Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPFix v2020.10.21.246 by Nicolas Coolman (2020/10/21)
~ Run by Abi (Administrator) (25/10/2020 09:55:20)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Report : C:\Users\Abi\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 18363)
---\\ SCRIPT DE L'UTILISATEUR. (51)
Script ZHPFix
CreateRestorePoint
EmptyPrefetch
Emptytemp
EmptyCLSID
EmptyFlash
EmptyProxy
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Lavasoft =>.Lavasoft
O87 - FAEL: "{699F8410-B623-4ACC-8687-00798A844E33}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1BB97F13-DA5C-4D55-BA72-38BDB39E9E7C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{0DD18FD4-F952-4406-87FD-7274C4ACE6D3}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{6CF52560-BACC-419F-8163-09650BD140E2}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{491F7A46-917E-4697-9A50-97F31E8798F6}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{0FCAE0A3-B439-4A86-B2D4-EA9E52AC5831}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{B6592E2D-C9AF-476E-92F7-552B6B191E94}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{C409E272-7121-42F0-AA2B-FA9C1C715E46}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{AABEF45B-0A4C-40D6-9281-9B74A5B259D2}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\Hell Let Loose\Launch_HLL.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{524CAB59-E9E5-4559-B15F-0EA3DE8A35F0}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\Hell Let Loose\Launch_HLL.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{627AB9AA-E40B-4FB8-8085-8E78EEA12093}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{3481530F-8BEC-499F-8820-A93FCEFBE4AE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{80221ADA-27F3-4A42-994D-1A1308333BC7}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\eFootball PES 2021\PES2021.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{6EE9BA3F-3FBA-42EC-893F-A56BF1BB2B5B}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\eFootball PES 2021\PES2021.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{696114A9-EDA9-4CA7-8FA8-E610444B4F27}" [In-None-P6-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Mafia III\Launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{D0E85A9F-769F-4AEC-8F42-BADE9046B06E}" [In-None-P17-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Mafia III\Launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{9B286C0C-F608-4B7F-9F25-DB4E4994449D}" [In-None-P6-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Pro Evolution Soccer 2014\PES2014.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{307C6AB9-1C9C-4F26-9A90-B637C9C3D87C}" [In-None-P17-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Pro Evolution Soccer 2014\PES2014.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{CB888345-94CA-4FDF-A3E0-1F853A21B978}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{C301F617-9B34-4F3A-B854-D6A0294ABBC4}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{8FCDE073-5770-4421-A061-D8AA48DD15A5}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\wallpaper_engine\bin\diagnostics32.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{816CD94D-7129-413E-AB3E-449B63E92D7E}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\wallpaper_engine\bin\diagnostics32.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{CFECE7F3-4109-46AB-B7A2-0FC4CE42AF6E}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\Squad\squad_launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{9C0E682B-678F-4DCF-9D71-749D7B1180C6}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\Squad\squad_launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{5BDE1164-D005-40B9-88C3-3A4C5129D2F8}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{1F99D9EB-8E88-4EFF-8819-80FB40F6811E}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{66A9DD04-FB52-42F3-B716-5C81A188E3B5}" [In-None-P6-TRUE] .(...) -- S:\STEAM\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{165402AC-8D5F-4142-83AA-A95C99E8F759}" [In-None-P17-TRUE] .(...) -- S:\STEAM\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{2CC8CB5B-CE1A-4EEF-9821-BEF05DCA1880}" [In-None-P6-TRUE] .(...) -- S:\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{7AC7385A-7724-49EC-A24A-55A1667B4800}" [In-None-P17-TRUE] .(...) -- S:\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{817DDFC8-6124-4356-AFCD-A0E556757020}" [In-None-P6-TRUE] .(...) -- S:\Jeux en ligne\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5BBDF6F9-0214-416D-9841-2CC532520A07}" [In-None-P17-TRUE] .(...) -- S:\Jeux en ligne\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{E0554688-F618-4179-A9AF-756A4A10283D}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{8B2E5A18-FF50-4FD2-9D10-E369B44C4BE1}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{50E3AEEF-027C-4C71-9E11-59D01F8C9424}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P6-TRUE] .(...) -- S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{9E76153D-B417-4FE1-86E2-8402D6EECDF5}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P17-TRUE] .(...) -- S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O4 - HKUS\S-1-5-21-1019915872-2056548764-1321157498-1001\..\Run: [Steam] . (. - .) -- S:\STEAM\steam.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [Steam] . (. - .) -- S:\STEAM\steam.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe =>BitTorrent (P2P)
SR - Auto [00/00/0000] [ 0] Intel Bluetooth Service (ibtsiva) . (...) - C:\Windows\System32\ibtsiva (.not file.) [Unsigned] =>.Intel Corporation
O4 - HKUS\S-1-5-21-1019915872-2056548764-1321157498-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe =>BitTorrent (P2P)
---\\ LOGICIEL. (0)
---\\ SERVICE. (1)
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\ibtsiva [No File found]
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (106)
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\adobegc.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\AdobeIPCBroker.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\aria-debug-4508.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\DESKTOP-C3QIJUM-20201024-1401.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-10304.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-10780.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-12156.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-12688.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-1284.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-13212.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-1356.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2012.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2672.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2676.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-3120.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-4356.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-4372.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5048.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5388.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5460.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5600.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5860.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-6676.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-6736.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7024.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7164.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7228.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-8184.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-8464.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-9076.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-908.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 11-45-33-758.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 12-45-33-759.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 13-45-33-759.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 14-45-33-760.