Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Exécuté par bebeb (24-10-2018 18:06:09)
Exécuté depuis D:\Deskstop
Windows 10 Home Version 1803 17134.112 (X64) (2018-06-07 22:05:28)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-766940476-3279624738-871407004-500 - Administrator - Disabled)
bebeb (S-1-5-21-766940476-3279624738-871407004-1001 - Administrator - Enabled) => C:\Users\bebeb
DefaultAccount (S-1-5-21-766940476-3279624738-871407004-503 - Limited - Disabled)
Invité (S-1-5-21-766940476-3279624738-871407004-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-766940476-3279624738-871407004-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Age2HD Compatibility Patch version V5 (HKLM-x32\...\Age2HD Compatibility Patch_is1) (Version: V5 - )
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Assassin's Creed Origins (HKLM-x32\...\{DAC281DD-7006-49D4-905B-E8BDA474A230}_is1) (Version: - Ubisoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.45 - Piriform)
Citra (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{0ed6ebca-44c1-4073-ab9d-41e5e6e8abfc}) (Version: 1.0.0 - Citra Team)
Crossout Launcher 1.0.3.61 (HKLM-x32\...\CrossOutLauncher_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{68B3293E-612B-48B4-BC0F-4CCFBF83AB96}) (Version: 0.8.2.76 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Epic Games Launcher (HKLM-x32\...\{CC65E120-E089-4438-815A-E20004182608}) (Version: 1.1.149.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lenovo Entertainment Hub (HKLM-x32\...\{2994AD9D-6FB9-411E-9D88-C009DE04DC51}_is1) (Version: 1.1.2 - Beyond Media)
Lenovo Nerve Center Core Component (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 3.0.14.13 - Lenovo)
Lenovo Utility (HKLM\...\{12ABAC82-7D83-4CB8-9DD2-434DC9AF2942}_is1) (Version: 3.0.0.18 - Lenovo)
Lenovo Yoga Mode Control (Inf Install) (HKLM\...\ACPIVPC) (Version: 15.11.28.173 - Lenovo)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.7.208 - McAfee, Inc.)
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10827.20181 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mises à jour NVIDIA 25.6.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.6.0.0 - NVIDIA Corporation) Hidden
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.0.8.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.25 - NVIDIA Corporation)
NVIDIA Pilote graphique 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.25 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.69.2586.0 - Hi-Rez Studios)
Panneau de configuration NVIDIA 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.25 - NVIDIA Corporation) Hidden
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Forest (HKLM-x32\...\The Forest_is1) (Version: - )
Twitch (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{54228DC1-0B27-4215-B2BE-4D07C521F242}) (Version: 2.33.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F3874F6F-EA00-487D-BEAD-5FAA010E78F2}) (Version: 1.15.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 57.0 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\utweb) (Version: 0.18.0 - BitTorrent, Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0-2) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => D:\Alcohol 120\AxShlex.dll -> Pas de fichier
ContextMenuHandlers2-x32: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => D:\Alcohol 120\AxShlEx64.dll -> Pas de fichier
ContextMenuHandlers2-x32: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd)
ContextMenuHandlers2-x32: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-16] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02E5B476-B6EB-4D64-BA98-9EF019CBFEBC} - System32\Tasks\Avast Software\Overseer => D:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-09-15] (AVAST Software)
Task: {04423875-7D19-4A47-AED5-EC6DDE63AF80} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b316bb10-c859-4f0d-bba4-33c21247aefc => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {089F45F0-F4F2-49D7-95AD-9D28629D1E12} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => D:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {09FA45DA-FD7E-45FA-A187-77DFA00AB72B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {0AEB3F61-0661-4907-A946-872216AD34FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-19] (Google Inc.)
Task: {0C4E8EDB-E5ED-442F-ACEF-D49E2C419422} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a7aad48f-54fd-42c9-96f2-efba9f674181 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {119889B8-FDAA-4D61-B626-597F3A945E90} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {19633929-2D0B-4D5C-A618-8682181E85C2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\eff1dad2-2131-45c4-85cb-75a77df9671f => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {38C967AA-D874-40C7-AE86-9263325D754B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation)
Task: {3B0535D9-C52D-47A3-B92C-EA9C6447D10C} - System32\Tasks\AVG\Overseer => C:\Program Files\AVG\Antivirus\setup\overseer.exe
Task: {3F20B860-CE9B-4778-9334-7954312837AE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation)
Task: {45405216-1ECA-44DA-A5AE-9FC58AC2D4B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => D:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {4AF98C09-F8BD-4DF3-BDFD-AA857354DA49} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [2018-07-20] (Piriform Ltd)
Task: {56880A28-00D2-4E98-B915-65DCE38FE9E9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation)
Task: {5DDA986E-C546-4AFF-88EC-A0C63D751E9E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => D:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {5E76D571-143D-4D2A-86D2-0A3FA9AB0D9B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {62500623-0E7C-49D7-8BBF-7AC81F1D9EB7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {8030AEC8-FC66-43B5-8030-2BA9DB0D314E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {8B9E8D10-98E8-40A3-BEE8-1088404C2FC1} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [2017-09-29] (Lenovo(beijing) Limited)
Task: {94D7A564-C215-4D5C-A6C7-59B76FAB31CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [2018-05-16] (Lenovo Group Limited)
Task: {9C8038DC-E158-4940-BDE3-E4EF17ADA046} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => D:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {A4BE4853-D3F9-4602-9DD9-0C0B0F425696} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {A52208E8-4E63-4F47-BC94-31D173849346} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation)
Task: {B08379B5-389E-49AB-98F6-140E255EF7A0} - System32\Tasks\Microsoft\Office\Office Feature Updates => D:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-10-23] (Microsoft Corporation)
Task: {B76E4B54-23E1-44D3-B716-A6A526BBED92} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {B8A32E87-0F19-4151-8365-3593DFDC7720} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {C28671D8-9B4C-4019-B7E9-0CFD0576A108} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C2A445CA-D4FB-40E6-BBDC-4F9210DCFB07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-19] (Google Inc.)
