Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02.01.2018 Exécuté par admin (05-01-2018 22:34:04) Exécuté depuis C:\Users\admin\Downloads Windows 10 Pro Version 1607 14393.1944 (X64) (2016-12-04 19:58:23) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= admin (S-1-5-21-3891560280-1250424028-3305681315-1003 - Administrator - Enabled) => C:\Users\admin Administrateur (S-1-5-21-3891560280-1250424028-3305681315-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3891560280-1250424028-3305681315-503 - Limited - Disabled) Invité (S-1-5-21-3891560280-1250424028-3305681315-501 - Limited - Disabled) simon (S-1-5-21-3891560280-1250424028-3305681315-1001 - Administrator - Enabled) => C:\Users\simon ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.) 4game (HKLM-x32\...\4game) (Version: 3.6.2.254 - Innova Systems) 7+ Taskbar Tweaker v5.3 (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\7 Taskbar Tweaker) (Version: 5.3 - RaMMicHaeL) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.118 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.) Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH) Alcor Micro Smart Card Reader Driver (HKLM-x32\...\{F24F876B-7D71-4BD6-88E9-614D3B000044}) (Version: 1.7.44.0 - Alcor Micro Corp.) Hidden Alcor Micro Smart Card Reader Driver (HKLM-x32\...\SZCCID) (Version: 1.7.44.0 - Alcor Micro Corp.) Ambraezia Heroic 1.29.1 (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\Ambraezia Heroic 1.29.1) (Version: - ) Ancient Wars - Sparta (HKLM-x32\...\{554532CE-43E2-4B4F-BBDE-27742A32C236}) (Version: 1.00.0000 - PlayLogic) Application Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Azote version 1.0.1 (HKLM-x32\...\{0B504193-4C4A-4B5A-AC10-D247361C1C2D}}_is1) (Version: 1.0.1 - Azote) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.333.0 - Broadcom Corporation) Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.900 - Broadcom Corporation) calibre (HKLM-x32\...\{63A1E236-1A28-4457-B9BC-A380A89E2D67}) (Version: 3.12.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 5.32 - Piriform) Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine) Chicken Invaders 2 - The Next Wave Remastered (HKLM-x32\...\Chicken Invaders 2 - The Next Wave Remastered_is1) (Version: 1.0 - MyPlayCity, Inc.) Chicken Invaders 2 Christmas Edition demo v2.60 (HKLM-x32\...\Chicken Invaders 2 Christmas Edition demo_is1) (Version: - InterAction studios) Chicken Invaders 2 v2.40 (HKLM-x32\...\Chicken Invaders 2_is1) (Version: - InterAction studios) Chromium (HKLM-x32\...\{9AB37273-CA33-A3F3-7BB3-D373AB3300F3}) (Version: - ) Clavier+ 10.8.1 (HKLM\...\Clavier+_is1) (Version: 10.8.1 - Guillaume Ryder) CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien) Conexant ISST Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.134.1 - Conexant) Cossacks 3 (HKLM-x32\...\1797227701_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Days of Brilliance (HKLM-x32\...\2058625388_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Digital Deluxe Upgrade (HKLM-x32\...\1945153467_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Early Bird (HKLM-x32\...\1282435442_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Guardians of the Highlands (HKLM-x32\...\1483750963_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Path to Grandeur (HKLM-x32\...\1365995253_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: Rise to Glory (HKLM-x32\...\1830579185_is1) (Version: 1.8.7.81.5673 - GOG.com) Cossacks 3: The Golden Age (HKLM-x32\...\1318550073_is1) (Version: 1.8.7.81.5673 - GOG.com) Crossout Launcher 1.0.3.29 (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\CrossOutLauncher_is1) (Version: - ) CyberLink Power2Go (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.6016 - CyberLink Corp.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.5913 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd) Discord (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\Discord) (Version: 0.0.299 - Discord Inc.) Discover HP Touchpoint Manager (HKLM-x32\...\{480FA137-DB2E-4C1A-89EF-476E69E175ED}) (Version: 1.0.19.1 - HP) Dofus (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\2744A393-554C-4E35-A24F-DEF0392B4484-2) (Version: - Ankama) Dofus 1 (HKLM-x32\...\Dofus 1) (Version: 1.29.1 - Ankama Games) Dofus 1.28.0 (HKLM-x32\...\Dofus 1.28.0) (Version: 1.28.0 - Ankama Games) DofusTouchNE version 3.1.2 (HKLM-x32\...\{F08A5F36-79A5-46EF-BB71-073B54D0C992}_is1) (Version: 3.1.2 - Daniel Lefebvre) DTNE V2 version 3.3.2 (HKLM-x32\...\{44809D93-9178-439B-B5CD-DAACE096C430}_is1) (Version: 3.3.2 - Dtne) Elsword (HKLM-x32\...\Elsword_fr_is1) (Version: - Gameforge 4D GmbH) Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) Enter the Gungeon (HKLM-x32\...\1456912569_is1) (Version: 2.0.0.2 - GOG.com) Étude pour l'amélioration du produit HP DeskJet 3630 series (HKLM\...\{10966CDF-7E02-492D-92FA-11B476A7DD6D}) (Version: 35.0.61.54677 - Hewlett-Packard Co.) Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm) Foxit PhantomPDF (HKLM-x32\...\{70D55F7D-2CCE-403D-B333-956D729FF874}) (Version: 6.0.26.201 - Foxit Corporation) Gadwin PrintScreen (64-Bit) (HKLM\...\{6813FA49-DFC4-4F58-910D-ED39C2BD979B}) (Version: 5.8.0.0 - Gadwin Systems) GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team) Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.132 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Gyazo 3.3.5 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) hide.me VPN 1.3.0 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 1.3.0 - eVenture Limited) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HP 3D DriveGuard (HKLM-x32\...\{E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A}) (Version: 6.0.28.1 - Hewlett-Packard Company) HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.3.18.2044 - HP Inc.) HP DeskJet 3630 series Aide (HKLM-x32\...\{08F5B0C6-D24D-4327-BA56-F8E00C1A6878}) (Version: 35.0.0 - Hewlett Packard) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.0 - HP) HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.6.23.46 - HP) HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP) HP ESU for Microsoft Windows 10 (HKLM-x32\...\{2CDA0D13-ED4D-4E66-B920-9AE696F9992E}) (Version: 1.1.1 - HP) HP Hotkey Support (HKLM-x32\...\{26FAA50B-1840-42CC-9AE9-8ECF89D28A8D}) (Version: 6.2.18.1 - HP) HP Notifications (HKLM-x32\...\{322CA07F-488F-4579-AABB-7EB46AB74EE7}) (Version: 1.0.11.1 - HP Company) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard) HP SoftPaq Download Manager (HKLM-x32\...\{7e7fe67e-3319-4754-9835-0cb624e101ee}) (Version: 4.2.1.0 - HP) HP Software Setup (HKLM-x32\...\{83421C73-4679-40F0-B590-20846CB893E0}) (Version: 9.0.1 - HP) HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.5.37.19 - HP) HP Support Solutions Framework (HKLM-x32\...\{E2CB09C1-3C76-4395-BB47-50C066535CF8}) (Version: 12.8.47.1 - HP) HP System Default Settings (HKLM-x32\...\{E570B9C2-9A83-4938-BBD5-0A8C068083C1}) (Version: 1.2.1.4 - HP INC) HP Universal Camera Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1114.19_WHQL - Sonix) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.) HP Wireless Button Driver (HKLM-x32\...