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 15-45-33-762.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 16-45-52-013.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 17-45-54-420.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 18-45-54-421.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 19-45-54-422.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 20-45-54-423.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 21-45-54-425.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 22-45-54-433.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-25 09-52-07-522.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 11-45-33-409.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 12-45-33-410.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 13-45-33-412.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 14-45-33-413.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 15-45-33-414.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 16-45-53-684.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 17-45-56-091.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 18-45-56-091.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 19-45-56-093.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 20-45-56-095.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 21-45-56-095.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 22-45-56-096.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-25 09-52-06-655.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 11-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 12-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 13-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 14-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 15-15-24-254.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 16-15-24-256.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 16-45-45-914.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 18-15-46-063.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 19-15-46-065.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 20-15-46-065.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 21-15-46-066.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 22-15-46-067.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 23-15-46-068.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-25 09-51-58-448.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_default.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\oobelib.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\PDApp.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\SquirrelSetup.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5062.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50B1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50D1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50F1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5102.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5132.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5747.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57B6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57D6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57F6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5816.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5837.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9427.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9428.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9429.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD942A.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943A.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943B.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943C.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943D.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943E.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943F.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9440.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9441.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\crash_repo_pref.txt
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\FXSAPIDebugLogFile.txt
DEPLACÉ Fichier Run: C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe
---\\ REGISTRE ( Clés, Valeurs, Données ). (45)
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\Lavasoft [Lavasoft ]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Lavasoft [Lavasoft ]
ABSENT Clé: HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Lavasoft
SUPPRIMÉ Valeur FirewallRules: {699F8410-B623-4ACC-8687-00798A844E33} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {1BB97F13-DA5C-4D55-BA72-38BDB39E9E7C} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{0DD18FD4-F952-4406-87FD-7274C4ACE6D3}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{6CF52560-BACC-419F-8163-09650BD140E2}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{491F7A46-917E-4697-9A50-97F31E8798F6}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{0FCAE0A3-B439-4A86-B2D4-EA9E52AC5831}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{B6592E2D-C9AF-476E-92F7-552B6B191E94}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{C409E272-7121-42F0-AA2B-FA9C1C715E46}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {AABEF45B-0A4C-40D6-9281-9B74A5B259D2} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {524CAB59-E9E5-4559-B15F-0EA3DE8A35F0} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {627AB9AA-E40B-4FB8-8085-8E78EEA12093} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {3481530F-8BEC-499F-8820-A93FCEFBE4AE} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {80221ADA-27F3-4A42-994D-1A1308333BC7} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {6EE9BA3F-3FBA-42EC-893F-A56BF1BB2B5B} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {696114A9-EDA9-4CA7-8FA8-E610444B4F27} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {D0E85A9F-769F-4AEC-8F42-BADE9046B06E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {9B286C0C-F608-4B7F-9F25-DB4E4994449D} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {307C6AB9-1C9C-4F26-9A90-B637C9C3D87C} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{CB888345-94CA-4FDF-A3E0-1F853A21B978}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{C301F617-9B34-4F3A-B854-D6A0294ABBC4}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {8FCDE073-5770-4421-A061-D8AA48DD15A5} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {816CD94D-7129-413E-AB3E-449B63E92D7E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {CFECE7F3-4109-46AB-B7A2-0FC4CE42AF6E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {9C0E682B-678F-4DCF-9D71-749D7B1180C6} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{5BDE1164-D005-40B9-88C3-3A4C5129D2F8}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{1F99D9EB-8E88-4EFF-8819-80FB40F6811E}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {66A9DD04-FB52-42F3-B716-5C81A188E3B5} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {165402AC-8D5F-4142-83AA-A95C99E8F759} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {2CC8CB5B-CE1A-4EEF-9821-BEF05DCA1880} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {7AC7385A-7724-49EC-A24A-55A1667B4800} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {817DDFC8-6124-4356-AFCD-A0E556757020} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {5BBDF6F9-0214-416D-9841-2CC532520A07} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{E0554688-F618-4179-A9AF-756A4A10283D}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{8B2E5A18-FF50-4FD2-9D10-E369B44C4BE1}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{50E3AEEF-027C-4C71-9E11-59D01F8C9424}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{9E76153D-B417-4FE1-86E2-8402D6EECDF5}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur Run: Steam [HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\]
ABSENT Valeur Run: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [S:\STEAM\steam.exe (.Not File.)]