Task: {DF2CD1F2-37F3-4E0C-81AF-3BB3C760A4DF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0481b1fe-c255-4736-b90c-cd87fa2f9fc6 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {E4A1EBEB-EA79-462B-AC14-0945AD300B16} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2017-12-15 23:46 - 2018-03-16 09:36 - 000134592 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-06-13 13:20 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-23 10:49 - 2018-10-23 10:49 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-23 10:49 - 2018-10-23 10:49 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-19 23:12 - 2018-04-19 23:12 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-12 10:43 - 2018-07-12 10:43 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-06-20 15:41 - 2017-09-29 14:28 - 000755040 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\resPic.dll
2018-09-20 21:07 - 2018-09-15 10:26 - 005110616 _____ () D:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-20 21:07 - 2018-09-15 10:26 - 000116056 _____ () D:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-26 13:22 - 2018-09-26 13:24 - 069128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-04-19 23:19 - 2018-04-19 23:23 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-05-03 20:18 - 2018-05-03 20:19 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-29 10:47 - 2018-08-29 10:48 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-17 13:17 - 2018-08-17 13:39 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-08-29 10:47 - 2018-08-29 10:50 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-04-19 23:19 - 2018-04-19 23:23 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-17 13:17 - 2018-08-17 13:39 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 014171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-29 10:47 - 2018-08-29 10:48 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-26 13:22 - 2018-09-26 13:23 - 002866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-29 10:47 - 2018-08-29 10:50 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-29 20:11 - 2018-07-29 20:15 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-07 12:31 - 2018-10-07 12:31 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-07-31 08:49 - 2018-07-31 08:49 - 002447072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-07 12:31 - 2018-10-07 12:31 - 001689088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-09-27 21:32 - 2018-09-27 21:33 - 000023552 _____ () C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.15.58.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe
2018-06-26 12:03 - 2018-06-08 22:10 - 098275328 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-06-26 12:03 - 2018-06-08 22:10 - 003922432 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2018-06-26 12:03 - 2018-06-08 22:10 - 000092672 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2018-10-09 19:00 - 2018-10-09 19:00 - 031308288 _____ () C:\Users\bebeb\AppData\Local\Google\Chrome\User Data\PepperFlash\31.0.0.122\pepflashplayer.dll
2018-10-09 16:47 - 2018-10-09 16:47 - 004389888 _____ () C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1809.2571.0_x64__8wekyb3d8bbwe\OneConnect.dll
2018-09-27 21:32 - 2018-09-27 21:33 - 033969152 _____ () C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.15.58.0_x86__k1h2ywk1493x8\Lenovo.Discovery.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 086734056 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libcef.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 004318952 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libglesv2.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 000098024 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [436]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 23:03 - 2018-10-13 11:46 - 000000865 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-766940476-3279624738-871407004-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run: => "LenovoUtility"
HKLM\...\StartupApproved\Run: => "DAX2_APP"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "World of Tanks"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "utweb"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{AA6E571F-C172-4A1F-AD14-73DA59B072A8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [TCP Query User{664E54DC-6B74-4CE2-9FF0-A51378164915}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [UDP Query User{65EF3103-A7DC-4631-AE9E-DAF944771C96}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [TCP Query User{CF0EB08C-6233-4161-B7E9-E9502E5DB43C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [UDP Query User{454F0454-D15F-4EC5-BCAD-26538CF7D9B1}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{82817F86-5AD1-499E-A6F7-4A0C40CFEBFD}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{236146E9-5222-426E-8C14-C32BE3AC96AF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [TCP Query User{B78D3C4E-635B-4A23-A415-726071E54226}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [{2F8F78E9-23BE-403E-81D2-034DD813ED8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{7206B1F7-AE09-4214-80C4-C0FB3A6672FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [UDP Query User{084B074F-4E85-4CCC-AE1F-C7AD28C13359}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe
FirewallRules: [TCP Query User{30112B4E-6CBF-412A-ABF3-B3931FEAFBC1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe
FirewallRules: [UDP Query User{0A3E26CD-43B1-4BD8-8169-C4536CA2DD3E}D:\crossout\launcher.exe] => (Allow) D:\crossout\launcher.exe
FirewallRules: [TCP Query User{D86BB28F-EDBB-4445-B566-13BD5D177B53}D:\crossout\launcher.exe] => (Allow) D:\crossout\launcher.exe
FirewallRules: [{4C181292-4C30-4CCC-991E-DB357B829CD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{60020674-7EE6-4CE7-82E2-2E0478542785}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{A11B511C-9E46-4D1F-AC3C-6BF4AD97EEAD}] => (Allow) D:\World of tanks\worldoftanks.exe
FirewallRules: [{E031ECCD-0199-468E-A108-C7CA3EA7100F}] => (Allow) D:\World of tanks\worldoftanks.exe
FirewallRules: [{BD1A049A-87B5-4E47-93A9-08E36A01BA93}] => (Allow) D:\World of tanks\WoTLauncher.exe
FirewallRules: [{5BCED7A4-7F45-4BC4-8C43-1A09FEA10C02}] => (Allow) D:\World of tanks\WoTLauncher.exe
FirewallRules: [UDP Query User{C51CF360-79E3-41B9-9A6F-426E84EDE1A0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{CD08D9E9-2C07-4442-9995-EA4616C0A8D2}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{498CA5A3-0466-409A-B8C0-E94A3212AA6F}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{FFCE86D7-E4EB-4A29-9C23-253CBFAE82A5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{405BE7DF-F8AC-4B91-A3FC-F3E39AA2FDA5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{91DC6D3D-4DF6-46BB-B77F-20705A72CA28}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [{E885D091-8639-47A5-A818-B8E648810C7E}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{8AE16356-0873-4E81-8228-D33E2D3F444B}] => (Allow) D:\Program Files\Nox\bin\Nox.exe
FirewallRules: [{0085D9B0-3A82-4487-AC8F-DA7CCBBFE7B4}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{91C1F4AB-56EA-4B29-92F0-D434F04E4AF6}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{57D0D80D-1C51-4F84-91BA-52CA49F1175A}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{424E3CF6-1CA2-4F14-859E-DBB1858DB019}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{BD763FA0-B0FA-41F6-8F1E-E9F3F648A043}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D9A6604E-CDAA-48C0-87B3-86DE7A861F4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{629CCC90-10DF-4F99-93D5-CEFC5A1B9685}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{580690FD-8330-41EA-BE54-954F7DFAE5CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{88AAC7C4-CD5B-4590-A53A-97D60C024B70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{810F8A08-38D5-4EAD-8B03-73ED66AFDEA3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{525FCD72-AAD3-4C19-B8B4-8FA73CCA1846}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E2F3FDDC-7F6B-480A-AEB5-5DF9630CD425}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{46BD97E8-7F2F-40FF-B677-6CF8D4BCCF01}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{9070CC31-EB8C-4BF6-A74C-875454076DD8}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{5E3C6DE0-5173-485E-AF24-C8D6523D6DCB}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{E9C88B34-EC45-48C6-BEB8-BD6E8055FEF5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [UDP Query User{8550A52F-6D0C-4912-8559-E36509909C3C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{DF2BA298-C078-4ECB-B29D-DD8616CD18DD}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{451FF077-FD1A-4F15-AFF3-861D4572A48C}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3972B9A0-CF6E-4B87-A582-3760F4E111C4}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe
FirewallRules: [UDP Query User{063B85DB-D5F0-4EF7-8906-00943CEA53B1}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe
FirewallRules: [{424C65FE-DF23-4025-A1EB-C4DAA0FC8258}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{B74316F4-664D-4619-8FD0-EE30AFCCE2FE}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{515669F8-C1B6-4B4C-85E1-2E371EF63FF4}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{C82F7D69-94C2-4248-B6A6-044191BE0A5E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{C7A29A76-C3F4-412C-A613-B55732992CE6}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [{11B63DB0-D6D7-45C7-BC4C-D506E009F560}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [TCP Query User{5AD9BABA-0A2B-4773-ADDB-FD5DBF1C10DF}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [UDP Query User{6C8C98CD-9D18-40CD-91A6-9AAB8121BE2A}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [TCP Query User{7A48B998-48F8-4AA9-B6C3-A67B334A96AE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [UDP Query User{CD0BD369-0550-4DD8-9EC1-D95C2C6F8D8B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6A091E9E-239B-41E8-88CE-EE129C5E5E2B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{3B2CCF12-42B9-44F2-8397-399EEF988366}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2BDF7C19-5598-4E38-AD7D-705AD2E12C1B}D:\games\the forest\theforest.exe] => (Allow) D:\games\the forest\theforest.exe