\{1BDD178E-43DC-4063-B480-BA2BAE03E2A0}) (Version: 1.1.15.1 - HP) Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1177 - Intel Corporation) Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.4.1033 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{3D45BD48-F215-4C69-B23F-256C83D1D7F0}) (Version: 1.0.0.534 - Intel Corporation) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Jokers (HKLM-x32\...\Jokers) (Version: - ) Logiciel de base du périphérique HP DeskJet 3630 series (HKLM\...\{B29E7B47-4F32-4404-8336-24A88459F5C9}) (Version: 35.0.61.54677 - Hewlett-Packard Co.) LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Mozilla Firefox 52.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 52.0.2 (x64 fr)) (Version: 52.0.2 - Mozilla) MTA:SA v1.5.2 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.2 - Multi Theft Auto) My.com Game Center (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\MyComGames) (Version: 3.219 - My.com B.V.) NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT) NEPHYA 2.40 (HKLM-x32\...\NEPHYA 2.40) (Version: 2.40 - NEPHYA) NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.4 - NETGEAR) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team) NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) PDF Rotator 1.0.3 (HKLM-x32\...\PDF Rotator_is1) (Version: - PDF Rotator) PDFsam Basic (HKLM-x32\...\{0F7F1493-D16D-4C7B-A271-17A12168CCC4}) (Version: 3.30.2.0 - Andrea Vacondio) PokeMMO (HKLM\...\PokeMMO_is1) (Version: - PokeMMO) Pokémon Trading Card Game Online (HKLM-x32\...\{0739005F-7DBA-4A4E-9710-C1025EBD300E}) (Version: 2.46.0 - The Pokémon Company International) Project64 version 2.3.2.202 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.2.202 - ) ProxySwitcher Standard (HKLM-x32\...\ProxySwitcher Standard_is1) (Version: 5.11.3 - V-Tech LLC) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.21287 - Realtek Semiconduct Corp.) Roblox Player for admin (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd) Sanny Builder 3.2.2 (HKLM-x32\...\Sanny Builder 3_is1) (Version: - ) Serenity (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\Serenity) (Version: - ) SimCity version 10.1.0.0 (HKLM-x32\...\SimCity_is1) (Version: 10.1.0.0 - Maxis) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) Smash version 1.1 (HKLM-x32\...\{33D857D4-C789-4D16-A0A1-B2887A48765E}_is1) (Version: 1.1 - Smash) SoulSteal (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\SoulSteal) (Version: - ) Sound Pilot version 2.2 (HKLM\...\Sound Pilot_is1) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SUPERHOT (HKLM-x32\...\1456141688_is1) (Version: 2.4.0.8 - GOG.com) Surfing (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\Surfing) (Version: - ) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Sylea (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\Sylea) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.63 - Synaptics Incorporated) TeamSpeak 3 Client (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\TeamSpeak 3 Client) (Version: 3.1.4.2 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer) Terraria Inventory Editor (HKLM-x32\...\{ED31E5DD-CCD7-431C-9673-FBB90AE60414}) (Version: 7.0.0 - ChbShoot) The Escapists 2 (HKLM-x32\...\The Escapists 2_is1) (Version: - ) Trove North America (HKLM-x32\...\Glyph Trove North America) (Version: - Trion Worlds, Inc.) Tunatic (HKLM-x32\...\Tunatic) (Version: - ) Twitch (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Twitch Interactive, Inc.) UltraSearch V2.1.2 (64 bit) (HKLM\...\UltraSearch_is1) (Version: 2.1.2 - JAM Software) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{DE083343-D24D-4495-919E-18C65EC0F289}) (Version: 2.8.0.0 - Microsoft Corporation) Wakfu (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama) Wakfu Beta (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\39FD069E-CF2A-4D9F-B8F9-9784B01E03E7-2) (Version: - Ankama) Warframe (HKLM-x32\...\{CCCC4D8B-DF26-4B87-9C95-CD79DE921556}) (Version: 1.0.0 - Digital Extremes) WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT) WinDirStat 1.1.2 (HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\WinDirStat) (Version: - ) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinSCP 5.9.6 (HKLM-x32\...\winscp3_is1) (Version: 5.9.6 - Martin Prikryl) XnView 2.43 (HKLM-x32\...\XnView_is1) (Version: 2.43 - Gougelet Pierre-e) ZillaTube 6.4.6 (HKLM-x32\...\ZillaTube) (Version: 6.4.6 - ZillaTube) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] () ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-12-18] (Cyberlink) ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-07-06] (Foxit Corporation) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-12-18] (Cyberlink) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-07] () ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki120510.inf_amd64_0f15706cfddd3491\igfxDTCM.dll [2017-01-27] (Intel Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0C4DA4BA-EE63-4C4D-B9A2-0C031E8E0034} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {15A6E164-3A3E-4060-A1FB-8C09B34114DE} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12] (Adobe Systems Incorporated) Task: {1E115D93-4BD0-46BC-AB47-75E950FF324C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {23D3717A-4A1D-406D-9EB0-E17844E35FAD} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [2015-04-09] (Hewlett-Packard Development Company, LP) Task: {2DB3ABB6-F8A4-4DF6-8DE4-1C32DD9A28BA} - System32\Tasks\HPCeeScheduleForadmin => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {2FBA160A-7AF4-45ED-91C1-94F0D2A4E65E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {3EBCFDD1-7DAE-46CA-8E83-4202C4B625C4} - System32\Tasks\{7D680B9A-A3C0-BEAD-CE43-48FC5AF0DEBB} => C:\Users\admin\AppData\Roaming\7D680B~1\SYNCVE~1.EXE <==== ATTENTION Task: {55F82516-38E9-441B-BCC9-2EB12171A6F5} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-12-21] (Nota Inc.) Task: {5611A937-127E-4BD6-A022-432431FD33DA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-05] (Google Inc.) Task: {633F2E72-A64D-4A85-95CE-8D502478CA08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-10-11] (HP Inc.) Task: {70BB2150-E5EF-4095-85DD-84DFBC40ACC7} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\simon\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {915810C5-1F7D-4704-8064-67EA788BFB95} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {95CD976E-6C4E-49DE-A60F-0AAC862DD041} - System32\Tasks\{FCD1B107-90DC-48D3-A7EE-35918E2A8A38} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/fr/abandoninstall?page=tsProgressBar Task: {A7DFE85F-E59C-4FC2-87CF-A4969A3B9766} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {A84873F4-29DC-43E7-AAB5-8894EA66A965} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-05] (Google Inc.) Task: {B8A90CA1-A6B7-4D87-A71A-6A1E235D69EB} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: {B8DD47DD-01D8-4172-B698-225CC76D40CC} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [2015-12-21] (HP) Task: {BDF68D62-88E8-47E5-8B8C-79DE87C32E18} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-30] (Piriform Ltd) Task: {DBE889E6-FAEA-4B67-87CB-A87CD3E2BB79} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {DC7A2315-153E-4C10-968C-939644935445} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {F996E354-B91A-4E5C-95C0-65686C20F60B} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-12-21] (Nota Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\HPCeeScheduleForadmin.