Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21.11.2018 Exécuté par Alexi (27-11-2018 11:40:51) Exécuté depuis C:\Users\patri\Desktop Windows 10 Home Version 1809 17763.134 (X64) (2018-10-04 19:09:56) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-559249008-301149163-1135055631-500 - Administrator - Disabled) Alexi (S-1-5-21-559249008-301149163-1135055631-1001 - Administrator - Enabled) => C:\Users\patri DefaultAccount (S-1-5-21-559249008-301149163-1135055631-503 - Limited - Disabled) Invité (S-1-5-21-559249008-301149163-1135055631-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-559249008-301149163-1135055631-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649} FW: AVG Antivirus (Enabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 911 Operator - Search and Rescue (HKLM\...\SKIDROW - 911 Operator - Search and Rescue) (Version: - SKIDROW) Action! (HKLM-x32\...\Mirillis Action!) (Version: 3.7.0 - Mirillis) Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.153 - Adobe Systems Incorporated) Adobe Flash Professional CS6 (HKLM-x32\...\{BD5669B5-49FF-4490-B956-E9D7CB9B0ADC}) (Version: 12.0 - Adobe Systems Incorporated) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 4.2.3 - philandro Software GmbH) ApowerManager V3.2.1 (HKLM-x32\...\{D02368A2-6D57-4AE0-BECC-9E7DDE20B865}_is1) (Version: 3.2.1 - Apowersoft LIMITED) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation) Atom (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\atom) (Version: 1.32.2 - GitHub Inc.) AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden AVG Driver Updater (HKLM-x32\...\{7D4A9595-0E2C-4E3B-AFC7-464F3BF4D087}) (Version: 2.5.0 - AVG Netherlands B.V) Hidden AVG Driver Updater (HKLM-x32\...\AVG Driver Updater) (Version: 2.5.0 - AVG Netherlands B.V) AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 18.8.3071 - AVG Technologies) AVG PC TuneUp (HKLM-x32\...\{85883726-264E-42DE-B669-BE65EBBCBA73}) (Version: 16.79.1 - AVG Technologies) Hidden AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.79.3.36215 - AVG Technologies) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Camtasia 2018 (HKLM\...\{E0D47463-70AE-477B-9ADB-932CCDE0E44F}) (Version: 18.0.4.3822 - TechSmith Corporation) Hidden Camtasia 2018 (HKLM-x32\...\{48751b56-ef25-4e5f-9614-3c312b0fe088}) (Version: 18.0.4.3822 - TechSmith Corporation) Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine) Club Penguin Island Launcher (HKLM-x32\...\{620CCF48-01A3-453C-A5ED-C18A8D1724E6}) (Version: 1.0.1 - Disney Interactive) Code 3 Callouts (HKLM\...\{6E173224-465C-485C-8859-F16280739A21}) (Version: 1.2.1.0 - Stealth22) Counter-Strike: Source (HKLM-x32\...\{9580813D-94B1-4C28-9426-A441E2BB29A5}) (Version: 1.0.0.0 - Valve) Destiny 2 (HKLM-x32\...\Destiny 2) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.82 - NVIDIA Corporation) Hidden Ditto (HKLM-x32\...\Ditto_is1) (Version: - Scott Brogden) Epic Games Launcher (HKLM-x32\...\{16CC5899-59D4-48A0-BA7F-0E92B60855DC}) (Version: 1.1.163.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden eSpeak version 1.48.04 (HKLM-x32\...\eSpeak_is1) (Version: - ) Euro Truck Simulator 2 (HKLM-x32\...\Euro Truck Simulator 2_is1) (Version: - ) Fichiers de support d'installation de Microsoft SQL Server 2008 (HKLM\...\{308350C4-5DA5-4035-A69B-12600021C9FA}) (Version: 10.1.2731.0 - Microsoft Corporation) FileZilla Client 3.36.0 (HKLM-x32\...\FileZilla Client) (Version: 3.36.0 - Tim Kosse) FireAlpaca 2.1.10 (64bit) (HKLM\...\FireAlpaca64_is1) (Version: 2.1.10 - firealpaca.com) Flash Decompiler Trillix (HKLM-x32\...\Flash Decompiler Trillix_is1) (Version: 5.3 - Eltima Software) FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden GeoGebra Classic (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\GeoGebra_6) (Version: 6.0.509 - International GeoGebra Institute) GeoGebra Geometry (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\GeoGebra_Geometry) (Version: 6.0.498 - International GeoGebra Institute) GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team) Google Chrome (HKLM\...\{A5573283-D630-3900-8DCE-E463BDDB5E0E}) (Version: 70.0.3538.102 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) IDCGames Launcher (HKLM-x32\...