FirewallRules: [UDP Query User{69EB85DD-2A76-400B-B9DF-1080A5D5737C}D:\games\the forest\theforest.exe] => (Allow) D:\games\the forest\theforest.exe
FirewallRules: [{0A2C7E12-510F-434B-AA2B-591D62A8E531}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{33C5681F-23B6-4BAE-BD0A-C1F32D05B99F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2597CD03-51FE-4FC7-B121-29AB215E8CD8}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EEE17438-24A0-4E1B-922E-445BA3CB04AA}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{4B037612-E062-415E-9D71-A1D097F25084}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6C61D837-E521-43A3-AE1E-B535EDBD19C7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{65DFD9D4-FACF-4D5F-96A1-F0CA3454D309}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [TCP Query User{EE655D86-3497-4DCF-8DD2-E99C1DBDDED4}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{7152839B-5BB7-44F6-9AF4-AFF5441B2536}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{87819AC3-B143-4D0D-8905-E7F3A4ED31F4}] => (Allow) D:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{CC84CC88-E0F0-4243-AA3C-66B0BED8E330}] => (Allow) D:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{3E5FB2C6-B7B1-4F02-9A9B-E5506ACDA241}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{5A2E3513-973D-4414-A517-587690569696}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{BD4F727E-9B6E-4A1D-9158-344F02D873DE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{8DDB77A3-A250-4B08-B086-02B9F9B383F4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [TCP Query User{688A7432-492C-4A36-853D-DFE07C0BF196}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{719BE3F9-FEFF-4C53-A5DF-FB7E2097D219}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [TCP Query User{66EEF4A6-3F6F-46F3-A1D1-8FE336342C97}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{FCE9A9F9-A36A-46EB-9C65-DE501CDC574E}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{5A910499-BD20-43A7-B966-8FBC40C5D25A}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{C372D252-C065-45C1-9003-BF3AC9ADE238}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{79FEC980-3A3D-4CE5-8511-74D8C30CF331}] => (Allow) D:\SteamLibrary\steamapps\common\Natural Selection 2\NS2.exe
FirewallRules: [{6D2E8A98-0D62-49FD-8D86-8E62FAD28647}] => (Allow) D:\SteamLibrary\steamapps\common\Natural Selection 2\NS2.exe
FirewallRules: [TCP Query User{8A7151EB-28A8-4C02-8138-3ACA8552F6DD}D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe
FirewallRules: [UDP Query User{4F7F59A6-1ADA-47C2-A6E2-BC4FA4E7D717}D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe
FirewallRules: [{CE446150-B2BB-4A2A-B132-DE9466AE821D}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{313A63E0-695C-4A68-9B87-4315F88E288A}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A356E560-04EF-4793-8663-8A52311DB67B}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{CD6FB6AC-1F7A-44B1-A295-0DE8005488A7}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{CB2B981E-DFF3-4D9D-8CC5-E53573241ED9}D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{0031629B-1B7A-4A07-A2EB-D50AE71C68CF}D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{81552E9E-5573-4986-9334-93C0472D9EEC}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E43BAF37-4BFD-47FC-951C-DDA0CBCA39CD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [TCP Query User{F7DB00B0-AC12-4F60-B803-A8FBE0FB4BE1}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [UDP Query User{89D71D81-936A-4BC3-AB16-CF6BC4D1DF07}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [{81D20589-1268-49D7-B0A6-C7C5805B976B}] => (Allow) C:\Users\bebeb\AppData\Roaming\uTorrent Web\utweb.exe
FirewallRules: [{2C951C0C-F439-426F-B986-35241C29B06B}] => (Allow) C:\Users\bebeb\AppData\Roaming\uTorrent Web\utweb.exe
FirewallRules: [{36C386F6-0822-4B12-A40C-CACFDA5376FB}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{678B7A0A-4729-4E73-815E-B110EC467696}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe
FirewallRules: [{BC99CEA4-1AB4-4FC5-A308-855A5B898EC4}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe
FirewallRules: [TCP Query User{4A736DC3-A515-4F14-92DD-2351FACFA28C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [UDP Query User{97214982-1030-438C-9BC6-BEF3EE55F467}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [{417A9E48-01D2-482A-8FB6-CCA5056F30D4}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{09DD4751-7203-4672-B5ED-A62051688DC0}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{077DC23F-EBAA-45E1-8CBF-44EAE4DD98C0}D:\deskstop\age of empires ii\empires2.exe] => (Allow) D:\deskstop\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{012AC244-8482-4C6F-8BA8-EA1F4BF00755}D:\deskstop\age of empires ii\empires2.exe] => (Allow) D:\deskstop\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{BC6D4AAE-7276-41DC-B409-A729B2976370}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{F58918F6-3AD7-46CA-8BE1-C03FD348C5CF}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{076FABA6-D213-4AEE-96F2-4C7093466489}D:\deskstop\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\deskstop\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{9E401CDC-A936-48CE-954E-3DECCC1E655E}D:\deskstop\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\deskstop\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{253126F7-F7CC-46E6-991F-9B7C452D2AED}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{B3648629-9093-4E7A-94EA-634AF0629424}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{3CF753EF-1B79-4FBC-BAEB-A94C3CDB0545}D:\voobly\voobly.exe] => (Allow) D:\voobly\voobly.exe
FirewallRules: [UDP Query User{35285DE3-DC1A-4714-B7B2-9B16899DE171}D:\voobly\voobly.exe] => (Allow) D:\voobly\voobly.exe
FirewallRules: [{9CB71945-056A-436C-B40F-6CEEA81AE0D4}] => (Allow) D:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{961C438B-CE28-4912-A87C-562523771923}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe
FirewallRules: [UDP Query User{BB98640D-BBAA-4D94-9F6C-9FF174CB9386}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe
FirewallRules: [TCP Query User{5607866B-C357-47F1-8C0D-BC48B95A0BFD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [UDP Query User{FB87C70E-8079-4922-91F6-B3CB2E7281A3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [{D88521E0-FE67-4064-B78F-47463932DA39}] => (Allow) D:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6B9C2550-E5EE-4024-9BBB-C93620442A97}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [UDP Query User{139F0BC3-9017-4A86-872B-C779C57100CE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6752A4FD-BC31-45F4-A3AA-8E1B071A4C64}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [UDP Query User{AC443048-E9DB-4AC2-B2E1-46D7B2073895}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [TCP Query User{7DCB3422-3E8E-46A4-8AFA-ED58C2B1B1A3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [UDP Query User{690F8E24-8CC3-4C0E-A1FE-A8A7EC7B22CD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [TCP Query User{9517CBAE-84C1-4DFC-AB8F-E5FDFC2B6706}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe
FirewallRules: [UDP Query User{3358A3F9-69FB-4A7D-8AE3-3E4CCB5EFE43}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe
FirewallRules: [TCP Query User{20B60AEE-B966-4EA8-A8D6-171A5A8DB178}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E72BA434-EB00-4B74-A0E3-ED34DFEA16B2}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [{5474998E-C83E-4E32-88F8-2369A0947D98}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{E81408D1-1214-40A4-9998-16566F3E2AFA}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{EC10771B-60A1-41BF-B3E0-D50235FD482A}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{B357B741-3FD2-4187-BE53-65AD3024CE9B}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{EF8534A2-DA94-4793-BC69-1548ECB16D91}] => (Allow) D:\SteamLibrary\steamapps\common\WW1GameSeries\WW1 Game Series.exe
FirewallRules: [{B656AB2D-6606-4E45-A389-2D0550EFD898}] => (Allow) D:\SteamLibrary\steamapps\common\WW1GameSeries\WW1 Game Series.exe
FirewallRules: [{B326480D-8F21-43A4-A7D5-35ED8F616C4E}] => (Allow) D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{6F1B3579-963C-4BC9-B552-1FEEF640DE71}] => (Allow) D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{846206E2-823C-4AB7-AE26-5CB0C0422771}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{F981E0AB-86C1-4CFC-AD51-B54D205135A3}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{627ACFFE-0E5F-4286-A369-923A6592B5E6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{CE8CFB83-4FDA-44B7-81EE-2A198066FE47}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E98C3078-91A8-484F-BF42-6197AC1B9A6F}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{5E2ACF7B-6B8A-4F47-9629-650671D563B4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{D8BED871-AAD6-4BFD-837B-857756A1BCF6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{0387E4D1-E863-46E7-BB15-5BC0DD018FC3}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{978980C8-8A18-4CB3-A1A3-D4C78E282F07}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound.exe
FirewallRules: [{BC9C0F14-A17A-402D-931F-6050F0BB41B6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound.exe