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\{7D680B9A-A3C0-BEAD-CE43-48FC5AF0DEBB}.job => C:\Users\admin\AppData\Roaming\7D680B~1\SYNCVE~1.EXE <==== ATTENTION ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-09-13 15:25 - 2017-09-07 07:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2014-05-28 09:14 - 2014-05-28 09:14 - 000336056 _____ () c:\Program Files\Hewlett-Packard\Pre-Boot Security for HP ProtectTools\BIOSDomainPlugin.dll 2017-04-29 18:03 - 2014-08-18 16:50 - 000316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe 2018-01-03 02:23 - 2018-01-03 02:24 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-01-03 02:23 - 2018-01-03 02:24 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-01-03 02:23 - 2018-01-03 02:24 - 024670720 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-01-03 02:23 - 2018-01-03 02:24 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\skypert.dll 2018-01-03 02:23 - 2018-01-03 02:24 - 000667648 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2017-06-07 21:09 - 2017-06-07 21:09 - 000598528 _____ () C:\Users\admin\AppData\Local\MEGAsync\ShellExtX64.dll 2016-12-04 20:02 - 2016-12-04 20:02 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-16 21:35 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-16 21:32 - 2017-03-04 07:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-16 21:32 - 2017-03-04 07:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-16 21:32 - 2017-03-04 07:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-12-13 16:00 - 2017-11-30 08:32 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-12-13 16:00 - 2017-11-30 08:32 - 002424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-12-13 16:00 - 2017-11-30 08:34 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2018-01-05 21:18 - 2018-01-03 10:20 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libglesv2.dll 2018-01-05 21:18 - 2018-01-03 10:20 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.132\libegl.dll 2017-04-29 18:03 - 2014-09-03 14:16 - 000450560 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll 2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2017-11-22 20:02 - 2017-11-22 20:02 - 000144896 _____ () C:\Users\admin\AppData\Local\MyComGames\zlib1.dll 2017-11-22 20:02 - 2017-11-22 20:02 - 000076176 _____ () C:\Users\admin\AppData\Local\MyComGames\pxd.dll 2017-11-22 20:02 - 2017-11-22 20:02 - 000249744 _____ () C:\Users\admin\AppData\Local\MyComGames\LightUpdate.dll 2017-11-22 20:02 - 2017-11-22 20:02 - 002495376 _____ () C:\Users\admin\AppData\Local\MyComGames\BigUp2.dll 2017-10-03 22:18 - 2017-10-03 22:18 - 071411712 _____ () C:\Users\admin\AppData\Local\MyComGames\Chrome\3.3202.1673\libcef.dll 2016-01-07 01:48 - 2016-01-07 01:48 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData:NT [40] AlternateDataStreams: C:\ProgramData:NT2 [432] AlternateDataStreams: C:\Users\All Users:NT [40] AlternateDataStreams: C:\Users\All Users:NT2 [432] AlternateDataStreams: C:\Users\admin\Application Data:NT [40] AlternateDataStreams: C:\Users\admin\Application Data:NT2 [432] AlternateDataStreams: C:\Users\admin\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\admin\AppData\Roaming:NT2 [432] AlternateDataStreams: C:\ProgramData\Application Data:NT [40] AlternateDataStreams: C:\ProgramData\Application Data:NT2 [432] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [432] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 08:24 - 2017-12-17 13:10 - 000002103 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3891560280-1250424028-3305681315-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\simon\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\washing-up-time.jpg HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\Desktop\sexy.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8" HKLM\...\StartupApproved\Run32: => "CLVirtualDrive" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-3891560280-1250424028-3305681315-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3891560280-1250424028-3305681315-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3891560280-1250424028-3305681315-1001\...\StartupApproved\Run: => "MyComGames" HKU\S-1-5-21-3891560280-1250424028-3305681315-1001\...\StartupApproved\Run: => "World of Warships" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_D9394DE6386755479577597100432920" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "PSwitch" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "Gyazo" HKU\S-1-5-21-3891560280-1250424028-3305681315-1003\...\StartupApproved\Run: => "Gadwin PrintScreen (64-bit)" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{3C7465C6-F9DB-4EA9-BB3B-8AEF02380C04}] => (Allow) C:\AeriaGames\DragomonHunter-FR\Game.bin FirewallRules: [{54B38FE9-833A-4D69-A2C5-B75536E56C78}] => (Allow) C:\AeriaGames\DragomonHunter-FR\Game.bin FirewallRules: [UDP Query User{71FFBCB0-8B37-4251-A6C9-B0FF03699CDD}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{7B02F9AA-05EC-4828-839E-9B4279721A62}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{12E7BEE3-DAFC-43B1-BA1A-CB34B0E12C64}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{5673112E-AA07-4716-9B00-D9D5EA308F60}] => (Allow) LPort=5357 FirewallRules: [{E0FE1EA3-16DA-4596-872B-4D3EDDA99CE1}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\DeviceSetup.exe FirewallRules: [{B96CB641-1A01-40D6-9867-EFB02FDB41CD}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe FirewallRules: [{EB226B58-AE37-450C-A76D-AE8E603F59E2}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe FirewallRules: [{1F996BC8-878C-4053-8FC3-28667D897AE9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe FirewallRules: [{BC7D6F0E-56A3-4A5E-86FF-B3AC0AAEB666}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe FirewallRules: [{7514C0B8-2C19-4800-871E-4F5B98F37641}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe FirewallRules: [{2E4328A5-DD94-402C-A191-98292D5B8A67}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe FirewallRules: [{B940EB2A-B6A3-40EE-97D1-72E71E97494A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{01763F1A-87D8-4F95-BEEA-92EE1D117515}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C7FEBF57-1E9A-4C5D-AD30-22F6176A1E4D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{4E4A576F-DD86-4DF8-8816-6ED6B4150E2C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{8E5504A0-DF09-4A75-9C42-616943832240}C:\users\simon\downloads\uplauncher.exe] => (Allow) C:\users\simon\downloads\uplauncher.exe FirewallRules: [UDP Query User{B156E73F-CDDA-4732-8827-1B12C1C05509}C:\users\simon\downloads\uplauncher.exe] => (Allow) C:\users\simon\downloads\uplauncher.exe FirewallRules: [{1DBA2DAD-3122-49DB-BCA7-7F561A7AD0A6}] => (Block) C:\users\simon\downloads\uplauncher.exe FirewallRules: [{02EC03A7-0B36-49CE-8ED9-3483D8DA116E}] => (Block) C:\users\simon\downloads\uplauncher.exe FirewallRules: [{D0AA1AC3-B4D8-479F-A321-BF5566C05CCD}] => (Block) C:\users\simon\appdata\roaming\app\uplauncher.exe FirewallRules: [{9672C57D-9E87-4CE0-AA8E-FF52DEDFDBA2}] => (Block) C:\users\simon\appdata\roaming\app\uplauncher.exe FirewallRules: [{B397F41A-445F-413C-82D2-269E98B48684}] => (Block) C:\users\simon\appdata\roaming\azote.exe FirewallRules: [{023DD312-0A21-416B-B63D-03FB8987F94B}] => (Block) C:\users\simon\appdata\roaming\azote.exe