SUPPRIMÉ Valeur Run: uTorrent [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\]
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\ibtsiva
ABSENT Valeur Run: HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe]
~ EmptyProxy: Aucune modification.
---\\ COMMANDE. (5)
CreateRestorePoint: OK
~ EmptyPrefetch: Fichiers Prefetcher supprimés (218)
~ EmptyTemp: Dossier Local temp partiellement vidé (105)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyFlash: Fichiers Temporaires supprimés. (2)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00mn00s
~ Run by Abi (Administrator) (25/10/2020 09:55:20)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Report : C:\Users\Abi\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 18363)
---\\ SCRIPT DE L'UTILISATEUR. (51)
Script ZHPFix
CreateRestorePoint
EmptyPrefetch
Emptytemp
EmptyCLSID
EmptyFlash
EmptyProxy
HKLM\SOFTWARE\WOW6432Node\Lavasoft =>.Lavasoft
HKCU\SOFTWARE\Lavasoft =>.Lavasoft
HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Lavasoft =>.Lavasoft
O87 - FAEL: "{699F8410-B623-4ACC-8687-00798A844E33}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{1BB97F13-DA5C-4D55-BA72-38BDB39E9E7C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{0DD18FD4-F952-4406-87FD-7274C4ACE6D3}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{6CF52560-BACC-419F-8163-09650BD140E2}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{491F7A46-917E-4697-9A50-97F31E8798F6}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{0FCAE0A3-B439-4A86-B2D4-EA9E52AC5831}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{B6592E2D-C9AF-476E-92F7-552B6B191E94}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{C409E272-7121-42F0-AA2B-FA9C1C715E46}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{AABEF45B-0A4C-40D6-9281-9B74A5B259D2}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\Hell Let Loose\Launch_HLL.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{524CAB59-E9E5-4559-B15F-0EA3DE8A35F0}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\Hell Let Loose\Launch_HLL.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{627AB9AA-E40B-4FB8-8085-8E78EEA12093}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{3481530F-8BEC-499F-8820-A93FCEFBE4AE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{80221ADA-27F3-4A42-994D-1A1308333BC7}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\eFootball PES 2021\PES2021.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{6EE9BA3F-3FBA-42EC-893F-A56BF1BB2B5B}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\eFootball PES 2021\PES2021.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{696114A9-EDA9-4CA7-8FA8-E610444B4F27}" [In-None-P6-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Mafia III\Launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{D0E85A9F-769F-4AEC-8F42-BADE9046B06E}" [In-None-P17-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Mafia III\Launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{9B286C0C-F608-4B7F-9F25-DB4E4994449D}" [In-None-P6-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Pro Evolution Soccer 2014\PES2014.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{307C6AB9-1C9C-4F26-9A90-B637C9C3D87C}" [In-None-P17-TRUE] .(...) -- D:\SteamLibrary\steamapps\common\Pro Evolution Soccer 2014\PES2014.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{CB888345-94CA-4FDF-A3E0-1F853A21B978}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{C301F617-9B34-4F3A-B854-D6A0294ABBC4}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{8FCDE073-5770-4421-A061-D8AA48DD15A5}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\wallpaper_engine\bin\diagnostics32.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{816CD94D-7129-413E-AB3E-449B63E92D7E}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\wallpaper_engine\bin\diagnostics32.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{CFECE7F3-4109-46AB-B7A2-0FC4CE42AF6E}" [In-None-P6-TRUE] .(...) -- S:\STEAM\steamapps\common\Squad\squad_launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{9C0E682B-678F-4DCF-9D71-749D7B1180C6}" [In-None-P17-TRUE] .(...) -- S:\STEAM\steamapps\common\Squad\squad_launcher.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "TCP Query User{5BDE1164-D005-40B9-88C3-3A4C5129D2F8}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{1F99D9EB-8E88-4EFF-8819-80FB40F6811E}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "{66A9DD04-FB52-42F3-B716-5C81A188E3B5}" [In-None-P6-TRUE] .(...) -- S:\STEAM\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{165402AC-8D5F-4142-83AA-A95C99E8F759}" [In-None-P17-TRUE] .(...) -- S:\STEAM\Steam.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{2CC8CB5B-CE1A-4EEF-9821-BEF05DCA1880}" [In-None-P6-TRUE] .(...) -- S:\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{7AC7385A-7724-49EC-A24A-55A1667B4800}" [In-None-P17-TRUE] .(...) -- S:\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{817DDFC8-6124-4356-AFCD-A0E556757020}" [In-None-P6-TRUE] .(...) -- S:\Jeux en ligne\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{5BBDF6F9-0214-416D-9841-2CC532520A07}" [In-None-P17-TRUE] .(...) -- S:\Jeux en ligne\STEAM\bin\cef\cef.win7\steamwebhelper.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{E0554688-F618-4179-A9AF-756A4A10283D}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe" [In-None-P6-TRUE] .(...) -- E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "UDP Query User{8B2E5A18-FF50-4FD2-9D10-E369B44C4BE1}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe" [In-None-P17-TRUE] .(...) -- E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{50E3AEEF-027C-4C71-9E11-59D01F8C9424}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P6-TRUE] .(...) -- S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O87 - FAEL: "UDP Query User{9E76153D-B417-4FE1-86E2-8402D6EECDF5}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" [In-None-P17-TRUE] .(...) -- S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [Unsigned] (.not file.) =>.Steam Games