FirewallRules: [{94DC1CA0-18DE-401B-A851-2E0F25CAA084}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound_server.exe
FirewallRules: [{B4040B13-B3BC-4B85-9014-DA94FE6051DA}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound_server.exe
FirewallRules: [{B1D51B35-51B3-40E2-911E-4F90DA4A0098}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe
FirewallRules: [{004E9745-33B6-4C47-8135-ECBA63A64553}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe
FirewallRules: [{E0C67EC3-AED3-421F-80BB-EAE0B70FAE1D}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win32\starbound.exe
FirewallRules: [{7594000B-1753-405D-86BE-66DF8A6A53F4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win32\starbound.exe
FirewallRules: [{60C3B24F-30F7-4A99-9167-646B96874358}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{485DDC70-9B9C-43DA-9125-6C2A5E9EFA19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{291B1CC3-6CD9-40CF-983E-F371D87713DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{2052159B-042E-4E33-B5F2-0136161B2B54}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{7F053463-4E1E-4482-AF7B-05461C99A1DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0EF084D1-B796-4699-BA88-6A3EAA8337B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{938F6AB2-642A-450C-9E80-D6D8C4950FB0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6FF49627-353C-40DE-9577-597453C4F3FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/24/2018 01:15:32 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : DTAgent.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.Runtime.InteropServices.COMException
à DiscSoftBusServiceLib.IDSFileTransferManager.get_IsBusy()
à DTAgent.App.TrayBaseApp.Application_SessionEnding(System.Object, System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.OnSessionEnding(System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.WmQueryEndSession(IntPtr, IntPtr ByRef)
à System.Windows.Application.AppFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
à System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
à MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (10/24/2018 01:13:45 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : DTAgent.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.Runtime.InteropServices.COMException
à DiscSoftBusServiceLib.IDSFileTransferManager.get_IsBusy()
à DTAgent.App.TrayBaseApp.Application_SessionEnding(System.Object, System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.OnSessionEnding(System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.WmQueryEndSession(IntPtr, IntPtr ByRef)
à System.Windows.Application.AppFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
à System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
à MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (10/23/2018 02:14:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 08:27:24 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 05:38:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 03:13:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LenovoNerveCenter.exe version 3.0.14.13 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 25e4
Heure de début : 01d469e3ac08e071
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\WindowsApps\E0469640.NerveCenter_3.0.14.0_x64__5grkq8ppsgwt4\Nerve Center\bin\x64\LenovoNerveCenter.exe
ID de rapport : 9be5ef35-627e-4c3d-9311-e5599439cb3c
Nom complet du package défaillant : E0469640.NerveCenter_3.0.14.0_x64__5grkq8ppsgwt4
ID de l'application relative au package défaillant : LenovoNerveCenter
Error: (10/22/2018 02:59:54 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 02:58:27 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Erreurs système:
=============
Error: (10/24/2018 03:55:34 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:26:17 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:23:39 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:21:22 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:18:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscDataProtection
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:18:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscBrokerManager
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:16:37 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:16:32 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscCloudBackupProvider
et l’APPID
Non disponible
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Windows Defender:
===================================
Date: 2018-10-22 17:38:20.574
Description:
Antivirus Windows Defender a détecté un comportement suspect.
Nom : Informational:Behavior/ModifiedKernel
ID : 2214094803
Gravité : Faible
Catégorie : Comportement suspect
Chemin trouvé : process:_0
Origine de la détection : Inconnu
Type de détection : Suspect
Source de détection : Protection en temps réel
État : Exécution
Utilisateur : Unknown\Unknown
Nom du processus : Unknown
ID de signature : 717259538435
Version de la signature : AV: 1.279.275.0, AS: 1.279.275.0
Version du moteur : 1.1.15400.4
Étiquette de fidélité : Moyen
Nom du fichier cible : \SystemRoot\system32\drivers\aswSnx.sys
Date: 2018-10-22 12:52:29.255
Description:
Antivirus Windows Defender a détecté un comportement suspect.
Nom : Informational:Behavior/ModifiedKernel
ID : 1685080958
Gravité : Faible
Catégorie : Comportement suspect
Chemin trouvé : process:_0
Origine de la détection : Inconnu
Type de détection : Suspect
Source de détection : Protection en temps réel
État : Exécution
Utilisateur : Unknown\Unknown
Nom du processus : Unknown
ID de signature : 717259538435
Version de la signature : AV: 1.279.275.0, AS: 1.279.275.0
Version du moteur : 1.1.15400.4
Étiquette de fidélité : Moyen
Nom du fichier cible : \SystemRoot\system32\drivers\aswSnx.sys
Date: 2018-06-15 21:21:41.856
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 427339.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-06-15 21:21:22.162
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 326034.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-06-15 21:21:06.849
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 435904.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-07-06 12:10:25.041
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.271.572.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15000.2
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
Date: 2018-06-24 19:11:28.012
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.1889.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80070643
Description de l’erreur : Erreur irrécupérable lors de l’installation.
Date: 2018-06-10 18:21:33.928
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2018-06-10 18:21:33.927
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Logiciel anti-espion
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2018-06-10 18:21:33.927
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 63%
Mémoire physique - RAM - totale: 8084.16 MB
Mémoire physique - RAM - disponible: 2915.15 MB
Mémoire virtuelle totale: 15252.16 MB
Mémoire virtuelle disponible: 7986.96 MB
==================== Lecteurs ================================
Drive c: (Windows) (Fixed) (Total:118 GB) (Free:66.83 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:931.39 GB) (Free:469.72 GB) NTFS
\\?\Volume{264810f5-7903-4de9-ab5b-cde0069a6119}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{1e4cf263-7d77-426f-a70c-e9f3101d502b}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0F39128F)
Partition: GPT.
========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 395D4C18)
Partition: GPT.
========================================================
Disk: 2 (Size: 3 MB) (Disk ID: 6F20736B)
No partition Table on disk 2.
Disk 2 is a removable device.
==================== Fin de Addition.txt ============================
Exécuté par bebeb (24-10-2018 18:06:09)
Exécuté depuis D:\Deskstop
Windows 10 Home Version 1803 17134.112 (X64) (2018-06-07 22:05:28)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-766940476-3279624738-871407004-500 - Administrator - Disabled)
bebeb (S-1-5-21-766940476-3279624738-871407004-1001 - Administrator - Enabled) => C:\Users\bebeb
DefaultAccount (S-1-5-21-766940476-3279624738-871407004-503 - Limited - Disabled)
Invité (S-1-5-21-766940476-3279624738-871407004-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-766940476-3279624738-871407004-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Age2HD Compatibility Patch version V5 (HKLM-x32\...\Age2HD Compatibility Patch_is1) (Version: V5 - )
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Assassin's Creed Origins (HKLM-x32\...\{DAC281DD-7006-49D4-905B-E8BDA474A230}_is1) (Version: - Ubisoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.45 - Piriform)
Citra (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{0ed6ebca-44c1-4073-ab9d-41e5e6e8abfc}) (Version: 1.0.0 - Citra Team)
Crossout Launcher 1.0.3.61 (HKLM-x32\...\CrossOutLauncher_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{68B3293E-612B-48B4-BC0F-4CCFBF83AB96}) (Version: 0.8.2.76 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Epic Games Launcher (HKLM-x32\...\{CC65E120-E089-4438-815A-E20004182608}) (Version: 1.1.149.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lenovo Entertainment Hub (HKLM-x32\...\{2994AD9D-6FB9-411E-9D88-C009DE04DC51}_is1) (Version: 1.1.2 - Beyond Media)
Lenovo Nerve Center Core Component (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 3.0.14.13 - Lenovo)
Lenovo Utility (HKLM\...\{12ABAC82-7D83-4CB8-9DD2-434DC9AF2942}_is1) (Version: 3.0.0.18 - Lenovo)
Lenovo Yoga Mode Control (Inf Install) (HKLM\...\ACPIVPC) (Version: 15.11.28.173 - Lenovo)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.7.208 - McAfee, Inc.)