FirewallRules: [{BB859747-AF48-4C66-A8C1-2165AB8D14BC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9AE7D3B0-4E41-4C59-989D-A2E1B442D5A4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E30FDA28-E8B9-4893-879D-BB3A0838E4DF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{986F5218-6879-4F35-90BE-8DDB12C3D2B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{1D88A3D8-CA94-42E5-90DF-57E607236A28}C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe FirewallRules: [UDP Query User{FB038A88-E00A-434D-AABA-FE517F685CDE}C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe FirewallRules: [{905AD62F-D8AB-4D5E-8835-47713DFAD2E3}] => (Block) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe FirewallRules: [{85F1B18D-06E7-48E6-8418-AB687FE4F10C}] => (Block) C:\program files (x86)\steam\steamapps\common\thehunter\game\thehunter.exe FirewallRules: [{48612299-A7D1-4697-B57B-EF27B3E9232F}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{AF3FD644-8123-463B-A326-3734E9F60C26}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{CC0CECC5-C6D9-45F0-863E-BD46E8C57777}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [{4C4C60B1-7CEA-4634-B14D-987815F35FFB}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe FirewallRules: [TCP Query User{044F447F-85F3-4AB6-91DE-169B57C2DD94}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe FirewallRules: [UDP Query User{79EEB9D4-46A6-436B-98CD-33614B0AC23C}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe FirewallRules: [{54334BCD-1465-40A6-BB0D-253DEE24BD6B}] => (Block) C:\mygames\revelation online\game\tianyu.exe FirewallRules: [{47D3A065-BAB0-48E6-A4E0-021A25DCE664}] => (Block) C:\mygames\revelation online\game\tianyu.exe FirewallRules: [{F992F86A-49C9-42B5-9842-C1C9BE57F20B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe FirewallRules: [{6CC43A6D-BB68-4D46-9B9F-64D1F6DD34E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theHunter\launcher\launcher.exe FirewallRules: [TCP Query User{D0EB8104-31F5-4E00-91FC-622441F63364}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [UDP Query User{89038717-38CA-4F87-A63F-384C6A98065B}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [{4044EF1A-C846-4597-B4C3-5E9BA2DF3A21}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [{85D813B0-274A-4571-889B-6D23D7FBD50F}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe FirewallRules: [{F35C9811-CF3B-4077-90AE-F718D89AB460}] => (Allow) C:\Users\simon\AppData\Local\Temp\7zS5BA5\HPDiagnosticCoreUI.exe FirewallRules: [{7C3A17E9-A958-4FEA-A4A8-BF2E7E01936B}] => (Allow) C:\Users\simon\AppData\Local\Temp\7zS5BA5\HPDiagnosticCoreUI.exe FirewallRules: [{FD437938-5990-4394-AB23-467E04187163}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{CAE25058-FD3C-47D5-8D32-8F3D4721FA69}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{101A4B3D-EE89-4897-BEBE-42AB4F0A4562}] => (Allow) C:\Program Files (x86)\Elsword\data\x2.exe FirewallRules: [{0DDE1F11-EE43-426F-AA17-A4D377A7EC39}] => (Allow) C:\Program Files (x86)\Elsword\data\x2.exe FirewallRules: [TCP Query User{97EE072C-1B78-47CB-B97D-F38D14DC02AE}C:\program files (x86)\java\jre1.8.0_121\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\java.exe FirewallRules: [UDP Query User{D8B03995-1AEC-442A-AD57-6E6F1A344F9D}C:\program files (x86)\java\jre1.8.0_121\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\bin\java.exe FirewallRules: [{F3F06F21-8B54-4CAC-A9C6-8D96297E4080}] => (Block) C:\program files (x86)\java\jre1.8.0_121\bin\java.exe FirewallRules: [{C4ADF242-3A6C-410F-9251-4D5256CA7C7A}] => (Block) C:\program files (x86)\java\jre1.8.0_121\bin\java.exe FirewallRules: [TCP Query User{209BEAC1-FF24-41A2-BC14-10E89112DB50}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe FirewallRules: [UDP Query User{7B262F9E-3C31-49D1-B71D-627230AFC563}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe FirewallRules: [{461F3B06-61CE-49F6-B518-FE3C6A089F6E}] => (Block) C:\program files\java\jre1.8.0_131\bin\java.exe FirewallRules: [{28AD1C6F-D2C5-4B71-9E8A-79BA45BFB937}] => (Block) C:\program files\java\jre1.8.0_131\bin\java.exe FirewallRules: [{6956FE96-5723-4B23-BAD5-76F084D200CA}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9B2170F2-C228-4159-BAC2-7EAC31C09799}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{71152589-3BAA-4064-932E-99227629A7A9}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7E95C39D-1FFA-4CAA-98F8-675E6B2569A8}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A7A45DFB-3A16-43FB-B401-FD55C603EBBB}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E616D386-DAF5-47FF-A58A-5EDA421F2D9A}] => (Allow) C:\Users\simon\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{07DA612A-24C5-4DC7-B8C1-B310B5832BB8}C:\users\simon\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\simon\appdata\local\warthunder\launcher.exe FirewallRules: [UDP Query User{6F647823-2551-4F5F-9698-1FE7BC02E560}C:\users\simon\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\simon\appdata\local\warthunder\launcher.exe FirewallRules: [{8586ACD3-0903-48A6-86A3-BC41956E902B}] => (Block) C:\users\simon\appdata\local\warthunder\launcher.exe FirewallRules: [{E5C808B4-6B5A-4B2C-98C7-482E3504930F}] => (Block) C:\users\simon\appdata\local\warthunder\launcher.exe FirewallRules: [TCP Query User{676EE492-3331-4F83-B4C1-138CF23103E5}C:\users\simon\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\simon\appdata\local\warthunder\win64\aces.exe FirewallRules: [UDP Query User{1D4D861B-EED1-4B7A-8143-0561FDE98422}C:\users\simon\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\simon\appdata\local\warthunder\win64\aces.exe FirewallRules: [{4AF3C266-63B9-43EB-B406-E2D657B6D2A2}] => (Block) C:\users\simon\appdata\local\warthunder\win64\aces.exe FirewallRules: [{916CB5C2-C059-4A92-9339-3750537C13D2}] => (Block) C:\users\simon\appdata\local\warthunder\win64\aces.exe FirewallRules: [{8EC30BE3-A44F-494A-8576-D45E3E85CDE5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{DC84E0BC-72D4-47A4-9BDE-B8EC8E777C88}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{B9771B20-20FB-4195-A2A7-45E9A9242F9F}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{1ED21B56-D4A9-4C13-AB7C-91CBCF52C702}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{CD5CC372-B87D-42ED-820F-2BD808ADAF32}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{11CC08B5-1D2C-4424-BE4C-61E7C525AC70}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{B94B6417-714F-4E1E-9DF7-54D29B4E0E52}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{70D63322-99B0-4A6E-9BB0-098847194F42}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{27D6AFAE-0141-456C-9592-6DD2DFED8C50}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{5B3BEF44-4140-4381-8B75-258F757875D1}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BDBA70EC-183D-4E05-A378-B375D657F2AD}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{61F15F98-DA99-46FA-AF6B-113250EBF8F8}C:\users\simon\desktop\rushu 2.10\launcher.exe] => (Allow) C:\users\simon\desktop\rushu 2.10\launcher.exe FirewallRules: [UDP Query User{F2D02566-C415-46FC-AC65-C0198C443859}C:\users\simon\desktop\rushu 2.10\launcher.exe] => (Allow) C:\users\simon\desktop\rushu 2.10\launcher.exe FirewallRules: [{9B3BB340-FEBF-4032-8785-CC5EF6411CF8}] => (Block) C:\users\simon\desktop\rushu 