Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20.06.2018
Exécuté par Kevin (07-07-2018 17:58:34)
Exécuté depuis C:\Users\Kevin\Desktop
Windows 10 Pro Version 1803 17134.112 (X64) (2018-05-25 05:59:56)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4026337126-645472991-121229314-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4026337126-645472991-121229314-503 - Limited - Disabled)
Invité (S-1-5-21-4026337126-645472991-121229314-501 - Limited - Disabled)
Kevin (S-1-5-21-4026337126-645472991-121229314-1001 - Administrator - Enabled) => C:\Users\Kevin
WDAGUtilityAccount (S-1-5-21-4026337126-645472991-121229314-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
. . . (HKLM\...\{DCAFF63A-A26F-4809-A00D-27AD6733ACB3}) (Version: 2.1.28.3 - Intel) Hidden
. . . (HKLM-x32\...\{C7B0C705-9987-44A2-B495-4101DAEDBFE0}) (Version: 2.6.2.4 - Intel) Hidden
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Atom (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\atom) (Version: 1.24.0 - GitHub Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Canon MP495 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series) (Version: - )
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org)
Curse Client (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Phoenix Labs)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden
Easy Thumbnails (Remove only) (HKLM-x32\...\Easy Thumbnails_is1) (Version: 3.0 - Fookes Software)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version: - SEIKO EPSON Corporation)
FileZilla Client 3.31.0 (HKLM-x32\...\FileZilla Client) (Version: 3.31.0 - Tim Kosse)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Git version 2.16.1 (HKLM\...\Git_is1) (Version: 2.16.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4542 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{66307462-7d19-4f1a-af82-aa04b6017f05}) (Version: 2.6.2.4 - Intel)
KeyHoleTV (HKLM-x32\...\KeyHoleTV) (Version: - )
Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation)
Krosmaga (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\5FF85AF0-CE53-4D51-815F-52DA47E3FF9A-2) (Version: - Ankama)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.1.3.2 (HKLM-x32\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation)
Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\OneDriveSetup.exe) (Version: 18.091.0506.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.24.1 - Microsoft Corporation)
Mises à jour NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 61.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.1 (x64 fr)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla)
Mumble 1.2.13 (HKLM-x32\...\{022319D8-DFB3-4531-8214-EE0E1E9CD4A3}) (Version: 1.2.13 - Thorvald Natvig)
Node.js (HKLM\...\{A25EF8A9-BF15-454F-930E-2B03D9D77F3E}) (Version: 8.10.0 - Node.js Foundation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation)
Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Panneau de configuration NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7622 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{E6CAD8B3-5682-31CA-A05E-79F6DBF81066}) (Version: 14.0.25132 - Microsoft Corporation) Hidden
SixaxisDriver 0.91 (HKLM-x32\...\GameSaike SixaxisDriver_is1) (Version: - xPAD, Inc.)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.12.6 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.6 - SteelSeries ApS)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.193 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{4AC64C61-A7EC-4E4E-8F28-F57EB3430334}) (Version: 1.8.31.0 - Microsoft Corporation) Hidden
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9C4F3AF4-21D8-43BD-A69C-517BB96012CF}) (Version: 2.12.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{035FFC43-55D6-4F5C-BCC5-21FED122C8B4}) (Version: 1.11.0.0 - Microsoft Corporation) Hidden
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22350 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
XAMPP (HKLM-x32\...\xampp) (Version: 7.2.1-0 - Bitnami)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-4026337126-645472991-121229314-1001_Classes\CLSID\{b008f94e-8b8a-44cb-b19e-933ec598bfe4}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0082EFD6-9CD2-474D-9EFD-7928613F185C} - System32\Tasks\RunAsStdUser_MyComGames => C:\Users\Kevin\AppData\Local\MyComGames\MyComGames.exe
Task: {06FDD22D-C910-49B4-944C-2E411289AD16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {0BABDABE-2EE8-4A50-8D9F-45833D6642FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {179C4912-9B51-45B8-B101-5F8526F4B29C} - System32\Tasks\AdobeGCInvoker-1.0-KAYLUNE-Kevin => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {189A50FE-E875-4620-A84A-405108789A81} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {213C9AFA-8596-41AB-B4BB-2A34A4105B97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {227BBDD8-5B4D-479F-AFE1-234B5F8AC3CA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {262B210C-8510-485E-8DC7-12379C334303} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {34946B17-2624-481D-862C-13BE432753DE} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe
Task: {57471FA1-97E2-44EE-81FD-BCD158D08FD3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6B2966EA-9059-487D-ADB6-8B6FC10DF052} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {7C71A4EC-A223-4CEA-B6B5-1F144CAF62C3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {82BD30D4-51A4-4B0C-8E55-DE2C26E98DA1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {9077529E-0819-4A88-85C6-8A3DC487608C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {90791D04-CECD-4C89-929F-02CDC97F42A7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {916F9693-B050-4EC0-8577-B2F08BC6B1F3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {9AD97FDB-6375-4494-85F6-6A3FE193FEEC} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {9B1A8820-A73E-49BB-B08B-C4C328880521} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {A771277A-C87C-4E88-A50C-70B15C1BEAF7} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {AB7CFE76-9803-4035-B1C3-8EA969C5A3C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {BABA989B-D544-4624-9C25-91F8C242ABA6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {D207D50F-A41C-49FC-BD3B-2E29D35A2271} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {D2BE135C-FF21-4112-9504-71C3AE3D1024} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {E274861D-0EEE-479D-B5C8-FB5BD1300270} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {E6B5E1E6-2835-4D3C-90B2-700DFC5E55B4} - System32\Tasks\{FCB5249D-2843-4000-B0D6-4AF333183651} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Arc\ArcLauncher.exe" -d C:\Users\Kevin\Desktop -c gamecustom pwi
Task: {E93B9C77-2689-4C03-A25B-F59213F11B64} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {EA78CD3A-1C8F-4BA1-BC24-427BF00BC3A6} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {EB0543BE-6BC0-48FB-A6AA-9BDBDC3FBB1D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-10-19 10:26 - 2018-06-24 17:31 - 000138128 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-05-29 14:21 - 2018-05-20 19:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-10-20 17:42 - 2017-10-20 17:42 - 000393200 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-06-13 09:37 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-05-23 06:44 - 2018-05-23 06:44 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-05-23 06:44 - 2018-05-23 06:44 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-05-23 06:44 - 2018-05-23 06:45 - 022374400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-05-23 06:44 - 2018-05-23 06:44 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\skypert.dll