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10827.20181 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mises à jour NVIDIA 25.6.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.6.0.0 - NVIDIA Corporation) Hidden
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.0.8.0 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.25 - NVIDIA Corporation)
NVIDIA Pilote graphique 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.25 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10827.20181 - Microsoft Corporation) Hidden
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.69.2586.0 - Hi-Rez Studios)
Panneau de configuration NVIDIA 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.25 - NVIDIA Corporation) Hidden
reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Forest (HKLM-x32\...\The Forest_is1) (Version: - )
Twitch (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{54228DC1-0B27-4215-B2BE-4D07C521F242}) (Version: 2.33.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F3874F6F-EA00-487D-BEAD-5FAA010E78F2}) (Version: 1.15.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 57.0 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\utweb) (Version: 0.18.0 - BitTorrent, Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0-2) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-766940476-3279624738-871407004-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2-x32: [AlcoholShellEx] -> {32020A01-506E-484D-A2A8-BE3CF17601C3} => D:\Alcohol 120\AxShlex.dll -> Pas de fichier
ContextMenuHandlers2-x32: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => D:\Alcohol 120\AxShlEx64.dll -> Pas de fichier
ContextMenuHandlers2-x32: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd)
ContextMenuHandlers2-x32: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => D:\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (Disc Soft Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-16] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02E5B476-B6EB-4D64-BA98-9EF019CBFEBC} - System32\Tasks\Avast Software\Overseer => D:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-09-15] (AVAST Software)
Task: {04423875-7D19-4A47-AED5-EC6DDE63AF80} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b316bb10-c859-4f0d-bba4-33c21247aefc => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {089F45F0-F4F2-49D7-95AD-9D28629D1E12} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => D:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {09FA45DA-FD7E-45FA-A187-77DFA00AB72B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {0AEB3F61-0661-4907-A946-872216AD34FD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-19] (Google Inc.)
Task: {0C4E8EDB-E5ED-442F-ACEF-D49E2C419422} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\a7aad48f-54fd-42c9-96f2-efba9f674181 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {119889B8-FDAA-4D61-B626-597F3A945E90} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {19633929-2D0B-4D5C-A618-8682181E85C2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\eff1dad2-2131-45c4-85cb-75a77df9671f => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {38C967AA-D874-40C7-AE86-9263325D754B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation)
Task: {3B0535D9-C52D-47A3-B92C-EA9C6447D10C} - System32\Tasks\AVG\Overseer => C:\Program Files\AVG\Antivirus\setup\overseer.exe
Task: {3F20B860-CE9B-4778-9334-7954312837AE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation)
Task: {45405216-1ECA-44DA-A5AE-9FC58AC2D4B1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => D:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {4AF98C09-F8BD-4DF3-BDFD-AA857354DA49} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [2018-07-20] (Piriform Ltd)
Task: {56880A28-00D2-4E98-B915-65DCE38FE9E9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation)
Task: {5DDA986E-C546-4AFF-88EC-A0C63D751E9E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => D:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-10-14] (Microsoft Corporation)
Task: {5E76D571-143D-4D2A-86D2-0A3FA9AB0D9B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {62500623-0E7C-49D7-8BBF-7AC81F1D9EB7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {8030AEC8-FC66-43B5-8030-2BA9DB0D314E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation)
Task: {8B9E8D10-98E8-40A3-BEE8-1088404C2FC1} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [2017-09-29] (Lenovo(beijing) Limited)
Task: {94D7A564-C215-4D5C-A6C7-59B76FAB31CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [2018-05-16] (Lenovo Group Limited)
Task: {9C8038DC-E158-4940-BDE3-E4EF17ADA046} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => D:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-23] (Microsoft Corporation)
Task: {A4BE4853-D3F9-4602-9DD9-0C0B0F425696} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {A52208E8-4E63-4F47-BC94-31D173849346} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation)
Task: {B08379B5-389E-49AB-98F6-140E255EF7A0} - System32\Tasks\Microsoft\Office\Office Feature Updates => D:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-10-23] (Microsoft Corporation)
Task: {B76E4B54-23E1-44D3-B716-A6A526BBED92} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {B8A32E87-0F19-4151-8365-3593DFDC7720} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation)
Task: {C28671D8-9B4C-4019-B7E9-0CFD0576A108} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C2A445CA-D4FB-40E6-BBDC-4F9210DCFB07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-04-19] (Google Inc.)
Task: {DF2CD1F2-37F3-4E0C-81AF-3BB3C760A4DF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0481b1fe-c255-4736-b90c-cd87fa2f9fc6 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2018-05-16] (Lenovo Group Limited)
Task: {E4A1EBEB-EA79-462B-AC14-0945AD300B16} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2017-12-15 23:46 - 2018-03-16 09:36 - 000134592 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-06-13 13:20 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-10-23 10:49 - 2018-10-23 10:51 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-23 10:49 - 2018-10-23 10:49 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-23 10:49 - 2018-10-23 10:49 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-19 23:12 - 2018-04-19 23:12 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-23 10:49 - 2018-10-23 10:49 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-07-12 10:43 - 2018-07-12 10:43 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-06-20 15:41 - 2017-09-29 14:28 - 000755040 _____ () C:\Program Files\Lenovo\Nerve Center\bin\x64\resPic.dll
2018-09-20 21:07 - 2018-09-15 10:26 - 005110616 _____ () D:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-20 21:07 - 2018-09-15 10:26 - 000116056 _____ () D:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-26 13:22 - 2018-09-26 13:24 - 069128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-04-19 23:19 - 2018-04-19 23:23 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-05-03 20:18 - 2018-05-03 20:19 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-29 10:47 - 2018-08-29 10:48 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-17 13:17 - 2018-08-17 13:39 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-08-29 10:47 - 2018-08-29 10:50 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-04-19 23:19 - 2018-04-19 23:23 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-17 13:17 - 2018-08-17 13:39 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-09-26 13:22 - 2018-09-26 13:24 - 014171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-29 10:47 - 2018-08-29 10:48 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-26 13:22 - 2018-09-26 13:23 - 002866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-29 10:47 - 2018-08-29 10:50 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-29 20:11 - 2018-07-29 20:15 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-07 12:31 - 2018-10-07 12:31 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-07-31 08:49 - 2018-07-31 08:49 - 002447072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-07 12:31 - 2018-10-07 12:31 - 001689088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-09-27 21:32 - 2018-09-27 21:33 - 000023552 _____ () C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.15.58.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe
2018-06-26 12:03 - 2018-06-08 22:10 - 098275328 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-06-26 12:03 - 2018-06-08 22:10 - 003922432 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2018-06-26 12:03 - 2018-06-08 22:10 - 000092672 _____ () D:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2018-10-09 19:00 - 2018-10-09 19:00 - 031308288 _____ () C:\Users\bebeb\AppData\Local\Google\Chrome\User Data\PepperFlash\31.0.0.122\pepflashplayer.dll