2.10\launcher.exe FirewallRules: [{1EDB122C-204E-43D1-A27D-15FFD46211AC}] => (Block) C:\users\simon\desktop\rushu 2.10\launcher.exe FirewallRules: [{0A38C15C-DD6C-47A8-B0B1-9B90F38258F5}] => (Allow) C:\Program Files (x86)\steam2\Steam.exe FirewallRules: [{E904BEBC-2599-407A-A1C7-991380DC00F9}] => (Allow) C:\Program Files (x86)\steam2\Steam.exe FirewallRules: [{71ACF88F-8981-4198-A2BE-C12E54C95F53}] => (Allow) C:\Program Files (x86)\steam2\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{68711672-6484-47BD-9DA3-8B10C7A171FA}] => (Allow) C:\Program Files (x86)\steam2\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{3C0EC245-9F9E-4EAF-8E35-E4ABF214898D}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{FB88B612-A984-4F58-A112-93B1CAEE81AD}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{56077FE7-1215-461A-BA73-F8D80D975744}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Unturned\Unturned.exe FirewallRules: [{B912179A-ADAA-4D6D-99F2-4598A8FF91B6}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Unturned\Unturned.exe FirewallRules: [{7EBC557E-DE3B-46D8-916A-450BFD4D37F2}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Iron Snout\IronSnout.exe FirewallRules: [{C7C9B240-7E41-43F6-B00C-FA04E0D8AE8D}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Iron Snout\IronSnout.exe FirewallRules: [{1D3FC953-D284-4733-8548-117DBAD63A87}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TimeClickers\TimeClickers.exe FirewallRules: [{4EFC8647-CBAB-48F0-A2D8-EED4F8C197D8}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TimeClickers\TimeClickers.exe FirewallRules: [{6260943A-08D1-4D0A-B51F-5E117482BD58}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{2169CEAE-99ED-4EB8-A957-62110DF94399}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\GarrysMod\hl2.exe FirewallRules: [TCP Query User{8168B275-8FB7-4F9C-888E-B30B81CEEBD8}C:\users\admin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\admin\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{BA8E48FA-FD58-44F7-AFD4-AFB2A2108009}C:\users\admin\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\admin\appdata\local\akamai\netsession_win.exe FirewallRules: [{7AD1F30D-DFA0-44F3-B579-83D53ADA3AB3}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{2530F41A-238F-45AF-A26F-7D4F6C7E0B50}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{B06C9B6F-17BD-490D-96E5-E3C58F601BE9}] => (Allow) C:\Users\admin\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{4D95B107-F412-4D6E-BFBF-581C569B40E0}C:\users\admin\appdata\local\crossout\launcher.exe] => (Allow) C:\users\admin\appdata\local\crossout\launcher.exe FirewallRules: [UDP Query User{FFD990EA-E99A-4A4D-A34B-41A74E2BECB6}C:\users\admin\appdata\local\crossout\launcher.exe] => (Allow) C:\users\admin\appdata\local\crossout\launcher.exe FirewallRules: [{0252F209-CC0D-4D7D-9E9D-72612D43EFAF}] => (Block) C:\users\admin\appdata\local\crossout\launcher.exe FirewallRules: [{E42B3B87-B6EF-4C4C-957D-A19C190A2503}] => (Block) C:\users\admin\appdata\local\crossout\launcher.exe FirewallRules: [{ED3CD036-7E0C-4AF9-973B-E0108061878E}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe FirewallRules: [TCP Query User{4EEC27AD-4FEC-4EB9-8890-C4037A36113B}C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe] => (Allow) C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe FirewallRules: [UDP Query User{A5BC12D5-2861-40A5-8994-05DEF754E791}C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe] => (Allow) C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe FirewallRules: [{681B38A7-0574-407C-AB25-47ED7585526B}] => (Block) C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe FirewallRules: [{4542488A-C674-4CF6-A47C-156BF1683689}] => (Block) C:\users\admin\desktop\terraria.v1.3.5.3\terrariaserver.exe FirewallRules: [TCP Query User{214113D0-3AD0-4EB6-A52B-F3229EB866B1}C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe FirewallRules: [UDP Query User{783E0395-5461-4AC1-B7D9-2292523F5A58}C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe FirewallRules: [{4A3835D6-71CE-4B72-B001-0B4EBF415018}] => (Block) C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe FirewallRules: [{2ECC3870-842D-4C6C-A23F-C1982DEA067F}] => (Block) C:\program files (x86)\steam2\steamapps\common\newz\thenewz.exe FirewallRules: [TCP Query User{DCFB5FA8-A873-427D-A9D9-711536C29FB3}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [UDP Query User{F8F9BADB-C18A-4BF5-AD52-A8E051A796DA}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [{AFE429B4-AF86-4B54-AC59-BF949EFC7634}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [{B65FF560-5F82-48A1-9559-B7C806F05718}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe FirewallRules: [TCP Query User{E765B28A-1381-46C9-B54E-103F5C98F73A}C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe] => (Allow) C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe FirewallRules: [UDP Query User{DEA3023A-EFD3-4E0F-8478-B1C6E18BA4D7}C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe] => (Allow) C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe FirewallRules: [{9DDC01D3-70E4-4094-87B0-37C2C617767E}] => (Block) C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe FirewallRules: [{B1AD8C6D-A74B-446F-AB7D-79FA8E244FFB}] => (Block) C:\users\admin\desktop\starbound.v1.3.2\win64\starbound_server.exe FirewallRules: [TCP Query User{8E0636BB-64A5-4A06-8B86-3930EC598366}C:\gog games\enter the gungeon\etg.exe] => (Allow) C:\gog games\enter the gungeon\etg.exe FirewallRules: [UDP Query User{5448F6C8-6C33-4B72-BD01-93A159159D7F}C:\gog games\enter the gungeon\etg.exe] => (Allow) C:\gog games\enter the gungeon\etg.exe FirewallRules: [{4E6E2934-F1CC-409F-84B9-04CB13E17AFA}] => (Block) C:\gog games\enter the gungeon\etg.exe FirewallRules: [{02543C18-84CD-440C-8B88-1774595C7D22}] => (Block) C:\gog games\enter the gungeon\etg.exe FirewallRules: [{5A4A79E8-D3D0-48A2-99D7-C5CF5C049AE0}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\WOG\disasm.exe FirewallRules: [{6394F3CE-EC10-4813-A93A-00C78A57A0EB}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\WOG\disasm.exe FirewallRules: [TCP Query User{ACFB0850-D601-4FF7-94DF-C2B06FCBACB7}C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe] => (Allow) C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe FirewallRules: [UDP Query User{74162EFA-A944-4AB2-97F3-FFA095CC17D4}C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe] => (Allow) C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe FirewallRules: [{6DD0FE2A-2D39-43D3-8702-D01B39612375}] => (Block) C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe FirewallRules: [{A96CF4A5-EB24-47F2-B024-4CEB5A4AE362}] => (Block) C:\users\admin\desktop\roguelands.v1.5.1\roguelands.exe FirewallRules: [{B8C4F9EE-64A1-407D-9C97-E2F2CB22133B}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Angeldust\Angeldust.app\Contents\Resources\Angeldust.exe FirewallRules: [{1C61AC90-4357-49F8-947A-C896B531E672}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Angeldust\Angeldust.app\Contents\Resources\Angeldust.exe FirewallRules: [{1B07B997-BBA0-412E-8615-FEFE6D3BCE10}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe FirewallRules: [{C04E89F7-6A06-48BE-BE57-615DCF4F0B69}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe FirewallRules: [{3B7F7046-3E64-4931-BAE6-F76210887967}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe FirewallRules: [{122AA8DC-B216-4B34-87B8-3FE308BD03E6}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe FirewallRules: [{0701EAC9-B88F-477F-86F2-D317415FF9CF}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe FirewallRules: [{CC0140FC-2CD1-4583-928A-8E6451A21CC5}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe FirewallRules: [TCP Query User{078F3EBC-5300-4A62-BF22-E1CF8E52F5F7}C:\users\admin\desktop\client sylea complet\launchersylea.exe] => (Allow) C:\users\admin\desktop\client sylea complet\launchersylea.exe FirewallRules: [UDP Query User{69FAEFB2-069F-46AA-B71B-00C4B109166E}C:\users\admin\desktop\client sylea complet\launchersylea.exe] => (Allow) C:\users\admin\desktop\client sylea complet\launchersylea.exe FirewallRules: [{6D1EF481-8747-4F8C-B9F3-221BEE425275}] => (Block) C:\users\admin\desktop\client sylea complet\launchersylea.exe FirewallRules: [{6E5322E7-AD35-4B86-93E0-8A5ACF4279EE}] => (Block) C:\users\admin\desktop\client sylea complet\launchersylea.exe FirewallRules: [{E1CE637F-BF47-4292-B5AB-1E92C40F773D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{DC8B68E0-BD6B-4762-B74D-2E5CA69E9A00}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{A2E4DFBE-3525-491D-A25D-368C517151AF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{12EA137B-24B2-4E65-B0BC-67F004077EE7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{8D286DEF-3FC3-4EDF-865E-B3C0BE5870A6}C:\users\admin\appdata\local\smash\smash.exe] => (Allow) C:\users\admin\appdata\local\smash\smash.exe FirewallRules: [UDP Query User{98CB4692-CAC3-47EF-83D5-64D234DD5F76}C:\users\admin\appdata\local\smash\smash.exe] => (Allow) C:\users\admin\appdata\local\smash\smash.exe FirewallRules: [{FD72E496-4D52-4966-AF1D-6D5A2E16CF2C}] => (Block) C:\users\admin\appdata\local\smash\smash.exe FirewallRules: [{49B1A233-B059-46F6-9019-9F52B645E15B}] => (Block) C:\users\admin\appdata\local\smash\smash.exe FirewallRules: [{BA648CCC-C4C5-4D43-A61A-34BC247F55A3}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Dragon Lords 3D\dnl.exe FirewallRules: [{F685644C-CACC-4142-B949-2032281F7E97}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Dragon Lords 3D\dnl.exe FirewallRules: [TCP Query User{EB18C721-4200-4A1A-BFB2-DB72E2FABCFA}C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe] => (Allow) C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [UDP Query User{53691B51-1C80-40FC-B9FA-31274EE7C253}C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe] => (Allow) C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [{8CFD5F47-9067-497F-92DC-36E83CE135BA}] => (Block) C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [{9C19E9F5-66D5-4AA2-B9D3-FCB317DC8013}] => (Block) C:\users\admin\desktop\client azilla 2.42\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [TCP Query User{8EB9FC14-4CD5-433D-B704-3E07CF568172}C:\program files (x86)\simcity\simcity\simcity.exe] => (Allow) C:\program files (x86)\simcity\simcity\simcity.exe FirewallRules: [UDP Query User{C62ED522-5B46-4390-96E6-A6ED267EB152}C:\program files (x86)\simcity\simcity\simcity.exe] => (Allow) C:\program files (x86)\simcity\simcity\simcity.exe FirewallRules: [{0E24B86F-2940-4C81-ADAF-64431740332A}] => (Block) C:\program files (x86)\simcity\simcity\simcity.exe FirewallRules: [{FA302F9C-4D57-44A4-BE60-32DDF9BC7346}] => (Block) C:\program files (x86)\simcity\simcity\simcity.exe FirewallRules: [TCP Query User{148F598B-B217-4058-B4B7-2FB474781F9E}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe FirewallRules: [UDP Query User{A2AE7284-D7A8-4E3C-ACD8-23B013912839}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe FirewallRules: [{A285BEA3-813B-45CF-870E-FD07A7978D97}] => (Block) C:\games\the escapists 2\theescapists2.exe FirewallRules: [{1332E1CA-4FAF-48D8-80CF-F2B9F7911F8C}] => (Block) C:\games\the escapists 2\theescapists2.exe FirewallRules: [{78E44F17-CEEE-40E4-8140-B009EA0E8205}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe FirewallRules: [{708B8F31-C4BA-456C-B760-7FDEF001E98D}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Dirty Bomb\DirtyBombLauncher.exe FirewallRules: [TCP Query User{2DAB1FDE-AE2F-4AA6-BD2A-FA01B87EAC3E}C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe] => (Allow) C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [UDP Query User{79535D5F-B56A-447D-BC32-35541EA5821F}C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe] => (Allow) C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [{10D56389-7836-4898-99BE-73C0AEB028FB}] => (Block) C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [{66047905-E988-4B1D-95A1-35A2F715E119}] => (Block) C:\users\admin\desktop\client naelia\app\azilla 2.42 (avoir le son du jeu).exe FirewallRules: [TCP Query User{67F0FE92-13BE-47EB-9D39-926EFE2E6112}C:\program files (x86)\steam2\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [UDP Query User{1F688601-1E74-4350-B152-16B074168FD0}C:\program files (x86)\steam2\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\dirty bomb\binaries\win32\shootergame-win32-shipping.exe FirewallRules: [{6A459856-40B8-4184-9E16-86AEE33FDA80}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Spacewar\SteamworksExample.exe FirewallRules: [{0ABF4CCF-446C-406F-8758-E17BB12C0DD9}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Spacewar\SteamworksExample.exe FirewallRules: [{31CDECEF-189A-43A2-8FF7-FCF911BBBC5A}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TrackMania Nations Forever\TmForever.exe FirewallRules: [{076712FA-927E-4B39-873F-E3AEAB4F50DC}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TrackMania Nations Forever\TmForever.exe FirewallRules: [{326C0004-BEF3-4CBC-9B13-560EA5619CA6}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe FirewallRules: [{6DBAB81E-8BF6-4447-8DE8-41F0768717DD}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe FirewallRules: [{92FCE4D7-F0E8-4D09-A76F-0C6AFF94ECF8}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{6F37DA77-FC38-46B9-A7A8-7AE67765AD79}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{209FA071-9F91-4539-AB33-9E99239437E8}C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe] => (Allow) C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe FirewallRules: [UDP Query User{1E2ED306-3130-4D72-BB7B-78C74C8D818D}C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe] => (Allow) C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe FirewallRules: [{1AAFCFE5-3EC2-42A9-AEB7-CD08E0DD533D}] => (Block) C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe FirewallRules: [{5DFDD5EC-D26D-4F71-9EF5-EF28D0B11F7D}] => (Block) C:\users\admin\desktop\client silverwolf\launcher silverwolf.exe FirewallRules: [{3EEEF364-C8D8-4F5A-8600-ECC606D315DC}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Nomad\Nomad.exe FirewallRules: [{6DF14006-561F-47E0-8153-22B56DF6E9D0}] => (Allow) C:\Program Files (x86)\steam2\steamapps\common\Nomad\Nomad.exe FirewallRules: [TCP Query User{70AB86EF-A8BD-49AC-BE67-8ACFA6ABC8BA}C:\program files (x86)\steam2\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{D6AD8336-13EE-4EB1-B961-6111B820111F}C:\program files (x86)\steam2\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam2\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [TCP Query