\{189BD0E3-FA9A-4280-8204-7F54913CFCFA}_is1) (Version: 0.0.0 - IDC Games) Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) JetBrains dotCover 2018.2 (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{1d696a0c-b6d8-5f3c-9369-603ff14f8309}) (Version: 2018.2 - JetBrains s.r.o.) JetBrains dotMemory 2018.2 (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{e1c437e8-ee99-599b-9d54-562fd5079b1f}) (Version: 2018.2 - JetBrains s.r.o.) JetBrains dotPeek 2018.2 (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{86714eb5-2fa3-5b0c-9b03-7c2c048beeb3}) (Version: 2018.2 - JetBrains s.r.o.) JetBrains dotTrace 2018.2 (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{2c89d95f-553c-5070-8811-ffd256241160}) (Version: 2018.2 - JetBrains s.r.o.) JetBrains ETW Host Service (HKLM-x32\...\{EB19E7CE-D88E-42D1-8216-0DCAD8F8ECA3}) (Version: 182.0.12.0 - JetBrains s.r.o) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Les Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.) Les Sims™ 3 Accès VIP (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Late Night) (Version: 1.0.0.0 - Electronic Arts Inc.) LibreOffice 6.0.5.2 (HKLM\...\{9645CDEF-085C-45F7-A3CD-B4B7046EF78C}) (Version: 6.0.5.2 - The Document Foundation) L'Île de Club Penguin (HKLM-x32\...\{F77CC12D-3096-40F1-8D24-A3EE6AEC72B4}) (Version: 1.12.0 - Disney Interactive) LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.) Macromedia Extension Manager (HKLM-x32\...\{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}) (Version: 1.7.240 - Macromedia, Inc.) Macromedia Flash 8 (HKLM-x32\...\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}) (Version: 8.00.0000 - Macromedia) Macromedia Flash 8 Video Encoder (HKLM-x32\...\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}) (Version: 1.00.0000 - Macromedia) Macromedia Flash Player 8 (HKLM-x32\...\{885A63EA-382B-4DD4-A755-14809B8557D6}) (Version: 8.0.22.0 - Macromedia) Macromedia Flash Player 8 Plugin (HKLM-x32\...\{91057632-CA70-413C-B628-2D3CDBBB906B}) (Version: 8.0.22.0 - Macromedia) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x86) (HKLM-x32\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation) Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation) Microsoft SQL Server 2008 Browser (HKLM-x32\...\{4401409D-25F1-4E85-8A3C-6BA6FFCFBFED}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server 2008 Native Client (HKLM\...\{7242D7B3-2C1B-44C9-8F14-0202BB49DF6C}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{AF6919D0-5691-4F35-9D65-54F981013514}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 FRA (HKLM\...\{2906A05E-2D38-4B47-85A2-D3485E372C8F}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{0266CCBE-BBD8-416C-A48F-7FC47C6DB566}) (Version: 10.50.1447.4 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{4E99A992-BF07-48AE-B0C6-5500F54EA3DA}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft Visual Basic 2010 Express - Français (HKLM-x32\...\Microsoft Visual Basic 2010 Express - FRA) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - FRA (HKLM\...\{F48F43AA-721D-335F-9CA2-01D910104560}) (Version: 10.0.30319 - Microsoft Corporation) Minecraft (HKLM-x32\...\{BADCF8B4-E80D-4D8C-99C4-C7FE770D618D}) (Version: 1.0.4.0 - Mojang) Minion Masters (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\448417850466762753) (Version: - ) Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - FRA) (Version: 1.0.30319 - Microsoft Corporation) Mozilla Firefox 63.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 63.0.1 (x64 fr)) (Version: 63.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla) Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig) Node.js (HKLM\...\{A6606125-61E2-43C3-BFCF-0E571EC56656}) (Version: 6.11.5 - Node.js Foundation) No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.82 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.82 - NVIDIA Corporation) Objets de gestion Microsoft SQL Server 2008 R2 (HKLM-x32\...\{B01A7AFC-0356-43AF-A333-C65912AEA8DC}) (Version: 10.50.1447.4 - Microsoft Corporation) OpenIV (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\OpenIV) (Version: 3.0.1006 - .black/OpenIV Team) Oracle VM VirtualBox 5.2.18 (HKLM\...\{892B8291-9639-4D2A-9D2A-BD9C32281065}) (Version: 5.2.18 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.30.15625 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{6767058e-a7b7-4196-809c-81e13126a019}) (Version: latest - ppy Pty Ltd) Outils Microsoft Visual Studio 2010 ADO.NET Entity Framework (HKLM-x32\...