2018-10-09 16:47 - 2018-10-09 16:47 - 004389888 _____ () C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1809.2571.0_x64__8wekyb3d8bbwe\OneConnect.dll
2018-09-27 21:32 - 2018-09-27 21:33 - 033969152 _____ () C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.15.58.0_x86__k1h2ywk1493x8\Lenovo.Discovery.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 086734056 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libcef.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 004318952 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libglesv2.dll
2018-10-24 12:23 - 2018-10-24 12:24 - 000098024 _____ () C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [436]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [470]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 23:03 - 2018-10-13 11:46 - 000000865 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-766940476-3279624738-871407004-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run: => "LenovoUtility"
HKLM\...\StartupApproved\Run: => "DAX2_APP"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "World of Tanks"
HKU\S-1-5-21-766940476-3279624738-871407004-1001\...\StartupApproved\Run: => "utweb"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{AA6E571F-C172-4A1F-AD14-73DA59B072A8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [TCP Query User{664E54DC-6B74-4CE2-9FF0-A51378164915}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [UDP Query User{65EF3103-A7DC-4631-AE9E-DAF944771C96}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [TCP Query User{CF0EB08C-6233-4161-B7E9-E9502E5DB43C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [UDP Query User{454F0454-D15F-4EC5-BCAD-26538CF7D9B1}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{82817F86-5AD1-499E-A6F7-4A0C40CFEBFD}C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{236146E9-5222-426E-8C14-C32BE3AC96AF}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [TCP Query User{B78D3C4E-635B-4A23-A415-726071E54226}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [{2F8F78E9-23BE-403E-81D2-034DD813ED8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{7206B1F7-AE09-4214-80C4-C0FB3A6672FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [UDP Query User{084B074F-4E85-4CCC-AE1F-C7AD28C13359}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe
FirewallRules: [TCP Query User{30112B4E-6CBF-412A-ABF3-B3931FEAFBC1}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.144\deploy\leagueclient.exe
FirewallRules: [UDP Query User{0A3E26CD-43B1-4BD8-8169-C4536CA2DD3E}D:\crossout\launcher.exe] => (Allow) D:\crossout\launcher.exe
FirewallRules: [TCP Query User{D86BB28F-EDBB-4445-B566-13BD5D177B53}D:\crossout\launcher.exe] => (Allow) D:\crossout\launcher.exe
FirewallRules: [{4C181292-4C30-4CCC-991E-DB357B829CD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{60020674-7EE6-4CE7-82E2-2E0478542785}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{A11B511C-9E46-4D1F-AC3C-6BF4AD97EEAD}] => (Allow) D:\World of tanks\worldoftanks.exe
FirewallRules: [{E031ECCD-0199-468E-A108-C7CA3EA7100F}] => (Allow) D:\World of tanks\worldoftanks.exe
FirewallRules: [{BD1A049A-87B5-4E47-93A9-08E36A01BA93}] => (Allow) D:\World of tanks\WoTLauncher.exe
FirewallRules: [{5BCED7A4-7F45-4BC4-8C43-1A09FEA10C02}] => (Allow) D:\World of tanks\WoTLauncher.exe
FirewallRules: [UDP Query User{C51CF360-79E3-41B9-9A6F-426E84EDE1A0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{CD08D9E9-2C07-4442-9995-EA4616C0A8D2}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{498CA5A3-0466-409A-B8C0-E94A3212AA6F}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{FFCE86D7-E4EB-4A29-9C23-253CBFAE82A5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{405BE7DF-F8AC-4B91-A3FC-F3E39AA2FDA5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{91DC6D3D-4DF6-46BB-B77F-20705A72CA28}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [{E885D091-8639-47A5-A818-B8E648810C7E}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{8AE16356-0873-4E81-8228-D33E2D3F444B}] => (Allow) D:\Program Files\Nox\bin\Nox.exe
FirewallRules: [{0085D9B0-3A82-4487-AC8F-DA7CCBBFE7B4}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{91C1F4AB-56EA-4B29-92F0-D434F04E4AF6}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{57D0D80D-1C51-4F84-91BA-52CA49F1175A}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{424E3CF6-1CA2-4F14-859E-DBB1858DB019}] => (Allow) D:\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{BD763FA0-B0FA-41F6-8F1E-E9F3F648A043}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D9A6604E-CDAA-48C0-87B3-86DE7A861F4A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{629CCC90-10DF-4F99-93D5-CEFC5A1B9685}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{580690FD-8330-41EA-BE54-954F7DFAE5CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{88AAC7C4-CD5B-4590-A53A-97D60C024B70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{810F8A08-38D5-4EAD-8B03-73ED66AFDEA3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{525FCD72-AAD3-4C19-B8B4-8FA73CCA1846}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E2F3FDDC-7F6B-480A-AEB5-5DF9630CD425}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{46BD97E8-7F2F-40FF-B677-6CF8D4BCCF01}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{9070CC31-EB8C-4BF6-A74C-875454076DD8}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{5E3C6DE0-5173-485E-AF24-C8D6523D6DCB}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{E9C88B34-EC45-48C6-BEB8-BD6E8055FEF5}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [UDP Query User{8550A52F-6D0C-4912-8559-E36509909C3C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{DF2BA298-C078-4ECB-B29D-DD8616CD18DD}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{451FF077-FD1A-4F15-AFF3-861D4572A48C}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3972B9A0-CF6E-4B87-A582-3760F4E111C4}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe
FirewallRules: [UDP Query User{063B85DB-D5F0-4EF7-8906-00943CEA53B1}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win64\paladins.exe
FirewallRules: [{424C65FE-DF23-4025-A1EB-C4DAA0FC8258}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{B74316F4-664D-4619-8FD0-EE30AFCCE2FE}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{515669F8-C1B6-4B4C-85E1-2E371EF63FF4}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{C82F7D69-94C2-4248-B6A6-044191BE0A5E}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{C7A29A76-C3F4-412C-A613-B55732992CE6}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [{11B63DB0-D6D7-45C7-BC4C-D506E009F560}] => (Allow) D:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe
FirewallRules: [TCP Query User{5AD9BABA-0A2B-4773-ADDB-FD5DBF1C10DF}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [UDP Query User{6C8C98CD-9D18-40CD-91A6-9AAB8121BE2A}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe
FirewallRules: [TCP Query User{7A48B998-48F8-4AA9-B6C3-A67B334A96AE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [UDP Query User{CD0BD369-0550-4DD8-9EC1-D95C2C6F8D8B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6A091E9E-239B-41E8-88CE-EE129C5E5E2B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{3B2CCF12-42B9-44F2-8397-399EEF988366}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [TCP Query User{2BDF7C19-5598-4E38-AD7D-705AD2E12C1B}D:\games\the forest\theforest.exe] => (Allow) D:\games\the forest\theforest.exe
FirewallRules: [UDP Query User{69EB85DD-2A76-400B-B9DF-1080A5D5737C}D:\games\the forest\theforest.exe] => (Allow) D:\games\the forest\theforest.exe
FirewallRules: [{0A2C7E12-510F-434B-AA2B-591D62A8E531}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{33C5681F-23B6-4BAE-BD0A-C1F32D05B99F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2597CD03-51FE-4FC7-B121-29AB215E8CD8}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EEE17438-24A0-4E1B-922E-445BA3CB04AA}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{4B037612-E062-415E-9D71-A1D097F25084}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6C61D837-E521-43A3-AE1E-B535EDBD19C7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [{65DFD9D4-FACF-4D5F-96A1-F0CA3454D309}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1\H1Z1_BE.exe