User{A0B9D108-33E1-45F1-9544-77D4390D4494}C:\users\admin\desktop\l4d2\left4dead2.exe] => (Allow) C:\users\admin\desktop\l4d2\left4dead2.exe FirewallRules: [UDP Query User{5C58B615-45D2-491E-BD49-947B6D9F1570}C:\users\admin\desktop\l4d2\left4dead2.exe] => (Allow) C:\users\admin\desktop\l4d2\left4dead2.exe FirewallRules: [{DCEDAA02-11F6-42A2-AE10-511EF098F014}] => (Block) C:\users\admin\desktop\l4d2\left4dead2.exe FirewallRules: [{F54A46EE-72FD-427C-A98C-BE1FE40DC735}] => (Block) C:\users\admin\desktop\l4d2\left4dead2.exe FirewallRules: [TCP Query User{92734A9E-E227-4364-899C-6108A05AA515}C:\users\admin\desktop\etg 1.13\etg.exe] => (Allow) C:\users\admin\desktop\etg 1.13\etg.exe FirewallRules: [UDP Query User{DD9D6E4B-BEFA-4164-94B9-662599CA4A29}C:\users\admin\desktop\etg 1.13\etg.exe] => (Allow) C:\users\admin\desktop\etg 1.13\etg.exe FirewallRules: [{8C8195DF-3E1C-4CFC-A19F-FB46F2C75129}] => (Block) C:\users\admin\desktop\etg 1.13\etg.exe FirewallRules: [{5FEA1F59-F08A-4143-8319-B960B40D57E4}] => (Block) C:\users\admin\desktop\etg 1.13\etg.exe FirewallRules: [TCP Query User{BAE51F26-3AD7-4E86-AB8C-854F05D84C7B}C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe] => (Allow) C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe FirewallRules: [UDP Query User{E273330B-94CA-4A14-AFD4-D792C0881501}C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe] => (Allow) C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe FirewallRules: [{F1268BFF-6357-44E5-811E-4F1209F01514}] => (Block) C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe FirewallRules: [{AC214EBA-E582-4F2B-98C6-C1E8C9772A90}] => (Block) C:\program files (x86)\playlogic\ancient wars - sparta\awe.exe FirewallRules: [TCP Query User{CC048F6D-CDD7-4982-B7B2-7079047A3426}C:\users\admin\desktop\etg 1.1.14\etg.exe] => (Allow) C:\users\admin\desktop\etg 1.1.14\etg.exe FirewallRules: [UDP Query User{5926C978-3B91-420E-B2D6-EE0864CF2306}C:\users\admin\desktop\etg 1.1.14\etg.exe] => (Allow) C:\users\admin\desktop\etg 1.1.14\etg.exe FirewallRules: [{AB0AA2E7-551C-40B1-8488-38F0F717C1F9}] => (Block) C:\users\admin\desktop\etg 1.1.14\etg.exe FirewallRules: [{C00D0E09-BAA3-4C8B-8C18-EF32F9684BA2}] => (Block) C:\users\admin\desktop\etg 1.1.14\etg.exe FirewallRules: [TCP Query User{CB49055C-92F8-4CBC-9A46-C414D68DACC0}C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe] => (Allow) C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe FirewallRules: [UDP Query User{40AABE94-6576-4295-BCC9-C0AD8DF3B652}C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe] => (Allow) C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe FirewallRules: [{142D91D9-7B58-4D86-8BB8-98BAB8E94449}] => (Block) C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe FirewallRules: [{5BF39C51-B0C5-4F5A-83B5-CB5C2245D124}] => (Block) C:\users\admin\desktop\nouveau dossier (9)\sm64o.exe FirewallRules: [TCP Query User{538AFAEB-B407-47FB-BCC3-C547D9E178CF}C:\users\admin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\admin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{66941764-BF7F-48B8-B5EF-B0CAAB523F81}C:\users\admin\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\admin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{0CCA6DFC-F861-40E2-93FC-7D39B2DA4B1F}] => (Block) C:\users\admin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{82FA5461-897A-4533-9EFE-F25DE0E286C8}] => (Block) C:\users\admin\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{3B96B45F-4F98-4C3F-AD7E-BFE1AC244E61}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{59691B4A-1615-4754-83B1-D1162F0A0AEF}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{E4B68925-BF0B-441C-AE52-A4D0A5D440F5}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{FACA32AC-221D-4803-BACF-9DF4EE25CB3C}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{7296D362-DE27-4CCD-A013-060D78699C0F}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [{C8FBBE9C-42F2-44C0-9E21-28F106D0FAFB}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe FirewallRules: [{D39FE445-2D30-44E8-88A6-09680574A0E8}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{87E82210-1AB2-4CC7-8555-BB24E81B128F}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{9C674AD1-F13D-4F6B-BBF6-49D572DE00B2}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.exe FirewallRules: [{B07E5E48-F325-4E33-B035-B30AFD52B075}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe FirewallRules: [{F9C9418B-92FD-4825-8EDF-9DF2A246BE86}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe FirewallRules: [{EF11A60E-0ABF-4B8C-8646-7292C0A04451}] => (Allow) C:\Users\admin\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe FirewallRules: [TCP Query User{5366EACA-5093-498D-9958-DEB0F6EB9D3A}C:\users\admin\desktop\nefilya.exe] => (Allow) C:\users\admin\desktop\nefilya.exe FirewallRules: [UDP Query User{F4A60C78-4B4C-42FF-97B7-96AC98097B81}C:\users\admin\desktop\nefilya.exe] => (Allow) C:\users\admin\desktop\nefilya.exe FirewallRules: [{7FBCF253-1BFB-4D61-8896-4F0E1B949A04}] => (Block) C:\users\admin\desktop\nefilya.exe FirewallRules: [{7E581C57-98B6-4112-8887-0825369F41DB}] => (Block) C:\users\admin\desktop\nefilya.exe FirewallRules: [{384CF2B9-5A18-4038-BA96-19AD2A0A967F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 13-12-2017 14:09:47 Programme d’installation pour les modules Windows 03-01-2018 13:06:25 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: HP HD Camera Description: HP HD Camera Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Sonix Service: SNP2UVCW10 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: LogMeIn Hamachi Virtual Ethernet Adapter Description: LogMeIn Hamachi Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LogMeIn Inc. Service: Hamachi Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: HP DeskJet 3630 series (NET) Description: HP DeskJet 3630 series (NET) Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Hewlett-Packard Service: StillCam Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/05/2018 10:24:17 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme ZHPCleaner.exe version 2018.1.4.4 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 1a74 Heure de début : 01d3866b56711665 Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Users\admin\AppData\Roaming\ZHP\ZHPCleaner.exe ID de rapport : c687e207-f25e-11e7-bb85-ec8eb59f5ec4 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (01/05/2018 08:52:24 PM) (Source: CertEnroll) (EventID: 87) (User: AUTORITE NT) Description: Échec de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-QHBK41D$ via https://IFX-KeyId-97e5d1cd8b0497c04b4655a869c8f30efa89388d.microsoftaik.azure.net/templates/Aik/scep : SubmitDone Submit(Request): Bad Request {"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."} Cache-Control: no-cache Date: Fri, 05 Jan 2018 19:52:39 GMT Pragma: no-cache Content-Length: 95 Content-Type: application/json; charset=utf-8 Expires: -1 Server: Microsoft-IIS/8.5 x-ms-request-id: 08d80f07-4439-4162-bf66-11230ccc2ede Strict-Transport-Security: max-age=31536000;includeSubDomains X-Content-Type-Options: nosniff X-Powered-By: ASP.NET Méthode : POST(8750ms) Étape : SubmitDone Demande incorrecte (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST) Error: (01/05/2018 08:39:53 PM) (Source: CertEnroll) (EventID: 87) (User: AUTORITE NT) Description: Échec de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-QHBK41D$ via https://IFX-KeyId-97e5d1cd8b0497c04b4655a869c8f30efa89388d.microsoftaik.azure.net/templates/Aik/scep : SubmitDone Submit(Request): Bad Request {"Message":"No valid TPM EK/Platform cerificate provided in the TPM identity request message."