\{3BA7E387-9401-3371-9464-5E224D243FC5}) (Version: 10.0.30319 - Microsoft Corporation) Overcooked! 2 (HKLM-x32\...\Overcooked! 2_is1) (Version: - ) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC) Panneau de configuration NVIDIA 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.82 - NVIDIA Corporation) Hidden Parsec (HKLM-x32\...\Parsec) (Version: - Parsec Cloud Inc.) PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden Quest version 0.1.2 (HKLM-x32\...\{A350AC1A-B548-48E4-9599-EF0A446F9026}_is1) (Version: 0.1.2 - Laupok) Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 beta r3255 - Rainmeter) Roblox Player for Alexi (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\roblox-player) (Version: - Roblox Corporation) Roblox Player for patri (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - Roblox Corporation) Roblox Studio for patri (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - Roblox Corporation) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games) Service Pack 1 pour SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation) Skype version 8.34 (HKLM-x32\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.) Sothink SWF Quicker (HKLM-x32\...\{D3490D20-3AE0-459D-AAD6-59195140EAC2}_is1) (Version: 5.6 - SourceTec Software Co., LTD) Spotify (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\Spotify) (Version: 1.0.93.244.g1e3a05e7 - Spotify AB) Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.1.2531.0 - Microsoft Corporation) Hidden Star Stable Online (HKLM-x32\...\{8CD50415-04B7-459E-8CBD-DA96A9CDF98E}) (Version: 1.01.0000 - Star Stable Entertainment AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Streamlabs OBS 0.11.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.11.3 - General Workings, Inc.) SURVEY_PROGRAM (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\SURVEY_PROGRAM) (Version: - ) TidyTabs 1.3.5 (HKLM-x32\...\{4376AE6F-79D8-4CF7-956E-3D6F0A046A9F}) (Version: 1.3.5 - Nurgo Software) Twitch (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.) Uplay (HKLM-x32\...\Uplay) (Version: 72.0 - Ubisoft) uTorrent Web (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\utweb) (Version: 0.18.2 - BitTorrent, Inc.) Version bêta de Google Chrome (HKLM-x32\...\Google Chrome Beta) (Version: 71.0.3578.62 - Google Inc.) Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{D60023FA-3DF1-4537-93DD-13024CC4E366}) (Version: 4.0.8080.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN) WaddleUp! (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\waddleup) (Version: 1.1.0 - WaddleUp!) War Thunder Launcher 1.0.3.120 (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) Wargaming.net Game Center (HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\Wargaming.net Game Center) (Version: 18.7.0.2238 - Wargaming.net) Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 5.6.32-0 - Bitnami) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] () ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-11-18] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-10-10] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2018-10-10] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-10-10] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-07-30] (NVIDIA Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-11-18] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0D5A2304-B1E8-4F46-97C7-244301AB77B2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation) Task: {0F17CAE6-567B-4726-A054-1FAD40506079} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {12E649A2-E802-4D8A-8F7E-AA092CF5D191} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-11-23] (Adobe Systems Incorporated) Task: {2F50CCBE-AAEF-4F45-8A03-76271073DA3D} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-10-28] (AVG Technologies CZ, s.r.o.) Task: {36315D94-E9E6-4EFC-AE67-CBA4E5D014AF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation) Task: {5D661065-C852-4B67-B6BA-D55C5880C751} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2018-10-10] (AVG Technologies CZ, s.r.o.) Task: {60B122E5-C790-49CE-981F-8902206CF45D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation) Task: {66C742D0-2EDD-49A1-B1F6-A347F9C708F0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache Task: {7C8AA7DC-8918-439A-BF8B-DE9200211A07} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {81794513-24ED-48AF-92B9-0B5E10E0D2FD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [2018-11-18] (AVG Technologies CZ, s.r.o.) Task: {899776D1-FBEF-4627-8F0F-177DD2C58422} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {8A4A0275-608E-4B09-9959-82801F175B97} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-24] (Google Inc.) Task: {938549CF-A1E8-4AF1-9483-D5C81843460C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {A71D877E-B4B4-4796-B46A-833729D5FE76} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-559249008-301149163-1135055631-1001 => C:\Users\patri\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited) Task: {AC20ACF4-AFB0-405F-98C2-EA6A0A6EB3EA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives Task: {CFF180B9-E52C-4EBB-B3DF-9B9D61C031B6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {D08D1A54-CA71-4850-9CE9-F26691E816E2} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {D2A1F5FF-9602-45CA-B9CD-15B48E4B3C92} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] () Task: {E9041F87-BF3B-48DE-864D-DB18D04FCE08} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_Plugin.exe [2018-11-23] (Adobe Systems Incorporated) Task: {FCFB7EB8-E880-4094-8CA2-E01003516A27} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-patrice.langin@orange.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {FEDDD8D7-6326-4CC8-AF32-83A509A7EDF5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-24] (Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\AVG Driver Updater Scan.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe Task: C:\WINDOWS\Tasks\AVG Driver Updater Startup.job => C:\Program Files (x86)\AVG Driver Updater\AVG Driver Updater.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WаrТhunder.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.rehcnual.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox\Rоbloх Plаyer.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.rehcnualreyalpxolbor.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications pour la version bêta de Chrome\SuреrСPPS.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications pour la version bêta de Chrome\Аvеnturе Рingоuin – Viеns jоuеr !.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Eхрlorеr.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.erolpxei.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vеrsiоn bêtа dе Gоogle Сhromе.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\patri\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Vеrsiоn bêtа dе Google Сhrоme.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firеfоx.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.xoferif.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Chromе.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vеrsion bêta de Gооglе Сhrоme.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.emorhc.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ерiс Gаmеs Launсhеr.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.rehcnualsemagcipe.bat (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\Public\Desktop\Сlub Рenguin Islаnd.lnk -> C:\Users\patri\AppData\Roaming\Browsers\exe.rehcnualdnalsiniugnepbulc.bat (Pas de fichier) <==== Cyrillic ShortcutWithArgument: C:\Users\patri\Desktop\Aventure Pingouin – Viens jouer !.lnk -> C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=khakcmikhojgiamndeglhpepciaddaag ShortcutWithArgument: C:\Users\patri\Desktop\SuperCPPS.lnk -> C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fhnflkmdbpjgndgdemlndjfhmbgpjeof ShortcutWithArgument: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications pour la version bêta de Chrome\Aventure Pingouin – Viens jouer !.lnk -> C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=khakcmikhojgiamndeglhpepciaddaag ShortcutWithArgument: C:\Users\patri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications pour la version bêta de Chrome\SuperCPPS.lnk -> C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fhnflkmdbpjgndgdemlndjfhmbgpjeof ShortcutWithArgument: C:\Users\patri\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default ==================== Modules chargés (Avec liste blanche) ============== 2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll 2018-11-14 13:39 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-11-26 19:38 - 2018-10-18 08:44 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 _____ () C:\Users\patri\AppData\Local\MEGAsync\ShellExtX64.