FirewallRules: [TCP Query User{EE655D86-3497-4DCF-8DD2-E99C1DBDDED4}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{7152839B-5BB7-44F6-9AF4-AFF5441B2536}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{87819AC3-B143-4D0D-8905-E7F3A4ED31F4}] => (Allow) D:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{CC84CC88-E0F0-4243-AA3C-66B0BED8E330}] => (Allow) D:\SteamLibrary\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{3E5FB2C6-B7B1-4F02-9A9B-E5506ACDA241}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{5A2E3513-973D-4414-A517-587690569696}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{BD4F727E-9B6E-4A1D-9158-344F02D873DE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{8DDB77A3-A250-4B08-B086-02B9F9B383F4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [TCP Query User{688A7432-492C-4A36-853D-DFE07C0BF196}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{719BE3F9-FEFF-4C53-A5DF-FB7E2097D219}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [TCP Query User{66EEF4A6-3F6F-46F3-A1D1-8FE336342C97}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{FCE9A9F9-A36A-46EB-9C65-DE501CDC574E}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{5A910499-BD20-43A7-B966-8FBC40C5D25A}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{C372D252-C065-45C1-9003-BF3AC9ADE238}] => (Allow) D:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{79FEC980-3A3D-4CE5-8511-74D8C30CF331}] => (Allow) D:\SteamLibrary\steamapps\common\Natural Selection 2\NS2.exe
FirewallRules: [{6D2E8A98-0D62-49FD-8D86-8E62FAD28647}] => (Allow) D:\SteamLibrary\steamapps\common\Natural Selection 2\NS2.exe
FirewallRules: [TCP Query User{8A7151EB-28A8-4C02-8138-3ACA8552F6DD}D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe
FirewallRules: [UDP Query User{4F7F59A6-1ADA-47C2-A6E2-BC4FA4E7D717}D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe] => (Allow) D:\steamlibrary\steamapps\common\natural selection 2\x64\ns2.exe
FirewallRules: [{CE446150-B2BB-4A2A-B132-DE9466AE821D}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{313A63E0-695C-4A68-9B87-4315F88E288A}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [TCP Query User{A356E560-04EF-4793-8663-8A52311DB67B}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{CD6FB6AC-1F7A-44B1-A295-0DE8005488A7}D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{CB2B981E-DFF3-4D9D-8CC5-E53573241ED9}D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{0031629B-1B7A-4A07-A2EB-D50AE71C68CF}D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{81552E9E-5573-4986-9334-93C0472D9EEC}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E43BAF37-4BFD-47FC-951C-DDA0CBCA39CD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe
FirewallRules: [TCP Query User{F7DB00B0-AC12-4F60-B803-A8FBE0FB4BE1}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [UDP Query User{89D71D81-936A-4BC3-AB16-CF6BC4D1DF07}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [{81D20589-1268-49D7-B0A6-C7C5805B976B}] => (Allow) C:\Users\bebeb\AppData\Roaming\uTorrent Web\utweb.exe
FirewallRules: [{2C951C0C-F439-426F-B986-35241C29B06B}] => (Allow) C:\Users\bebeb\AppData\Roaming\uTorrent Web\utweb.exe
FirewallRules: [{36C386F6-0822-4B12-A40C-CACFDA5376FB}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{678B7A0A-4729-4E73-815E-B110EC467696}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe
FirewallRules: [{BC99CEA4-1AB4-4FC5-A308-855A5B898EC4}] => (Allow) D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege - Test Server\RainbowSix.exe
FirewallRules: [TCP Query User{4A736DC3-A515-4F14-92DD-2351FACFA28C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [UDP Query User{97214982-1030-438C-9BC6-BEF3EE55F467}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [{417A9E48-01D2-482A-8FB6-CCA5056F30D4}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{09DD4751-7203-4672-B5ED-A62051688DC0}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{077DC23F-EBAA-45E1-8CBF-44EAE4DD98C0}D:\deskstop\age of empires ii\empires2.exe] => (Allow) D:\deskstop\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{012AC244-8482-4C6F-8BA8-EA1F4BF00755}D:\deskstop\age of empires ii\empires2.exe] => (Allow) D:\deskstop\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{BC6D4AAE-7276-41DC-B409-A729B2976370}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{F58918F6-3AD7-46CA-8BE1-C03FD348C5CF}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{076FABA6-D213-4AEE-96F2-4C7093466489}D:\deskstop\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\deskstop\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{9E401CDC-A936-48CE-954E-3DECCC1E655E}D:\deskstop\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\deskstop\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{253126F7-F7CC-46E6-991F-9B7C452D2AED}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{B3648629-9093-4E7A-94EA-634AF0629424}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{3CF753EF-1B79-4FBC-BAEB-A94C3CDB0545}D:\voobly\voobly.exe] => (Allow) D:\voobly\voobly.exe
FirewallRules: [UDP Query User{35285DE3-DC1A-4714-B7B2-9B16899DE171}D:\voobly\voobly.exe] => (Allow) D:\voobly\voobly.exe
FirewallRules: [{9CB71945-056A-436C-B40F-6CEEA81AE0D4}] => (Allow) D:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{961C438B-CE28-4912-A87C-562523771923}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe
FirewallRules: [UDP Query User{BB98640D-BBAA-4D94-9F6C-9FF174CB9386}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.161\deploy\leagueclient.exe
FirewallRules: [TCP Query User{5607866B-C357-47F1-8C0D-BC48B95A0BFD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [UDP Query User{FB87C70E-8079-4922-91F6-B3CB2E7281A3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe
FirewallRules: [{D88521E0-FE67-4064-B78F-47463932DA39}] => (Allow) D:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6B9C2550-E5EE-4024-9BBB-C93620442A97}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [UDP Query User{139F0BC3-9017-4A86-872B-C779C57100CE}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6752A4FD-BC31-45F4-A3AA-8E1B071A4C64}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [UDP Query User{AC443048-E9DB-4AC2-B2E1-46D7B2073895}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.165\deploy\leagueclient.exe
FirewallRules: [TCP Query User{7DCB3422-3E8E-46A4-8AFA-ED58C2B1B1A3}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [UDP Query User{690F8E24-8CC3-4C0E-A1FE-A8A7EC7B22CD}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe
FirewallRules: [TCP Query User{9517CBAE-84C1-4DFC-AB8F-E5FDFC2B6706}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe
FirewallRules: [UDP Query User{3358A3F9-69FB-4A7D-8AE3-3E4CCB5EFE43}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.167\deploy\leagueclient.exe
FirewallRules: [TCP Query User{20B60AEE-B966-4EA8-A8D6-171A5A8DB178}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [UDP Query User{E72BA434-EB00-4B74-A0E3-ED34DFEA16B2}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe
FirewallRules: [{5474998E-C83E-4E32-88F8-2369A0947D98}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{E81408D1-1214-40A4-9998-16566F3E2AFA}] => (Allow) D:\SteamLibrary\steamapps\common\Rust\Rust.exe
FirewallRules: [{EC10771B-60A1-41BF-B3E0-D50235FD482A}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{B357B741-3FD2-4187-BE53-65AD3024CE9B}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Pirates!\Pirates!.exe
FirewallRules: [{EF8534A2-DA94-4793-BC69-1548ECB16D91}] => (Allow) D:\SteamLibrary\steamapps\common\WW1GameSeries\WW1 Game Series.exe
FirewallRules: [{B656AB2D-6606-4E45-A389-2D0550EFD898}] => (Allow) D:\SteamLibrary\steamapps\common\WW1GameSeries\WW1 Game Series.exe
FirewallRules: [{B326480D-8F21-43A4-A7D5-35ED8F616C4E}] => (Allow) D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{6F1B3579-963C-4BC9-B552-1FEEF640DE71}] => (Allow) D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{846206E2-823C-4AB7-AE26-5CB0C0422771}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{F981E0AB-86C1-4CFC-AD51-B54D205135A3}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{627ACFFE-0E5F-4286-A369-923A6592B5E6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{CE8CFB83-4FDA-44B7-81EE-2A198066FE47}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E98C3078-91A8-484F-BF42-6197AC1B9A6F}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{5E2ACF7B-6B8A-4F47-9629-650671D563B4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{D8BED871-AAD6-4BFD-837B-857756A1BCF6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{0387E4D1-E863-46E7-BB15-5BC0DD018FC3}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{978980C8-8A18-4CB3-A1A3-D4C78E282F07}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound.exe
FirewallRules: [{BC9C0F14-A17A-402D-931F-6050F0BB41B6}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound.exe
FirewallRules: [{94DC1CA0-18DE-401B-A851-2E0F25CAA084}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound_server.exe