2018-06-08 12:05 - 2018-06-08 12:06 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-06-08 12:05 - 2018-06-08 12:06 - 067232256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-02-22 13:13 - 2018-02-22 13:21 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-04-26 08:00 - 2018-04-26 08:01 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004214784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000035840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-03-30 08:07 - 2018-03-30 08:10 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-06-08 12:05 - 2018-06-08 12:06 - 014851072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004058624 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-06-08 12:05 - 2018-06-08 12:05 - 003266048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 001393664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004218080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-06-27 06:20 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-27 06:20 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2018-05-29 14:21 - 2018-05-20 19:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-03-24 17:46 - 2018-06-08 23:38 - 000788256 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-03-24 17:46 - 2018-06-09 01:39 - 002632992 _____ () C:\Program Files (x86)\Steam\video.dll
2016-03-24 17:46 - 2018-06-08 23:42 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2016-03-24 17:46 - 2018-06-08 23:40 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-03-24 17:46 - 2018-06-08 23:40 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2016-03-24 17:46 - 2018-06-09 01:38 - 000979744 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-24 17:46 - 2018-06-08 23:40 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-06-10 10:41 - 2018-06-08 23:39 - 000788256 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-01-02 12:15 - 2018-06-08 23:39 - 083524384 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2016-03-24 17:46 - 2018-06-08 23:42 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-07-28 21:13 - 2018-06-08 23:39 - 002253600 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
2017-07-28 21:13 - 2018-06-08 23:39 - 000109856 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2018-04-12 10:21 - 2018-04-16 15:11 - 000000916 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 monsite.local www.monsite.local
127.0.0.1 breakingnews.local
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-4026337126-645472991-121229314-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Fond d'écran.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "GamecomSound"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "M.M.O.TE"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}"
HKLM\...\StartupApproved\Run32: => "Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{FF629A68-390B-4A11-A7EA-F0A0BAD7BE3E}C:\xampp\filezillaftp\filezillaserver.exe] => (Block) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{B206D341-1386-4ABA-BF98-6027A704818F}C:\xampp\filezillaftp\filezillaserver.exe] => (Block) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [{BC2F107D-6952-4652-8B69-3013108CC77E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eternal Card Game\Eternal.exe
FirewallRules: [{38522863-4D5B-4AA3-94A8-0A5F30907345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eternal Card Game\Eternal.exe
FirewallRules: [UDP Query User{C6EFA410-E930-422D-9A2D-0F5F7EF5B596}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe
FirewallRules: [TCP Query User{CAEDFE00-BEFC-4481-887A-98A6C091ED22}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe
FirewallRules: [UDP Query User{AB2B3856-DCB0-45E7-847E-EA144DCB510C}C:\program files\microsoft vs code\code.exe] => (Allow) C:\program files\microsoft vs code\code.exe
FirewallRules: [TCP Query User{3899469A-C3F3-44BC-8EEF-376EFCDFA879}C:\program files\microsoft vs code\code.exe] => (Allow) C:\program files\microsoft vs code\code.exe
FirewallRules: [{9043D106-BA84-4D28-943A-78E841D8FA70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\immortal\immortal.exe
FirewallRules: [{3654FD83-E3A2-4703-9C2B-74E3A9385EEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\immortal\immortal.exe
FirewallRules: [{240CEA5E-5190-484A-8B45-6FFCE5364BB6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{88E12028-E92E-459B-9DA5-3FBA3EBFCB2D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{8BE72D52-7F3E-400E-A078-B44E236CA619}C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe
FirewallRules: [TCP Query User{15164424-EFD9-46D8-B5C6-3FC9C8C7FF69}C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe
FirewallRules: [UDP Query User{4C1BAFC9-2E52-4C90-BF06-870D54CDC4D5}C:\nexon\library\icarus\appdata\bin64\launcher.exe] => (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [TCP Query User{8D6D1B82-835C-47D4-A2F0-5C327EFB2C56}C:\nexon\library\icarus\appdata\bin64\launcher.exe] => (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [UDP Query User{826D265C-57ED-454A-9975-6FEC429F57AD}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [TCP Query User{70D47E2F-5291-413A-A28F-18E111D88233}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [{A4EB157F-60C2-49C3-AEC0-B0EF7872CC40}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{5C9AA8FC-115F-49FA-A0AE-4B57FE633322}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{106C8DF1-82D4-4C18-A6F9-EEA6BEB1CDCB}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{EE763AD4-184F-4CEF-B18C-50D2DF08A317}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [UDP Query User{7EDA1322-B209-4BC4-8F1D-01ECDCDF7430}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [TCP Query User{F3FAC3A5-267B-4DC6-9FA3-0DBA2FB9651A}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [UDP Query User{2713DAAD-E855-4A87-90DF-915B1A7DADC7}C:\program files (x86)\unity2\editor\unity.exe] => (Allow) C:\program files (x86)\unity2\editor\unity.exe
FirewallRules: [TCP Query User{AA9A79E9-D649-46AC-A38A-8A626FE549F4}C:\program files (x86)\unity2\editor\unity.exe] => (Allow) C:\program files (x86)\unity2\editor\unity.exe
FirewallRules: [UDP Query User{A0998953-811E-4DCA-9473-45F068CC52EE}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [TCP Query User{9EA545D1-B98C-49A4-BFBD-97D6F7CF7145}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [UDP Query User{B856DDA2-52A9-4E53-B2A8-2C4501837D42}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3A719AB1-2514-46AC-9A95-AE1C2181B6A4}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{B415D6E3-F6E5-492C-B741-20B36C225E35}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{FF5C9D99-B477-4374-9A03-8DE8EAEDE168}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{EDF664F3-34A5-4C97-AD6E-38A12C54AB6C}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{6C6CED22-2F73-4088-8BAF-5F63F67BF0D0}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{8517B094-3611-474A-AA26-385B8CA640A2}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [TCP Query User{68873B52-21A4-4A6D-B0F8-FA9B26DFCF63}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [UDP Query User{B9CACB47-77A9-413E-85B6-215698285D23}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{68B24F45-46BE-4E51-94FD-EA68B11BDEE9}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F793AE36-62F4-4527-8E01-2AAE8B3756B9}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [TCP Query User{3240C95E-0195-4F57-B1ED-735072C1A7E2}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [UDP Query User{E01E78C5-0E92-4E83-A932-DE0A93404628}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3A746B09-A70D-4C77-BFC6-C706D8AA971A}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{0D4B5E8B-D962-4DF1-BAE5-E4AAAAC0CBEC}C:\program files (x86)\keyholetv\keyholetv.exe] => (Allow) C:\program files (x86)\keyholetv\keyholetv.exe