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-03-19 00:40 - 2018-03-19 00:40 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2018-11-14 13:40 - 2018-10-10 21:03 - 101252136 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-04 15:54 - 2018-10-04 15:55 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-11-13 11:28 - 2018-11-13 11:28 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-07-11 19:35 - 2018-07-11 19:36 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2018-11-13 11:28 - 2018-11-13 11:29 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-08-11 09:36 - 2017-12-20 16:22 - 003887104 _____ () C:\Program Files (x86)\Ditto\Ditto.exe 2018-08-14 11:28 - 2018-08-14 11:28 - 098275328 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll 2018-08-14 11:28 - 2018-08-14 11:28 - 003922432 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll 2018-08-14 11:28 - 2018-08-14 11:28 - 000092672 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll 2018-07-03 23:01 - 2018-07-03 23:01 - 001960448 _____ () C:\Users\patri\AppData\Roaming\Parsec\electron\ffmpeg.dll 2018-10-09 11:29 - 2018-10-09 11:29 - 000130048 _____ () C:\Program Files\Rainmeter\Plugins\SysInfo.DLL 2018-06-24 19:10 - 2018-06-24 19:10 - 000091136 _____ () C:\Users\patri\AppData\Roaming\Rainmeter\Plugins\TranslucentTaskbar.DLL 2018-11-23 17:46 - 2018-11-20 04:08 - 005237080 _____ () C:\Program Files (x86)\Google\Chrome Beta\Application\71.0.3578.62\libglesv2.dll 2018-11-23 17:46 - 2018-11-20 04:08 - 000117080 _____ () C:\Program Files (x86)\Google\Chrome Beta\Application\71.0.3578.62\libegl.dll 2018-11-13 12:35 - 2018-11-08 23:14 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libglesv2.dll 2018-11-13 12:35 - 2018-11-08 23:14 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.102\libegl.dll 2018-07-03 23:01 - 2018-07-03 23:01 - 003429376 _____ () C:\Users\patri\AppData\Roaming\Parsec\electron\libglesv2.dll 2018-07-03 23:01 - 2018-07-03 23:01 - 000017408 _____ () C:\Users\patri\AppData\Roaming\Parsec\electron\libegl.dll 2018-11-14 19:26 - 2018-11-14 19:26 - 003742208 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 2018-11-14 19:26 - 2018-11-14 19:26 - 002394936 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 2018-11-14 13:40 - 2018-10-10 21:03 - 002673192 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll 2018-11-14 13:40 - 2018-10-10 21:03 - 000138792 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll 2015-07-20 16:34 - 2015-07-20 16:34 - 000012288 _____ () C:\Program Files (x86)\No-IP\ducservice.exe 2018-09-01 11:18 - 2018-10-30 19:06 - 001057056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll 2018-09-01 11:17 - 2018-09-23 01:00 - 102804768 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2018-09-01 11:17 - 2018-09-23 01:00 - 004866336 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2018-09-01 11:17 - 2018-09-23 01:00 - 000116000 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2018-11-18 15:00 - 2018-11-18 15:00 - 000594192 _____ () C:\Program Files\AVG\Antivirus\streamback.dll 2018-09-30 17:11 - 2018-09-30 17:11 - 067127976 _____ () C:\Program Files\AVG\Antivirus\libcef.dll 2018-06-24 10:56 - 2018-10-30 19:06 - 000879904 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2018-06-24 10:55 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2018-06-24 10:55 - 2018-11-10 03:55 - 002649376 _____ () C:\Program Files (x86)\Steam\video.dll 2018-06-24 10:55 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2018-06-24 10:55 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2018-06-24 10:55 - 2017-12-20 02:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2018-06-24 10:55 - 2017-12-20 02:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2018-06-24 10:55 - 2017-12-20 02:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2018-06-24 10:55 - 2017-12-20 02:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2018-06-24 10:55 - 2017-12-20 02:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2018-06-24 10:55 - 2018-11-10 03:55 - 001028384 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2018-06-24 10:55 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2018-06-24 10:48 - 2018-11-09 19:57 - 001790592 