O4 - HKUS\S-1-5-21-1019915872-2056548764-1321157498-1001\..\Run: [Steam] . (. - .) -- S:\STEAM\steam.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [Steam] . (. - .) -- S:\STEAM\steam.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe =>BitTorrent (P2P)
SR - Auto [00/00/0000] [ 0] Intel Bluetooth Service (ibtsiva) . (...) - C:\Windows\System32\ibtsiva (.not file.) [Unsigned] =>.Intel Corporation
O4 - HKUS\S-1-5-21-1019915872-2056548764-1321157498-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe =>BitTorrent (P2P)
---\\ LOGICIEL. (0)
---\\ SERVICE. (1)
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\ibtsiva [No File found]
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (0)
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (106)
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\AdobeARM.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\adobegc.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\AdobeIPCBroker.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\aria-debug-4508.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\DESKTOP-C3QIJUM-20201024-1401.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-10304.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-10780.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-12156.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-12688.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-1284.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-13212.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-1356.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2012.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2672.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-2676.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-3120.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-4356.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-4372.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5048.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5388.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5460.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5600.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-5860.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-6676.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-6736.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7024.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7164.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-7228.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-8184.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-8464.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-9076.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\mat-debug-908.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 11-45-33-758.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 12-45-33-759.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 13-45-33-759.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 14-45-33-760.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 15-45-33-762.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 16-45-52-013.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 17-45-54-420.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 18-45-54-421.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 19-45-54-422.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 20-45-54-423.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 21-45-54-425.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-24 22-45-54-433.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9 2020-10-25 09-52-07-522.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCLibrary13.9.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 11-45-33-409.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 12-45-33-410.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 13-45-33-412.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 14-45-33-413.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 15-45-33-414.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 16-45-53-684.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 17-45-56-091.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 18-45-56-091.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 19-45-56-093.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 20-45-56-095.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 21-45-56-095.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-24 22-45-56-096.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0 2020-10-25 09-52-06-655.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CCXProcess14.0.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 11-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 12-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 13-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 14-15-24-253.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 15-15-24-254.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 16-15-24-256.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 16-45-45-914.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 18-15-46-063.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 19-15-46-065.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 20-15-46-065.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 21-15-46-066.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 22-15-46-067.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-24 23-15-46-068.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1 2020-10-25 09-51-58-448.log
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\NGLClient_CreativeCloud15.1.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\NGLClient_default.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\oobelib.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\PDApp.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\SquirrelSetup.log