FirewallRules: [TCP Query User{00BF843A-0FCA-43DC-8F01-C4F5AE36F879}C:\program files (x86)\keyholetv\keyholetv.exe] => (Allow) C:\program files (x86)\keyholetv\keyholetv.exe
FirewallRules: [{E3C55BDA-0BB5-4944-B2D8-D62E55DDA77A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5E50066C-414B-4256-83AF-C4A14A7211D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AB8A2ECA-B805-4A85-896C-203F02981D15}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F53440A3-03E7-432B-86E1-DD728E0BFC1A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2003F4C5-86B9-4D1D-8CD7-5D86266DCF58}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{47CA5779-7335-499A-B234-B38FDC2B582C}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{FAF999B5-1E12-4F17-BDEA-C24EB64AF4BE}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{51434A30-ECD9-4051-8663-2CB47A3CDD0C}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [UDP Query User{B0BF866A-EA31-474E-AA2D-57481D9FB4E4}C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe] => (Allow) C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe
FirewallRules: [TCP Query User{E687AC01-7061-42EB-A02A-F71E5629933F}C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe] => (Allow) C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe
FirewallRules: [UDP Query User{2A828F29-3649-42BF-B7F3-258A962C8CB5}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [TCP Query User{2E94E2CA-B227-49FF-B1BB-4AE5178DAAA0}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [UDP Query User{15037DF3-F6DE-4D04-B327-E801BEA65E23}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [TCP Query User{7D6ED5FF-D018-4DF7-BE2E-26125372C918}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [{B8EBD911-7A0B-44B4-9AE9-C8E75FC5F647}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{C8191595-7287-4027-9FC3-C178E16DA385}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{F8EA7A69-B90B-44A7-9271-817CDF190627}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{075D1F97-7A2C-4FE8-AE99-7D625003C971}] => (Allow) LPort=1688
FirewallRules: [{12A4627B-7DF7-4E13-9FC0-2FFC8BF89581}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8002E680-3C32-473B-8522-D86CFCC40580}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1168E51E-08E7-470A-801B-82E0F79A3BE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{621E9DB3-F239-47F7-BD30-17668C79AF32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C63C1744-C719-4BED-8DC6-0D834300FE95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{70A95E4D-4D6C-4A51-B9EA-3BB60FF433A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CABA3986-BC84-4B6F-B6EC-0BD3C408165E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{10FD7D17-D546-4EC0-B3F0-AFB9BDE5050E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E8A34AF3-409F-4CAB-9C84-DE1854D0D0CF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [TCP Query User{76F12CD4-F2AB-4B57-85C5-5363DA38C35E}C:\users\kevin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\kevin\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{F4B9BB24-ACE0-4A63-852F-A40D414B73BE}C:\users\kevin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\kevin\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{DABA3F95-32A6-4D5D-AACC-723CEE623248}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{AB6C372D-DA3B-4AA2-858E-1F2C78EAF42A}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{EC0F1E3A-9786-4147-9D1E-DB1C0FBACD7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1B758842-E81C-4682-B7CB-B91AFCB3224D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{5E46AA1A-BDD0-44AD-A5E4-480FEAEE2993}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{81877B85-6661-4D78-9973-4AE8B072F245}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{7A5387B6-A493-40F2-A29E-652EE3816321}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B9177900-ECA3-4929-B795-6B96DB43FCF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{70C32110-F450-4645-9941-E8482ADA86BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{C7AC9479-9B8D-4A5A-B227-6F6ED19B2281}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{65123D91-8DAB-4996-B9B6-D8A1C095069C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{34FFBC1F-40F5-45E0-ABAC-ECFAF92F29CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{95DEFB1F-0E1C-4407-A6C9-043B0B40985B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{609D87FE-4D76-432B-9857-CE63EE2E6F18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{C415F5B5-3969-4246-8812-B7203F253C67}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{D302C8A2-8A39-48BF-834B-E859EB0AEA83}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{1B199776-DFC8-41DA-A6EE-1B949FCD793F}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{D3090EA7-52B0-44D1-B219-B299201C2760}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [{0494E628-9AE7-4E07-99F1-27E1019CBB8F}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{25CCBDDE-3BEC-46AC-96B5-4AD40D6C9875}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [TCP Query User{6927C1C4-E9D6-4A6D-B553-9EC5BFE1C7DF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{087B8487-7282-49E8-AF16-2833A9393D81}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{1D090939-CEDE-4E09-B6C3-0A454BD0708B}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D410B10D-39AE-4E47-BC31-F43F549ECCB5}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [{A3C3F31A-35A0-4EAB-A2A8-B4A40D8F8552}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{4B0183D7-5A0D-4459-929A-DAB69C8E8738}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{121F988F-0C14-4CBE-9BF9-E7C897CCC355}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{AB0BF421-5185-49AD-8D44-919072C5C5BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{410D2878-82CE-482C-A77C-26C846076D73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{0DFEAA73-20C1-4949-9AF0-2DAF19534C7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{271E6495-7E06-4238-A88F-7C10BC9854EE}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{72CD11E5-B13B-4D23-8551-652E17C84300}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E92DF276-1318-45D8-B67A-51181A4B7604}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4A38CACF-151A-425D-AA6D-03844C31AA2A}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{507BB305-A1E4-4E3C-B292-B73718BF3C67}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{204978D0-313C-4633-AB26-F54C733DFB9C}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [{C7A3D008-12E3-4A77-A926-88EA665D5B00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [{69D2788E-46EE-4EBA-B25C-D116F8996957}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [TCP Query User{0792A556-6FF1-4F92-803B-BB2B1ABD5C24}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe
FirewallRules: [UDP Query User{45A2DC6C-9C30-48C3-8171-0E610E7A08FE}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe
FirewallRules: [TCP Query User{46433CEA-A6E2-462D-B1B0-6060191A59EF}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{9369D78F-68F5-463E-BC6F-E5D544DE4B2B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{CD2B8998-9BD0-4FED-9441-D5AD6DE6AE1A}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{B6816289-AB43-4FC8-9019-C8AB54A34445}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{E3407B01-1237-4BC5-8CA9-295AFC54F139}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B0CE6B1B-B933-4E86-8256-F217FDF2C01F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{076B4D52-0194-43DB-B3F7-C37C482CBF4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{12288011-D888-4847-B533-217A746E9859}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A71D989A-900C-4E2D-A406-EE8683AAA66F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{81E7C180-40DE-4512-9636-266E99C89771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0574E871-4CD7-4190-840A-046B60503330}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FDA4F557-E4B9-4D9F-AEF7-4B826A0E60DB}] => (Allow) C:\WINDOWS\system32\rundll32.exe
==================== Points de restauration =========================
01-07-2018 16:55:33 Point de contrôle planifié
07-07-2018 15:21:06 Removed M.M.O.TE Game Profiles
07-07-2018 15:21:29 Removed M.M.O.TE
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (07/07/2018 05:54:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante aion.bin, version : 5818.823.622.13184, horodatage : 0x5b2c5d79
Nom du module défaillant : libcef.dll, version : 3.2357.1292.0, horodatage : 0x5822c807
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000f4619
ID du processus défaillant : 0x2b04
Heure de début de l’application défaillante : 0x01d4160468583179
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\AION\Client\bin64\aion.bin
Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\AION\Client\bin64\CEF\libcef.dll
ID de rapport : caa96383-3764-4f36-8f14-76fa5839b5bd
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (07/07/2018 03:42:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe, version : 10.0.17134.1, horodatage : 0xa38b9ab2
Nom du module défaillant : PhoneDataSync.dll_unloaded, version : 10.0.17134.1, horodatage : 0xa73f20d7
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000032adf
ID du processus défaillant : 0x166c
Heure de début de l’application défaillante : 0x01d415a929bbdead
Chemin d’accès de l’application défaillante : c:\windows\system32\svchost.exe
Chemin d’accès du module défaillant: PhoneDataSync.dll
ID de rapport : e15c6d23-cfba-4edd-874c-17d3ff832584
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (07/07/2018 03:39:48 PM) (Source: HlpCtntMgr) (EventID: 1003) (User: )
Description: Help Content Manager exited with error: NoBooksToUninstall
Error: (07/07/2018 03:27:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme devenv.exe version 14.0.25123.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : d2c
Heure de début : 01d415f5f7437433
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
ID de rapport : 323891df-b07d-40ff-9ca1-5a40425827d9
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (07/07/2018 03:27:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme devenv.exe version 14.0.25123.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2cc4
Heure de début : 01d415f5dfd5e0c7
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
ID de rapport : c25896d6-0492-4e1f-a49e-cefb5b62e404
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (07/07/2018 03:13:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/07/2018 06:13:43 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007007B
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=10
Error: (07/07/2018 06:04:19 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (07/07/2018 05:54:58 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:53:38 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:07:29 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:03:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscDataProtection
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:01:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/07/2018 05:01:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service FontCache3.0.0.0.
Error: (07/07/2018 05:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SystemUsageReportSvc_QUEENCREEK n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/07/2018 05:00:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service SystemUsageReportSvc_QUEENCREEK.
Windows Defender:
===================================
Date: 2018-06-30 12:00:06.971
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {8C38BFA3-7547-44DE-97DF-74DD9CEE4534}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : KAYLUNE\Kevin
Date: 2018-06-30 12:00:06.891
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\KMSSS.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : KAYLUNE\Kevin
Nom du processus : Unknown
Version de la signature : AV: 1.271.243.0, AS: 1.271.243.0, NIS: 1.271.243.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-06-30 08:03:16.845
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\KMSSS.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Version de la signature : AV: 1.271.243.0, AS: 1.271.243.0, NIS: 1.271.243.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-06-29 19:03:56.209
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {29B74BC8-DF3D-4C2B-A63C-774577CFD683}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : KAYLUNE\Kevin
Date: 2018-06-29 18:27:42.575
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDropper:Win32/Kaymundler.B&threatid=2147709422&enterprise=0
Nom : TrojanDropper:Win32/Kaymundler.B
ID : 2147709422
Gravité : Grave
Catégorie : Programme malveillant de diffusion de chevaux de Troie
Chemin : file:_C:\Program Files (x86)\KMSPico 10.2.1 Final\KMSPICO_SETUP.BAT
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Version de la signature : AV: 1.271.236.0, AS: 1.271.236.0, NIS: 1.271.236.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-07-03 08:03:32.347
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.271.388.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15000.2
Code d’erreur : 0x80240016
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 47%
Mémoire physique - RAM - totale: 8100.88 MB
Mémoire physique - RAM - disponible: 4216.98 MB
Mémoire virtuelle totale: 9380.88 MB
Mémoire virtuelle disponible: 4552.11 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:930.11 GB) (Free:488.87 GB) NTFS
\\?\Volume{c480fe6a-2398-4910-a6c8-3e28feec3b6a}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{c4fc2a66-d0ab-4188-b2eb-dc59001391ab}\ () (Fixed) (Total:0.85 GB) (Free:0.33 GB) NTFS
\\?\Volume{a42c0008-1e15-4fbe-83f2-3c1154c9ba2f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 28761BA5)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par Kevin (07-07-2018 17:58:34)
Exécuté depuis C:\Users\Kevin\Desktop
Windows 10 Pro Version 1803 17134.112 (X64) (2018-05-25 05:59:56)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4026337126-645472991-121229314-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4026337126-645472991-121229314-503 - Limited - Disabled)
Invité (S-1-5-21-4026337126-645472991-121229314-501 - Limited - Disabled)
Kevin (S-1-5-21-4026337126-645472991-121229314-1001 - Administrator - Enabled) => C:\Users\Kevin
WDAGUtilityAccount (S-1-5-21-4026337126-645472991-121229314-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
. . . (HKLM\...\{DCAFF63A-A26F-4809-A00D-27AD6733ACB3}) (Version: 2.1.28.3 - Intel) Hidden
. . . (HKLM-x32\...\{C7B0C705-9987-44A2-B495-4101DAEDBFE0}) (Version: 2.6.2.4 - Intel) Hidden