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll 2018-11-18 17:00 - 2018-11-09 19:57 - 002381152 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\slimcore\bin\skypert.dll 2018-11-18 17:00 - 2018-11-09 19:57 - 000081864 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\desktop-idle\build\Release\desktopIdle.node 2018-11-18 17:00 - 2018-11-09 19:57 - 000097224 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2018-11-18 17:00 - 2018-11-09 19:57 - 000094152 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\skype-coexistence\build\Release\coexistence.node 2018-11-18 17:00 - 2018-11-09 19:57 - 000219080 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\electron-ssid\build\Release\electron-ssid.node 2018-11-18 15:42 - 2018-11-18 15:41 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2018-09-06 21:29 - 2018-09-06 21:29 - 000852992 _____ () C:\Users\patri\AppData\Roaming\uTorrent Web\avformat-57.dll 2018-09-06 21:29 - 2018-09-06 21:29 - 000465408 _____ () C:\Users\patri\AppData\Roaming\uTorrent Web\avutil-55.dll 2018-09-06 21:29 - 2018-09-06 21:29 - 001276928 _____ () C:\Users\patri\AppData\Roaming\uTorrent Web\avcodec-57.dll 2018-09-06 21:29 - 2018-09-06 21:29 - 000152064 _____ () C:\Users\patri\AppData\Roaming\uTorrent Web\swresample-2.dll 2018-11-25 14:31 - 2018-11-07 14:14 - 049004408 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libcef.dll 2018-11-25 14:31 - 2018-11-07 14:28 - 000092536 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libEGL.dll 2018-11-25 14:31 - 2018-11-07 14:28 - 001663352 _____ () \\?\C:\ProgramData\Wargaming.net\GameCenter\dlls\libGLESv2.dll 2017-09-10 21:51 - 2017-09-10 21:51 - 000798208 _____ () C:\Users\patri\AppData\Local\MEGAsync\libsodium.dll 2018-06-26 11:58 - 2018-06-26 11:58 - 000393608 _____ () C:\Users\patri\AppData\Roaming\Twitch\Bin\opus.dll 2018-06-26 11:58 - 2018-09-27 17:53 - 000535872 _____ () C:\Users\patri\AppData\Roaming\Twitch\Bin\Curse.Presto.Interface.dll 2018-06-24 10:48 - 2018-11-09 19:57 - 002723872 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll 2018-06-24 10:48 - 2018-11-09 19:57 - 000031776 _____ () C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll 2018-11-18 17:00 - 2018-11-09 19:57 - 000409544 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\@paulcbetts\spellchecker\build\Release\spellchecker.node 2018-11-18 17:00 - 2018-11-09 19:57 - 000138696 _____ () \\?\C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar.unpacked\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2015-07-20 16:34 - 2015-07-20 16:34 - 000073728 _____ () C:\Program Files (x86)\No-IP\ducapi.dll 2018-11-14 17:22 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\patri\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-11-14 17:22 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\patri\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-11-14 17:22 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\patri\AppData\Local\Discord\app-0.0.301\libegl.dll 2018-11-14 17:22 - 2018-11-14 17:23 - 011283288 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-11-14 17:22 - 2018-11-16 16:59 - 001639256 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-11-14 17:22 - 2018-11-14 17:22 - 001910104 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-11-14 17:22 - 2018-11-14 17:22 - 000422744 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-11-14 17:22 - 2018-11-14 17:22 - 000145240 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-11-14 17:22 - 2018-11-14 17:22 - 000512856 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-11-14 17:22 - 2018-11-16 16:59 - 001658712 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-11-14 17:23 - 2018-11-14 17:23 - 009621848 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node 2018-11-14 17:22 - 2018-11-27 11:31 - 001718104 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node 2018-11-14 17:22 - 2018-11-14 17:22 - 002722648 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-11-14 17:24 - 2018-11-14 17:24 - 001261400 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node 2018-11-14 17:24 - 2018-11-15 15:50 - 024875864 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node 2018-11-14 17:24 - 2018-11-14 17:24 - 002760536 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-11-14 17:24 - 2018-11-14 17:24 - 001249112 _____ () \\?