} Cache-Control: no-cache Date: Fri, 05 Jan 2018 19:40:06 GMT Pragma: no-cache Content-Length: 95 Content-Type: application/json; charset=utf-8 Expires: -1 Server: Microsoft-IIS/8.5 x-ms-request-id: 87c11f60-0819-4659-91e2-a1ade387d3c7 Strict-Transport-Security: max-age=31536000;includeSubDomains X-Content-Type-Options: nosniff X-Powered-By: ASP.NET Méthode : POST(55156ms) Étape : SubmitDone Demande incorrecte (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST) Error: (01/05/2018 12:42:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4f1287 Code d’exception : 0xc0000409 Décalage d’erreur : 0x00078e80 ID du processus défaillant : 0x2330 Heure de début de l’application défaillante : 0x01d3861a30e0d42c Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : 9ef102e9-1c9e-4b79-a873-c909764bb01e Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/05/2018 12:39:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4f1287 Code d’exception : 0xc0000409 Décalage d’erreur : 0x00078e80 ID du processus défaillant : 0x2914 Heure de début de l’application défaillante : 0x01d38619adc75874 Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : 460c7953-fb52-4202-b6dc-899f690c4300 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/04/2018 11:59:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4e8464 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0005b71b ID du processus défaillant : 0x2374 Heure de début de l’application défaillante : 0x01d385afaeb00c1d Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : 58a1b19e-e21d-410e-8f7a-ff09d66e4d39 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/04/2018 11:57:36 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4e8464 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0005b71b ID du processus défaillant : 0x2b78 Heure de début de l’application défaillante : 0x01d385af663771e3 Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : cc8322c6-192f-41bd-8614-9bdb8d5440fe Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/04/2018 11:57:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4e8464 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0005b71b ID du processus défaillant : 0x1db0 Heure de début de l’application défaillante : 0x01d385af5b67b198 Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : a90d07df-aea1-45f3-93c2-860d49324432 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/04/2018 11:56:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RobloxPlayerBeta.exe, version : 0.319.0.40990, horodatage : 0x5a4be077 Nom du module défaillant : QTX.vmp.dll, version : 0.0.0.0, horodatage : 0x5a4e8464 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0005b71b ID du processus défaillant : 0x247c Heure de début de l’application défaillante : 0x01d385af4d1ca5f8 Chemin d’accès de l’application défaillante : C:\Users\admin\AppData\Local\Roblox\Versions\version-62384ee365424ad9\RobloxPlayerBeta.exe Chemin d’accès du module défaillant: C:\Users\admin\AppData\Roaming\QTX.vmp.dll ID de rapport : c3a3b62e-14f1-460d-9a59-34525103dc73 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/04/2018 11:52:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SFD.exe, version : 1.3.3.6, horodatage : 0x54397845 Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.1770, horodatage : 0x59bf2bcf Code d’exception : 0xe0434352 Décalage d’erreur : 0x000daa12 ID du processus défaillant : 0x15ec Heure de début de l’application défaillante : 0x01d385ac1737475a Chemin d’accès de l’application défaillante : C:\Users\admin\Desktop\Oxyda-tion\SFD.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 3274ca50-2871-4c0d-80e3-390f76153a95 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (01/05/2018 08:57:21 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Gestionnaire des cartes téléchargées est en attente de démarrage. Error: (01/05/2018 08:52:42 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/05/2018 08:52:21 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: AUTORITE NT) Description: Le microprogramme Module de plateforme sécurisée (TPM) de ce PC doit faire face à un problème de sécurité connu. Contactez le fabricant de votre PC pour savoir si une mise à jour est disponible. Pour plus d'informations, voir https://go.microsoft.com/fwlink/?linkid=852572 Error: (01/05/2018 08:52:16 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: AUTORITE NT) Description: Le microprogramme Module de plateforme sécurisée (TPM) de ce PC doit faire face à un problème de sécurité connu. Contactez le fabricant de votre PC pour savoir si une mise à jour est disponible. Pour plus d'informations, voir https://go.microsoft.com/fwlink/?linkid=852572 Error: (01/05/2018 08:51:36 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: AUTORITE NT) Description: Le microprogramme Module de plateforme sécurisée (TPM) de ce PC doit faire face à un problème de sécurité connu. Contactez le fabricant de votre PC pour savoir si une mise à jour est disponible. Pour plus d'informations, voir https://go.microsoft.com/fwlink/?linkid=852572 Error: (01/05/2018 08:51:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service TeamViewer n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/05/2018 08:51:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service 4game-service n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/05/2018 08:49:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\System32\bcmihvsrv64.dll Error: (01/05/2018 08:49:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\System32\bcmihvsrv64.dll Error: (01/05/2018 08:49:52 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\System32\bcmihvsrv64.dll CodeIntegrity: =================================== Date: 2018-01-02 21:34:23.985 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-31 11:58:15.325 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-17 14:51:27.747 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-15 00:54:09.872 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-10 18:57:01.606 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-12-09 22:42:13.111 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements. Date: 2017-12-06 17:09:56.980 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-29 17:23:19.259 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-25 14:44:37.615 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-20 23:05:58.026 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i3-6100U CPU @ 2.30GHz Pourcentage de mémoire utilisée: 65% Mémoire physique - RAM - totale: 3976.59 MB Mémoire physique - RAM - disponible: 1379.88 MB Mémoire virtuelle totale: 8072.59 MB Mémoire virtuelle disponible: 4834.56 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:446.29 GB) (Free:23.69 GB) NTFS Drive d: (Recovery Image) (Fixed) (Total:16.03 GB) (Free:2.07 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: EB4D7174) Partition: GPT. ==================== Fin de Addition.txt ============================