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Atom (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\atom) (Version: 1.24.0 - GitHub Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Canon MP495 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP495_series) (Version: - )
Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org)
Curse Client (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Phoenix Labs)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden
Easy Thumbnails (Remove only) (HKLM-x32\...\Easy Thumbnails_is1) (Version: 3.0 - Fookes Software)
EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version: - SEIKO EPSON Corporation)
FileZilla Client 3.31.0 (HKLM-x32\...\FileZilla Client) (Version: 3.31.0 - Tim Kosse)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Git version 2.16.1 (HKLM\...\Git_is1) (Version: 2.16.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4542 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{66307462-7d19-4f1a-af82-aa04b6017f05}) (Version: 2.6.2.4 - Intel)
KeyHoleTV (HKLM-x32\...\KeyHoleTV) (Version: - )
Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation)
Krosmaga (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\5FF85AF0-CE53-4D51-815F-52DA47E3FF9A-2) (Version: - Ankama)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.1.3.2 (HKLM-x32\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation)
Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\OneDriveSetup.exe) (Version: 18.091.0506.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.24.1 - Microsoft Corporation)
Mises à jour NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 61.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.1 (x64 fr)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla)
Mumble 1.2.13 (HKLM-x32\...\{022319D8-DFB3-4531-8214-EE0E1E9CD4A3}) (Version: 1.2.13 - Thorvald Natvig)
Node.js (HKLM\...\{A25EF8A9-BF15-454F-930E-2B03D9D77F3E}) (Version: 8.10.0 - Node.js Foundation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation)
Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Panneau de configuration NVIDIA 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.36 - NVIDIA Corporation) Hidden
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7622 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{E6CAD8B3-5682-31CA-A05E-79F6DBF81066}) (Version: 14.0.25132 - Microsoft Corporation) Hidden
SixaxisDriver 0.91 (HKLM-x32\...\GameSaike SixaxisDriver_is1) (Version: - xPAD, Inc.)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.12.6 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.6 - SteelSeries ApS)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.193 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{4AC64C61-A7EC-4E4E-8F28-F57EB3430334}) (Version: 1.8.31.0 - Microsoft Corporation) Hidden
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9C4F3AF4-21D8-43BD-A69C-517BB96012CF}) (Version: 2.12.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{035FFC43-55D6-4F5C-BCC5-21FED122C8B4}) (Version: 1.11.0.0 - Microsoft Corporation) Hidden
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22350 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
XAMPP (HKLM-x32\...\xampp) (Version: 7.2.1-0 - Bitnami)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-4026337126-645472991-121229314-1001_Classes\CLSID\{b008f94e-8b8a-44cb-b19e-933ec598bfe4}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0082EFD6-9CD2-474D-9EFD-7928613F185C} - System32\Tasks\RunAsStdUser_MyComGames => C:\Users\Kevin\AppData\Local\MyComGames\MyComGames.exe
Task: {06FDD22D-C910-49B4-944C-2E411289AD16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {0BABDABE-2EE8-4A50-8D9F-45833D6642FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {179C4912-9B51-45B8-B101-5F8526F4B29C} - System32\Tasks\AdobeGCInvoker-1.0-KAYLUNE-Kevin => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {189A50FE-E875-4620-A84A-405108789A81} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {213C9AFA-8596-41AB-B4BB-2A34A4105B97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {227BBDD8-5B4D-479F-AFE1-234B5F8AC3CA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {262B210C-8510-485E-8DC7-12379C334303} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {34946B17-2624-481D-862C-13BE432753DE} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe
Task: {57471FA1-97E2-44EE-81FD-BCD158D08FD3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6B2966EA-9059-487D-ADB6-8B6FC10DF052} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-20] (NVIDIA Corporation)
Task: {7C71A4EC-A223-4CEA-B6B5-1F144CAF62C3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {82BD30D4-51A4-4B0C-8E55-DE2C26E98DA1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
Task: {9077529E-0819-4A88-85C6-8A3DC487608C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {90791D04-CECD-4C89-929F-02CDC97F42A7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-20] (NVIDIA Corporation)
Task: {916F9693-B050-4EC0-8577-B2F08BC6B1F3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-20] (NVIDIA Corporation)
Task: {9AD97FDB-6375-4494-85F6-6A3FE193FEEC} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {9B1A8820-A73E-49BB-B08B-C4C328880521} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {A771277A-C87C-4E88-A50C-70B15C1BEAF7} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {AB7CFE76-9803-4035-B1C3-8EA969C5A3C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1806.18062-0\MpCmdRun.exe [2018-06-27] (Microsoft Corporation)
Task: {BABA989B-D544-4624-9C25-91F8C242ABA6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
Task: {D207D50F-A41C-49FC-BD3B-2E29D35A2271} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-20] (NVIDIA Corporation)
Task: {D2BE135C-FF21-4112-9504-71C3AE3D1024} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {E274861D-0EEE-479D-B5C8-FB5BD1300270} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {E6B5E1E6-2835-4D3C-90B2-700DFC5E55B4} - System32\Tasks\{FCB5249D-2843-4000-B0D6-4AF333183651} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Arc\ArcLauncher.exe" -d C:\Users\Kevin\Desktop -c gamecustom pwi
Task: {E93B9C77-2689-4C03-A25B-F59213F11B64} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-09] (Adobe Systems Incorporated)
Task: {EA78CD3A-1C8F-4BA1-BC24-427BF00BC3A6} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-20] (NVIDIA Corporation)
Task: {EB0543BE-6BC0-48FB-A6AA-9BDBDC3FBB1D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-20] (NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-10-19 10:26 - 2018-06-24 17:31 - 000138128 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-05-29 14:21 - 2018-05-20 19:36 - 001315296 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2017-10-20 17:42 - 2017-10-20 17:42 - 000393200 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-06-13 09:37 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-05-23 06:44 - 2018-05-23 06:44 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-05-23 06:44 - 2018-05-23 06:44 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-05-23 06:44 - 2018-05-23 06:45 - 022374400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-05-23 06:44 - 2018-05-23 06:44 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.209.0_x64__kzf8qxf38zg5c\skypert.dll