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5062.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50B1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50D1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat50F1.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5102.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5132.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5747.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57B6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57D6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat57F6.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5816.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\dat5837.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9427.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9428.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9429.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD942A.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943A.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943B.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943C.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943D.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943E.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD943F.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9440.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\TCD9441.tmp
DEPLACÉ Fichier Temp: C:\Users\Abi\AppData\Local\Temp\crash_repo_pref.txt
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\Abi\AppData\Local\Temp\FXSAPIDebugLogFile.txt
DEPLACÉ Fichier Run: C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe
---\\ REGISTRE ( Clés, Valeurs, Données ). (45)
SUPPRIMÉ Clé: HKLM\SOFTWARE\WOW6432Node\Lavasoft [Lavasoft ]
SUPPRIMÉ Clé: HKCU\SOFTWARE\Lavasoft [Lavasoft ]
ABSENT Clé: HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Lavasoft
SUPPRIMÉ Valeur FirewallRules: {699F8410-B623-4ACC-8687-00798A844E33} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {1BB97F13-DA5C-4D55-BA72-38BDB39E9E7C} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{0DD18FD4-F952-4406-87FD-7274C4ACE6D3}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{6CF52560-BACC-419F-8163-09650BD140E2}E:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{491F7A46-917E-4697-9A50-97F31E8798F6}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{0FCAE0A3-B439-4A86-B2D4-EA9E52AC5831}S:\steam\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{B6592E2D-C9AF-476E-92F7-552B6B191E94}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{C409E272-7121-42F0-AA2B-FA9C1C715E46}S:\jump force\jump_force\binaries\win64\jump_force-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {AABEF45B-0A4C-40D6-9281-9B74A5B259D2} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {524CAB59-E9E5-4559-B15F-0EA3DE8A35F0} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {627AB9AA-E40B-4FB8-8085-8E78EEA12093} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {3481530F-8BEC-499F-8820-A93FCEFBE4AE} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {80221ADA-27F3-4A42-994D-1A1308333BC7} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {6EE9BA3F-3FBA-42EC-893F-A56BF1BB2B5B} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {696114A9-EDA9-4CA7-8FA8-E610444B4F27} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {D0E85A9F-769F-4AEC-8F42-BADE9046B06E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {9B286C0C-F608-4B7F-9F25-DB4E4994449D} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {307C6AB9-1C9C-4F26-9A90-B637C9C3D87C} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{CB888345-94CA-4FDF-A3E0-1F853A21B978}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{C301F617-9B34-4F3A-B854-D6A0294ABBC4}C:\program files (x86)\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {8FCDE073-5770-4421-A061-D8AA48DD15A5} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {816CD94D-7129-413E-AB3E-449B63E92D7E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {CFECE7F3-4109-46AB-B7A2-0FC4CE42AF6E} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {9C0E682B-678F-4DCF-9D71-749D7B1180C6} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{5BDE1164-D005-40B9-88C3-3A4C5129D2F8}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{1F99D9EB-8E88-4EFF-8819-80FB40F6811E}S:\steam\steamapps\common\squad\squadgame\binaries\win64\squadgame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {66A9DD04-FB52-42F3-B716-5C81A188E3B5} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {165402AC-8D5F-4142-83AA-A95C99E8F759} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {2CC8CB5B-CE1A-4EEF-9821-BEF05DCA1880} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {7AC7385A-7724-49EC-A24A-55A1667B4800} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {817DDFC8-6124-4356-AFCD-A0E556757020} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: {5BBDF6F9-0214-416D-9841-2CC532520A07} [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{E0554688-F618-4179-A9AF-756A4A10283D}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{8B2E5A18-FF50-4FD2-9D10-E369B44C4BE1}E:\jeux offline\ride.4\ride4\binaries\win64\ride4-win64-shipping.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: TCP Query User{50E3AEEF-027C-4C71-9E11-59D01F8C9424}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur FirewallRules: UDP Query User{9E76153D-B417-4FE1-86E2-8402D6EECDF5}S:\jeux en ligne\steam\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe [HKLM\SYSTEM\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]
SUPPRIMÉ Valeur Run: Steam [HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\]
ABSENT Valeur Run: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [S:\STEAM\steam.exe (.Not File.)]
SUPPRIMÉ Valeur Run: uTorrent [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\]
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\ibtsiva
ABSENT Valeur Run: HKU\S-1-5-21-1019915872-2056548764-1321157498-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ [C:\Users\Abi\AppData\Roaming\uTorrent\uTorrent.exe]
~ EmptyProxy: Aucune modification.
---\\ COMMANDE. (5)
CreateRestorePoint: OK
~ EmptyPrefetch: Fichiers Prefetcher supprimés (218)
~ EmptyTemp: Dossier Local temp partiellement vidé (105)
~ EmptyCSID: Dossiers CLSID vides supprimés (0)
~ EmptyFlash: Fichiers Temporaires supprimés. (2)
---\\ NON TRAITÉ. (0)
~ Le système a été redémarré.
***** ~ Fin de rapport terminé en 00mn00s