FirewallRules: [{B4040B13-B3BC-4B85-9014-DA94FE6051DA}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\starbound_server.exe
FirewallRules: [{B1D51B35-51B3-40E2-911E-4F90DA4A0098}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe
FirewallRules: [{004E9745-33B6-4C47-8135-ECBA63A64553}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win64\mod_uploader.exe
FirewallRules: [{E0C67EC3-AED3-421F-80BB-EAE0B70FAE1D}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win32\starbound.exe
FirewallRules: [{7594000B-1753-405D-86BE-66DF8A6A53F4}] => (Allow) D:\SteamLibrary\steamapps\common\Starbound - Unstable\win32\starbound.exe
FirewallRules: [{60C3B24F-30F7-4A99-9167-646B96874358}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{485DDC70-9B9C-43DA-9125-6C2A5E9EFA19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{291B1CC3-6CD9-40CF-983E-F371D87713DF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{2052159B-042E-4E33-B5F2-0136161B2B54}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{7F053463-4E1E-4482-AF7B-05461C99A1DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0EF084D1-B796-4699-BA88-6A3EAA8337B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{938F6AB2-642A-450C-9E80-D6D8C4950FB0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6FF49627-353C-40DE-9577-597453C4F3FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/24/2018 01:15:32 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : DTAgent.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.Runtime.InteropServices.COMException
à DiscSoftBusServiceLib.IDSFileTransferManager.get_IsBusy()
à DTAgent.App.TrayBaseApp.Application_SessionEnding(System.Object, System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.OnSessionEnding(System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.WmQueryEndSession(IntPtr, IntPtr ByRef)
à System.Windows.Application.AppFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
à System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
à MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (10/24/2018 01:13:45 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : DTAgent.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.Runtime.InteropServices.COMException
à DiscSoftBusServiceLib.IDSFileTransferManager.get_IsBusy()
à DTAgent.App.TrayBaseApp.Application_SessionEnding(System.Object, System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.OnSessionEnding(System.Windows.SessionEndingCancelEventArgs)
à System.Windows.Application.WmQueryEndSession(IntPtr, IntPtr ByRef)
à System.Windows.Application.AppFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
à MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
à System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
à MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (10/23/2018 02:14:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 08:27:24 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 05:38:49 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 03:13:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LenovoNerveCenter.exe version 3.0.14.13 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 25e4
Heure de début : 01d469e3ac08e071
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\WindowsApps\E0469640.NerveCenter_3.0.14.0_x64__5grkq8ppsgwt4\Nerve Center\bin\x64\LenovoNerveCenter.exe
ID de rapport : 9be5ef35-627e-4c3d-9311-e5599439cb3c
Nom complet du package défaillant : E0469640.NerveCenter_3.0.14.0_x64__5grkq8ppsgwt4
ID de l'application relative au package défaillant : LenovoNerveCenter
Error: (10/22/2018 02:59:54 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Error: (10/22/2018 02:58:27 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-BMA2AFU4)
Description: httphttp-2147467263
Erreurs système:
=============
Error: (10/24/2018 03:55:34 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:26:17 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:23:39 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:21:22 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:18:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscDataProtection
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:18:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscBrokerManager
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:16:37 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0 du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/24/2018 01:16:32 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-BMA2AFU4)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscCloudBackupProvider
et l’APPID
Non disponible
au SID LAPTOP-BMA2AFU4\bebeb de l’utilisateur (S-1-5-21-766940476-3279624738-871407004-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Windows Defender:
===================================
Date: 2018-10-22 17:38:20.574
Description:
Antivirus Windows Defender a détecté un comportement suspect.
Nom : Informational:Behavior/ModifiedKernel
ID : 2214094803
Gravité : Faible
Catégorie : Comportement suspect
Chemin trouvé : process:_0
Origine de la détection : Inconnu
Type de détection : Suspect
Source de détection : Protection en temps réel
État : Exécution
Utilisateur : Unknown\Unknown
Nom du processus : Unknown
ID de signature : 717259538435
Version de la signature : AV: 1.279.275.0, AS: 1.279.275.0
Version du moteur : 1.1.15400.4
Étiquette de fidélité : Moyen
Nom du fichier cible : \SystemRoot\system32\drivers\aswSnx.sys
Date: 2018-10-22 12:52:29.255
Description:
Antivirus Windows Defender a détecté un comportement suspect.
Nom : Informational:Behavior/ModifiedKernel
ID : 1685080958
Gravité : Faible
Catégorie : Comportement suspect
Chemin trouvé : process:_0
Origine de la détection : Inconnu
Type de détection : Suspect
Source de détection : Protection en temps réel
État : Exécution
Utilisateur : Unknown\Unknown
Nom du processus : Unknown
ID de signature : 717259538435
Version de la signature : AV: 1.279.275.0, AS: 1.279.275.0
Version du moteur : 1.1.15400.4
Étiquette de fidélité : Moyen
Nom du fichier cible : \SystemRoot\system32\drivers\aswSnx.sys
Date: 2018-06-15 21:21:41.856
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 427339.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-06-15 21:21:22.162
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 326034.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-06-15 21:21:06.849
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nom : Trojan:Win32/Bluteal.B!rfn
ID : 2147727314
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\bebeb\Downloads\Non confirmé 435904.crdownload
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : LAPTOP-BMA2AFU4\bebeb
Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Version de la signature : AV: 1.269.1304.0, AS: 1.269.1304.0, NIS: 1.269.1304.0
Version du moteur : AM: 1.1.14901.4, NIS: 1.1.14901.4
Date: 2018-07-06 12:10:25.041
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.271.572.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15000.2
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
Date: 2018-06-24 19:11:28.012
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.1889.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80070643
Description de l’erreur : Erreur irrécupérable lors de l’installation.
Date: 2018-06-10 18:21:33.928
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2018-06-10 18:21:33.927
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Logiciel anti-espion
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2018-06-10 18:21:33.927
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.269.916.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.14901.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 63%
Mémoire physique - RAM - totale: 8084.16 MB
Mémoire physique - RAM - disponible: 2915.15 MB
Mémoire virtuelle totale: 15252.16 MB
Mémoire virtuelle disponible: 7986.96 MB
==================== Lecteurs ================================
Drive c: (Windows) (Fixed) (Total:118 GB) (Free:66.83 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:931.39 GB) (Free:469.72 GB) NTFS
\\?\Volume{264810f5-7903-4de9-ab5b-cde0069a6119}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.52 GB) NTFS
\\?\Volume{1e4cf263-7d77-426f-a70c-e9f3101d502b}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0F39128F)
Partition: GPT.
========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 395D4C18)
Partition: GPT.
========================================================
Disk: 2 (Size: 3 MB) (Disk ID: 6F20736B)
No partition Table on disk 2.
Disk 2 is a removable device.
==================== Fin de Addition.txt ============================