2018-06-08 12:05 - 2018-06-08 12:06 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-06-08 12:05 - 2018-06-08 12:06 - 067232256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-02-22 13:13 - 2018-02-22 13:21 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-04-26 08:00 - 2018-04-26 08:01 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004214784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000035840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-03-30 08:07 - 2018-03-30 08:10 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-06-08 12:05 - 2018-06-08 12:06 - 014851072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004058624 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-06-08 12:05 - 2018-06-08 12:05 - 003266048 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 001393664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 004218080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-05-26 10:02 - 2018-05-26 10:03 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15530.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-06-27 06:20 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-06-27 06:20 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2018-05-29 14:21 - 2018-05-20 19:36 - 001033184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-03-24 17:46 - 2018-06-08 23:38 - 000788256 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-03-24 17:46 - 2018-06-09 01:39 - 002632992 _____ () C:\Program Files (x86)\Steam\video.dll
2016-03-24 17:46 - 2018-06-08 23:42 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll
2016-03-24 17:46 - 2018-06-08 23:40 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-03-24 17:46 - 2018-06-08 23:40 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-12-20 06:28 - 2018-06-08 23:40 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll
2016-03-24 17:46 - 2018-06-09 01:38 - 000979744 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-24 17:46 - 2018-06-08 23:40 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-06-10 10:41 - 2018-06-08 23:39 - 000788256 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-01-02 12:15 - 2018-06-08 23:39 - 083524384 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2016-03-24 17:46 - 2018-06-08 23:42 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-07-28 21:13 - 2018-06-08 23:39 - 002253600 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libglesv2.dll
2017-07-28 21:13 - 2018-06-08 23:39 - 000109856 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\swiftshader\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2018-04-12 10:21 - 2018-04-16 15:11 - 000000916 _____ C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 monsite.local www.monsite.local
127.0.0.1 breakingnews.local
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-4026337126-645472991-121229314-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Fond d'écran.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "GamecomSound"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "M.M.O.TE"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}"
HKLM\...\StartupApproved\Run32: => "Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\StartupFolder: => "CurseClientStartup.ccip"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4026337126-645472991-121229314-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{FF629A68-390B-4A11-A7EA-F0A0BAD7BE3E}C:\xampp\filezillaftp\filezillaserver.exe] => (Block) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{B206D341-1386-4ABA-BF98-6027A704818F}C:\xampp\filezillaftp\filezillaserver.exe] => (Block) C:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [{BC2F107D-6952-4652-8B69-3013108CC77E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eternal Card Game\Eternal.exe
FirewallRules: [{38522863-4D5B-4AA3-94A8-0A5F30907345}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eternal Card Game\Eternal.exe
FirewallRules: [UDP Query User{C6EFA410-E930-422D-9A2D-0F5F7EF5B596}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe
FirewallRules: [TCP Query User{CAEDFE00-BEFC-4481-887A-98A6C091ED22}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe
FirewallRules: [UDP Query User{AB2B3856-DCB0-45E7-847E-EA144DCB510C}C:\program files\microsoft vs code\code.exe] => (Allow) C:\program files\microsoft vs code\code.exe
FirewallRules: [TCP Query User{3899469A-C3F3-44BC-8EEF-376EFCDFA879}C:\program files\microsoft vs code\code.exe] => (Allow) C:\program files\microsoft vs code\code.exe
FirewallRules: [{9043D106-BA84-4D28-943A-78E841D8FA70}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\immortal\immortal.exe
FirewallRules: [{3654FD83-E3A2-4703-9C2B-74E3A9385EEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\immortal\immortal.exe
FirewallRules: [{240CEA5E-5190-484A-8B45-6FFCE5364BB6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{88E12028-E92E-459B-9DA5-3FBA3EBFCB2D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{8BE72D52-7F3E-400E-A078-B44E236CA619}C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe
FirewallRules: [TCP Query User{15164424-EFD9-46D8-B5C6-3FC9C8C7FF69}C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.18\bin\httpd.exe
FirewallRules: [UDP Query User{4C1BAFC9-2E52-4C90-BF06-870D54CDC4D5}C:\nexon\library\icarus\appdata\bin64\launcher.exe] => (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [TCP Query User{8D6D1B82-835C-47D4-A2F0-5C327EFB2C56}C:\nexon\library\icarus\appdata\bin64\launcher.exe] => (Allow) C:\nexon\library\icarus\appdata\bin64\launcher.exe
FirewallRules: [UDP Query User{826D265C-57ED-454A-9975-6FEC429F57AD}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [TCP Query User{70D47E2F-5291-413A-A28F-18E111D88233}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [{A4EB157F-60C2-49C3-AEC0-B0EF7872CC40}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{5C9AA8FC-115F-49FA-A0AE-4B57FE633322}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{106C8DF1-82D4-4C18-A6F9-EEA6BEB1CDCB}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{EE763AD4-184F-4CEF-B18C-50D2DF08A317}] => (Allow) C:\Program Files (x86)\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [UDP Query User{7EDA1322-B209-4BC4-8F1D-01ECDCDF7430}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [TCP Query User{F3FAC3A5-267B-4DC6-9FA3-0DBA2FB9651A}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe
FirewallRules: [UDP Query User{2713DAAD-E855-4A87-90DF-915B1A7DADC7}C:\program files (x86)\unity2\editor\unity.exe] => (Allow) C:\program files (x86)\unity2\editor\unity.exe
FirewallRules: [TCP Query User{AA9A79E9-D649-46AC-A38A-8A626FE549F4}C:\program files (x86)\unity2\editor\unity.exe] => (Allow) C:\program files (x86)\unity2\editor\unity.exe
FirewallRules: [UDP Query User{A0998953-811E-4DCA-9473-45F068CC52EE}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [TCP Query User{9EA545D1-B98C-49A4-BFBD-97D6F7CF7145}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe
FirewallRules: [UDP Query User{B856DDA2-52A9-4E53-B2A8-2C4501837D42}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3A719AB1-2514-46AC-9A95-AE1C2181B6A4}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{B415D6E3-F6E5-492C-B741-20B36C225E35}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{FF5C9D99-B477-4374-9A03-8DE8EAEDE168}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{EDF664F3-34A5-4C97-AD6E-38A12C54AB6C}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{6C6CED22-2F73-4088-8BAF-5F63F67BF0D0}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{8517B094-3611-474A-AA26-385B8CA640A2}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [TCP Query User{68873B52-21A4-4A6D-B0F8-FA9B26DFCF63}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [UDP Query User{B9CACB47-77A9-413E-85B6-215698285D23}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{68B24F45-46BE-4E51-94FD-EA68B11BDEE9}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F793AE36-62F4-4527-8E01-2AAE8B3756B9}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [TCP Query User{3240C95E-0195-4F57-B1ED-735072C1A7E2}C:\nexon\library\icarus\appdata\bin32\launcher32.exe] => (Allow) C:\nexon\library\icarus\appdata\bin32\launcher32.exe
