-B06E-40B8-91EE-9B22497232B6}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{E5328321-2533-414D-92D6-BFDA23677420}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{57A03CCF-8AA8-4E51-BB37-85288A516285}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{D0A3E410-6F76-43A7-8B2F-A045454857FB}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{EEEA7AA9-3B47-4F9B-8FC3-A66A265AB868}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{456F7F80-1C85-49B9-9E5D-EF84C07372D4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{2ED3C515-738F-42AA-BF7D-947D22580950}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{01FE21C8-B5E7-4B16-89B5-3DEA5118203D}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{F11FE1F8-2E06-481F-94FF-E90D31C4C053}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Souris Microsoft PS/2
Description: Souris Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (04/30/2018 08:54:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : ntdll.dll, version : 10.0.16299.334, horodatage : 0x71be8751
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00088c43
ID du processus défaillant : 0x59c
Heure de début de l’application défaillante : 0x01d3e0b49b3f9758
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 44708df0-074a-434a-9bfd-4655e2ac7a34
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 08:53:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : KERNELBASE.dll, version : 10.0.16299.371, horodatage : 0xee297154
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000f20ce
ID du processus défaillant : 0xb04
Heure de début de l’application défaillante : 0x01d3e0b4951bb6eb
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : cfedf856-73d3-4f18-9073-47704610f42c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 08:32:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.4.2018.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 28d0
Heure de début : 01d3e0b169cbb75e
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\Quentin\Downloads\FRST64.exe
ID de rapport : 4282fe81-925e-4964-b897-ecba51930166
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (04/30/2018 07:53:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme qbittorrent.exe version 3.3.15.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 79c
Heure de début : 01d3e0ac13ac3310
Heure de fin : 38
Chemin d'accès de l'application : D:\qbtorrent\qBittorrent\qbittorrent.exe
ID de rapport : fa251e12-aad7-4e91-84b2-fb5ca7ae72ea
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (04/30/2018 07:32:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0x23ec
Heure de début de l’application défaillante : 0x01d3e0a929e6787b
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 6a84749b-2fe8-4702-a3e9-bc91af64587c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:19:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x5ac94f6f
Nom du module défaillant : ntdll.dll, version : 10.0.16299.334, horodatage : 0x71be8751
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0004e5eb
ID du processus défaillant : 0x244
Heure de début de l’application défaillante : 0x01d3e09f04db720e
Chemin d’accès de l’application défaillante : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : b01e379b-d7c5-4af8-9490-bad2f5e7be6c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:07:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam - Copie.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0xbb8
Heure de début de l’application défaillante : 0x01d3e09d5d5a48e0
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam - Copie.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 0928c8b1-478c-4241-984a-e9be957228e6
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/30/2018 06:07:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbam.exe, version : 3.0.0.1429, horodatage : 0x5ab557c4
Nom du module défaillant : Qt5Core.dll, version : 5.6.3.0, horodatage : 0x5a61293e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001aa816
ID du processus défaillant : 0x690
Heure de début de l’application défaillante : 0x01d3e09d53372c0c
Chemin d’accès de l’application défaillante : E:\Anti-Malware\mbam.exe
Chemin d’accès du module défaillant: E:\Anti-Malware\Qt5Core.dll
ID de rapport : 334c240c-b1f8-48a8-9389-9784187a0976
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (04/30/2018 08:56:36 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:31 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:17 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:56:05 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:55:41 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (04/30/2018 08:55:39 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (04/30/2018 08:55:32 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-1KLME80)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service netprofm avec les arguments « Non disponible » pour exécuter le serveur :
{A47979D2-C419-11D9-A5B4-001185AD2B89}
Error: (04/30/2018 08:55:31 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service dps avec les arguments « Non disponible » pour exécuter le serveur :
{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}
Windows Defender:
===================================
Date: 2018-04-30 20:54:09.731
Description:
L'apport de modification par D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe à %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:54:09.730Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\
Nom du processus : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:53:59.200
Description:
L'apport de modification par D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe à %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:53:59.200Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\My Games\Rocket League\TAGame\Logs\
Nom du processus : D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:37.380
Description:
L'apport de modification par D:\Games\Frostpunk\Frostpunk.exe à %userprofile%\Documents\Steam\CODEX\323190 a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:37.379Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %userprofile%\Documents\Steam\CODEX\323190
Nom du processus : D:\Games\Frostpunk\Frostpunk.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:22.224
Description:
L'apport de modification par C:\Windows\System32\notepad.exe à %desktopdirectory%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:22.223Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %desktopdirectory%\
Nom du processus : C:\Windows\System32\notepad.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:48:22.224
Description:
L'apport de modification par C:\Windows\System32\notepad.exe à %desktopdirectory%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2018-04-30T18:48:22.223Z
Utilisateur : DESKTOP-1KLME80\Quentin
Chemin d'accès : %desktopdirectory%\
Nom du processus : C:\Windows\System32\notepad.exe
Version de la signature : 1.267.571.0
Version du moteur : 1.1.14800.3
Version du produit : 4.14.17639.18041
Date: 2018-04-30 20:55:28.117
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2018-04-24 21:34:40.549
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2018-04-23 21:15:30.853
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.267.224.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.14800.3
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Date: 2018-04-23 21:05:29.555
Description:
La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
CodeIntegrity:
===================================
Date: 2018-04-30 19:52:17.825
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 8%
Mémoire physique - RAM - totale: 16344.03 MB
Mémoire physique - RAM - disponible: 15024.9 MB
Mémoire virtuelle totale: 18776.03 MB
Mémoire virtuelle disponible: 17648.1 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:111.24 GB) (Free:9.21 GB) NTFS
Drive d: (Nouveau nom) (Fixed) (Total:931.39 GB) (Free:251.96 GB) NTFS
Drive e: (SSD #2) (Fixed) (Total:167.58 GB) (Free:69.03 GB) NTFS
Drive f: (Nouveau nom) (Fixed) (Total:465.76 GB) (Free:347.98 GB) NTFS
Drive g: (Nouveau nom) (Fixed) (Total:100.29 GB) (Free:92.74 GB) NTFS
\\?\Volume{c75601df-95c3-4337-96c1-8b7fe24e35c0}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{e638554c-0dda-4183-adf7-351558349895}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{4f5afb5b-0000-0000-0000-100000000000}\ (PQSERVICE) (Fixed) (Total:11.5 GB) (Free:0 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 167.7 GB) (Disk ID: 3395F0F6)
Partition 1: (Active) - (Size=167.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 2C612C60)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 4 (MBR Code: Windows 7 or Vista) (Size: 111.8 GB) (Disk ID: 4F5AFB5B)
Partition 1: (Not Active) - (Size=11.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=100.3 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================