FirewallRules: [UDP Query User{E01E78C5-0E92-4E83-A932-DE0A93404628}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{3A746B09-A70D-4C77-BFC6-C706D8AA971A}C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base41810\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{0D4B5E8B-D962-4DF1-BAE5-E4AAAAC0CBEC}C:\program files (x86)\keyholetv\keyholetv.exe] => (Allow) C:\program files (x86)\keyholetv\keyholetv.exe
FirewallRules: [TCP Query User{00BF843A-0FCA-43DC-8F01-C4F5AE36F879}C:\program files (x86)\keyholetv\keyholetv.exe] => (Allow) C:\program files (x86)\keyholetv\keyholetv.exe
FirewallRules: [{E3C55BDA-0BB5-4944-B2D8-D62E55DDA77A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5E50066C-414B-4256-83AF-C4A14A7211D6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{AB8A2ECA-B805-4A85-896C-203F02981D15}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F53440A3-03E7-432B-86E1-DD728E0BFC1A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2003F4C5-86B9-4D1D-8CD7-5D86266DCF58}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{47CA5779-7335-499A-B234-B38FDC2B582C}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{FAF999B5-1E12-4F17-BDEA-C24EB64AF4BE}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{51434A30-ECD9-4051-8663-2CB47A3CDD0C}] => (Allow) C:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [UDP Query User{B0BF866A-EA31-474E-AA2D-57481D9FB4E4}C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe] => (Allow) C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe
FirewallRules: [TCP Query User{E687AC01-7061-42EB-A02A-F71E5629933F}C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe] => (Allow) C:\program files (x86)\gameforge4d\nclauncher\nclauncher.exe
FirewallRules: [UDP Query User{2A828F29-3649-42BF-B7F3-258A962C8CB5}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [TCP Query User{2E94E2CA-B227-49FF-B1BB-4AE5178DAAA0}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [UDP Query User{15037DF3-F6DE-4D04-B327-E801BEA65E23}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [TCP Query User{7D6ED5FF-D018-4DF7-BE2E-26125372C918}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [{B8EBD911-7A0B-44B4-9AE9-C8E75FC5F647}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [UDP Query User{C8191595-7287-4027-9FC3-C178E16DA385}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{F8EA7A69-B90B-44A7-9271-817CDF190627}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{075D1F97-7A2C-4FE8-AE99-7D625003C971}] => (Allow) LPort=1688
FirewallRules: [{12A4627B-7DF7-4E13-9FC0-2FFC8BF89581}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8002E680-3C32-473B-8522-D86CFCC40580}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1168E51E-08E7-470A-801B-82E0F79A3BE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{621E9DB3-F239-47F7-BD30-17668C79AF32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C63C1744-C719-4BED-8DC6-0D834300FE95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{70A95E4D-4D6C-4A51-B9EA-3BB60FF433A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CABA3986-BC84-4B6F-B6EC-0BD3C408165E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{10FD7D17-D546-4EC0-B3F0-AFB9BDE5050E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E8A34AF3-409F-4CAB-9C84-DE1854D0D0CF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [TCP Query User{76F12CD4-F2AB-4B57-85C5-5363DA38C35E}C:\users\kevin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\kevin\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{F4B9BB24-ACE0-4A63-852F-A40D414B73BE}C:\users\kevin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\kevin\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{DABA3F95-32A6-4D5D-AACC-723CEE623248}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{AB6C372D-DA3B-4AA2-858E-1F2C78EAF42A}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{EC0F1E3A-9786-4147-9D1E-DB1C0FBACD7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1B758842-E81C-4682-B7CB-B91AFCB3224D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{5E46AA1A-BDD0-44AD-A5E4-480FEAEE2993}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{81877B85-6661-4D78-9973-4AE8B072F245}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{7A5387B6-A493-40F2-A29E-652EE3816321}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B9177900-ECA3-4929-B795-6B96DB43FCF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{70C32110-F450-4645-9941-E8482ADA86BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{C7AC9479-9B8D-4A5A-B227-6F6ED19B2281}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{65123D91-8DAB-4996-B9B6-D8A1C095069C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{34FFBC1F-40F5-45E0-ABAC-ECFAF92F29CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{95DEFB1F-0E1C-4407-A6C9-043B0B40985B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{609D87FE-4D76-432B-9857-CE63EE2E6F18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{C415F5B5-3969-4246-8812-B7203F253C67}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{D302C8A2-8A39-48BF-834B-E859EB0AEA83}C:\program files\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\program files\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{1B199776-DFC8-41DA-A6EE-1B949FCD793F}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{D3090EA7-52B0-44D1-B219-B299201C2760}C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\program files\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [{0494E628-9AE7-4E07-99F1-27E1019CBB8F}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{25CCBDDE-3BEC-46AC-96B5-4AD40D6C9875}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [TCP Query User{6927C1C4-E9D6-4A6D-B553-9EC5BFE1C7DF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{087B8487-7282-49E8-AF16-2833A9393D81}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{1D090939-CEDE-4E09-B6C3-0A454BD0708B}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D410B10D-39AE-4E47-BC31-F43F549ECCB5}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [{A3C3F31A-35A0-4EAB-A2A8-B4A40D8F8552}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{4B0183D7-5A0D-4459-929A-DAB69C8E8738}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{121F988F-0C14-4CBE-9BF9-E7C897CCC355}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{AB0BF421-5185-49AD-8D44-919072C5C5BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{410D2878-82CE-482C-A77C-26C846076D73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{0DFEAA73-20C1-4949-9AF0-2DAF19534C7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [TCP Query User{271E6495-7E06-4238-A88F-7C10BC9854EE}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{72CD11E5-B13B-4D23-8551-652E17C84300}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E92DF276-1318-45D8-B67A-51181A4B7604}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4A38CACF-151A-425D-AA6D-03844C31AA2A}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{507BB305-A1E4-4E3C-B292-B73718BF3C67}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{204978D0-313C-4633-AB26-F54C733DFB9C}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [{C7A3D008-12E3-4A77-A926-88EA665D5B00}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [{69D2788E-46EE-4EBA-B25C-D116F8996957}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [TCP Query User{0792A556-6FF1-4F92-803B-BB2B1ABD5C24}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe
FirewallRules: [UDP Query User{45A2DC6C-9C30-48C3-8171-0E610E7A08FE}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe
FirewallRules: [TCP Query User{46433CEA-A6E2-462D-B1B0-6060191A59EF}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{9369D78F-68F5-463E-BC6F-E5D544DE4B2B}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{CD2B8998-9BD0-4FED-9441-D5AD6DE6AE1A}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{B6816289-AB43-4FC8-9019-C8AB54A34445}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{E3407B01-1237-4BC5-8CA9-295AFC54F139}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B0CE6B1B-B933-4E86-8256-F217FDF2C01F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{076B4D52-0194-43DB-B3F7-C37C482CBF4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{12288011-D888-4847-B533-217A746E9859}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A71D989A-900C-4E2D-A406-EE8683AAA66F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{81E7C180-40DE-4512-9636-266E99C89771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0574E871-4CD7-4190-840A-046B60503330}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{FDA4F557-E4B9-4D9F-AEF7-4B826A0E60DB}] => (Allow) C:\WINDOWS\system32\rundll32.exe
==================== Points de restauration =========================
01-07-2018 16:55:33 Point de contrôle planifié
07-07-2018 15:21:06 Removed M.M.O.TE Game Profiles
07-07-2018 15:21:29 Removed M.M.O.TE
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (07/07/2018 05:54:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante aion.bin, version : 5818.823.622.13184, horodatage : 0x5b2c5d79
Nom du module défaillant : libcef.dll, version : 3.2357.1292.0, horodatage : 0x5822c807
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000f4619
ID du processus défaillant : 0x2b04
Heure de début de l’application défaillante : 0x01d4160468583179
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Steam\steamapps\common\AION\Client\bin64\aion.bin
Chemin d’accès du module défaillant: C:\Program Files (x86)\Steam\steamapps\common\AION\Client\bin64\CEF\libcef.dll
ID de rapport : caa96383-3764-4f36-8f14-76fa5839b5bd
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (07/07/2018 03:42:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe, version : 10.0.17134.1, horodatage : 0xa38b9ab2
Nom du module défaillant : PhoneDataSync.dll_unloaded, version : 10.0.17134.1, horodatage : 0xa73f20d7
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000032adf
ID du processus défaillant : 0x166c
Heure de début de l’application défaillante : 0x01d415a929bbdead
Chemin d’accès de l’application défaillante : c:\windows\system32\svchost.exe
Chemin d’accès du module défaillant: PhoneDataSync.dll
ID de rapport : e15c6d23-cfba-4edd-874c-17d3ff832584
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (07/07/2018 03:39:48 PM) (Source: HlpCtntMgr) (EventID: 1003) (User: )
Description: Help Content Manager exited with error: NoBooksToUninstall
Error: (07/07/2018 03:27:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme devenv.exe version 14.0.25123.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : d2c
Heure de début : 01d415f5f7437433
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
ID de rapport : 323891df-b07d-40ff-9ca1-5a40425827d9
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (07/07/2018 03:27:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme devenv.exe version 14.0.25123.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2cc4
Heure de début : 01d415f5dfd5e0c7
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
ID de rapport : c25896d6-0492-4e1f-a49e-cefb5b62e404
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (07/07/2018 03:13:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/07/2018 06:13:43 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007007B
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=10
Error: (07/07/2018 06:04:19 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (07/07/2018 05:54:58 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:53:38 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:07:29 PM) (Source: DCOM) (EventID: 10016) (User: KAYLUNE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID KAYLUNE\Kevin de l’utilisateur (S-1-5-21-4026337126-645472991-121229314-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:03:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscDataProtection
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (07/07/2018 05:01:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/07/2018 05:01:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service FontCache3.0.0.0.
Error: (07/07/2018 05:00:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SystemUsageReportSvc_QUEENCREEK n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/07/2018 05:00:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service SystemUsageReportSvc_QUEENCREEK.
Windows Defender:
===================================
Date: 2018-06-30 12:00:06.971
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {8C38BFA3-7547-44DE-97DF-74DD9CEE4534}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : KAYLUNE\Kevin
Date: 2018-06-30 12:00:06.891
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\KMSSS.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : KAYLUNE\Kevin
Nom du processus : Unknown
Version de la signature : AV: 1.271.243.0, AS: 1.271.243.0, NIS: 1.271.243.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-06-30 08:03:16.845
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\KMSSS.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Version de la signature : AV: 1.271.243.0, AS: 1.271.243.0, NIS: 1.271.243.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-06-29 19:03:56.209
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {29B74BC8-DF3D-4C2B-A63C-774577CFD683}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : KAYLUNE\Kevin
Date: 2018-06-29 18:27:42.575
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDropper:Win32/Kaymundler.B&threatid=2147709422&enterprise=0
Nom : TrojanDropper:Win32/Kaymundler.B
ID : 2147709422
Gravité : Grave
Catégorie : Programme malveillant de diffusion de chevaux de Troie
Chemin : file:_C:\Program Files (x86)\KMSPico 10.2.1 Final\KMSPICO_SETUP.BAT
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Version de la signature : AV: 1.271.236.0, AS: 1.271.236.0, NIS: 1.271.236.0
Version du moteur : AM: 1.1.15000.2, NIS: 1.1.15000.2
Date: 2018-07-03 08:03:32.347
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.271.388.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15000.2
Code d’erreur : 0x80240016
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 47%
Mémoire physique - RAM - totale: 8100.88 MB
Mémoire physique - RAM - disponible: 4216.98 MB
Mémoire virtuelle totale: 9380.88 MB
Mémoire virtuelle disponible: 4552.11 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:930.11 GB) (Free:488.87 GB) NTFS
\\?\Volume{c480fe6a-2398-4910-a6c8-3e28feec3b6a}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{c4fc2a66-d0ab-4188-b2eb-dc59001391ab}\ () (Fixed) (Total:0.85 GB) (Free:0.33 GB) NTFS
\\?\Volume{a42c0008-1e15-4fbe-83f2-3c1154c9ba2f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 28761BA5)
Partition: GPT.
==================== Fin de Addition.txt ============================