\C:\Users\patri\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:DED17083 [133] AlternateDataStreams: C:\Users\patri\AppData\Local\Temp:$DATA​ [16] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-06-24 10:22 - 2018-11-26 19:33 - 000003650 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 www.techsmith.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com 127.0.0.1 updater.techsmith.com 127.0.0.1 camtasiatudi.techsmith.com 127.0.0.1 tsccloud.cloudapp.net 127.0.0.1 assets.cloud.techsmith.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com 127.0.0.1 65.52.240.48 127.0.0.1 69.167.144.18 127.0.0.1 157.56.8.159 127.0.0.1 69.167.144.15 127.0.0.1 updater.techsmith.com 127.0.0.1 camtasiatudi.techsmith.com 127.0.0.1 tsccloud.cloudapp.net 127.0.0.1 assets.cloud.techsmith.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com 127.0.0.1 65.52.240.48 127.0.0.1 69.167.144.18 127.0.0.1 157.56.8.159 127.0.0.1 69.167.144.15 127.0.0.1 updater.techsmith.com 127.0.0.1 camtasiatudi.techsmith.com 127.0.0.1 tsccloud.cloudapp.net 127.0.0.1 assets.cloud.techsmith.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 oscount.techsmith.com 127.0.0.1 65.52.240.48 ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-559249008-301149163-1135055631-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\patri\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\wallhaven-583141.png DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-559249008-301149163-1135055631-1001\...\StartupApproved\Run: => "Spotify" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe FirewallRules: [{A8B8E349-BE00-49A9-9278-177182B85C38}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{A1EC3DE8-9978-4AD3-8ABB-1A59691DDC40}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{0E687D9C-1659-4621-A4BF-58BECB3AAFEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svends.exe FirewallRules: [{4548F005-2145-44AD-AE20-5BFA75053997}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svends.exe FirewallRules: [{1CA5501A-2F34-42A9-972C-08268B15CB95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svencoop.exe FirewallRules: [{17A7C66B-AB70-404E-BB20-74690B560887}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sven Co-op\svencoop.exe FirewallRules: [{B166A343-CF73-431E-A0B4-F5E11658A0F1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{AC4A540D-FDF6-4EFE-8AB0-EB1261C565DC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{872529B9-7223-42DE-B715-B0B5BCAA7BA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{4CA5CC20-D1DD-4B33-83DC-1129ADD6ECC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [UDP Query User{9F19432C-2A80-44DA-A300-12D6487EB112}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{2289FC6A-4502-44DA-9A85-9033F0F286EE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{CE92AF58-068C-437D-9728-3FE0E7F94368}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [TCP Query User{9F718DA2-0E3F-49F1-960B-AC83E3B38139}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{3A8DDBB6-4202-40BD-96C7-30159D5CF9EE}C:\users\patri\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\patri\appdata\local\warthunder\win64\aces.exe FirewallRules: [TCP Query User{76FD0218-9A4E-469E-A833-421EEFAF0BFE}C:\users\patri\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\patri\appdata\local\warthunder\win64\aces.exe FirewallRules: [{722D5E0F-A964-4E73-A281-099BC4FABE0C}] => (Block) C:\users\patri\appdata\local\warthunder\launcher.exe FirewallRules: [{43E9401C-D9E0-465F-B90E-0283873E3C1B}] => (Block) C:\users\patri\appdata\local\warthunder\launcher.exe FirewallRules: [UDP Query User{0AD9130A-D6A2-4575-85B7-D0C84031056A}C:\users\patri\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\patri\appdata\local\warthunder\launcher.exe FirewallRules: [TCP Query User{9DECEE0A-FCBF-49CC-976A-05FFF085B839}C:\users\patri\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\patri\appdata\local\warthunder\launcher.exe FirewallRules: [{C00507A2-2DCF-4D50-8535-D03E86729501}] => (Block) C:\program files (x86)\the sims 4\game\bin\ts4_x64.exe FirewallRules: [{5540FE42-B005-4F4E-8678-ED151A95ABD6}] => (Block) C:\program files (x86)\the sims 4\game\bin\ts4_x64.exe FirewallRules: [UDP Query User{4E8D07A3-47CC-4462-8241-A7492B162FB2}C:\program files (x86)\scrap mechanic\release\scrapmechanic.exe] => (Allow) C:\program files (x86)\scrap mechanic\release\scrapmechanic.exe FirewallRules: [TCP Query User{5C2A3F5F-EBCC-4D36-9385-462ECED5F91F}C:\program files (x86)\scrap mechanic\release\scrapmechanic.exe] => (Allow) C:\program files (x86)\scrap mechanic\release\scrapmechanic.exe FirewallRules: [{8D79BCA6-E87B-4EFE-BC04-94F140092274}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe FirewallRules: [{A674A60B-F60A-4E2D-9A04-282B8824B329}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe FirewallRules: [{F007B3DF-175D-4837-A13A-9100A3B9EB1E}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe FirewallRules: [{D51ACC6B-BDE7-4FA4-A799-D1195A7E7FCD}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe FirewallRules: [{04D8E892-907F-415F-BD3B-B1A4F5E44B1C}] => (Block) C:\program files\java\jre1.8.0_181\bin\javaw.exe FirewallRules: [{D048FA5F-FD9F-4EF1-9A4D-291FBBE0C9F2}] => (Block) C:\program files\java\jre1.8.0_181\bin\javaw.exe FirewallRules: [UDP Query User{73BB9C3C-CAAF-42BF-ACB9-7CE194D211C1}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe FirewallRules: [TCP Query User{1C44E2C5-824B-40A8-91FF-6CD1B92F2465}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe FirewallRules: [{C768710E-E60B-48ED-BD36-84D340A735DA}] => (Allow) C:\Users\patri\AppData\Roaming\uTorrent Web\utweb.exe FirewallRules: [{0008906E-AC27-4FD2-A85D-A5D4189AFDA9}] => (Allow) C:\Users\patri\AppData\Roaming\uTorrent Web\utweb.exe FirewallRules: [UDP Query User{F90701F5-D105-45E7-8668-A7EFB8D318DB}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{9BF0FBDD-16F5-4ED5-AB9F-F5EDCA409D02}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{D189D854-ABFA-462B-8129-EAE12D258697}C:\program files (x86)\911 operator\911 operator - search and rescue\calleditor.exe] => (Allow) C:\program files (x86)\911 operator\911 operator - search and rescue\calleditor.exe FirewallRules: [TCP Query User{1B123001-9749-47DB-BD89-9950CE2E67B2}C:\program files (x86)\911 operator\911 operator - search and rescue\calleditor.exe] => (Allow) C:\program files (x86)\911 operator\911 operator - search and rescue\calleditor.exe FirewallRules: [{F40AF476-699E-4848-A07B-C284BB84999F}] => (Block) C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe FirewallRules: [{FB2EE012-BE61-485D-B83E-ADC7E6A266CA}] => (Block) C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe FirewallRules: [UDP Query User{5B1EF1DB-106F-4020-B91A-D62FA4777E1F}C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe FirewallRules: [TCP Query User{8689F734-2A7D-4ACC-AD06-8FEA0703C393}C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_25661890\java.exe FirewallRules: [UDP Query User{446DAD16-7C71-4B98-A396-0152576EF232}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe FirewallRules: [TCP Query User{DF4DB684-07C0-4432-886E-DC657E17189D}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe FirewallRules: [{D8FD7AE2-5079-4C4E-BDD3-E6A184719AE9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory Dedicated Server\MultiAdmin.exe FirewallRules: [{07D0B551-1435-493B-891D-56963BF9F9B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory Dedicated Server\MultiAdmin.exe FirewallRules: [{F7761FCD-7B53-44E5-846D-1F7FDCB7877A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\LocalAdmin.exe FirewallRules: [{159E38FE-F2AA-4749-9A1F-B11FBF5A8C4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\LocalAdmin.exe FirewallRules: [{481B928B-1069-4FB2-BCE3-D7063366FBD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe FirewallRules: [{E87D4B14-4224-45D2-A3A0-15A76C8097C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SCP Secret Laboratory\SCPSL.exe FirewallRules: [UDP Query User{8BE8666F-1B46-4D2A-9F9B-DF021A712E63}C:\program files (x86)\steam\steamapps\common\scp secret laboratory dedicated server\scpsl.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\scp secret laboratory dedicated server\scpsl.exe FirewallRules: [TCP Query User{C196585F-8450-4557-821B-202EFD0FE1FB}C:\program files (x86)\steam\steamapps\common\scp secret laboratory dedicated server\scpsl.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\scp secret laboratory dedicated server\scpsl.exe FirewallRules: [{18768293-7AF8-4666-A9E4-1218854018A9}] => (Allow) C:\Program Files (x86)\Ditto\Ditto.exe FirewallRules: [{FE48825F-A042-44B6-8DE9-37BD4D37B610}] => (Allow) C:\Program Files (x86)\Ditto\Ditto.exe FirewallRules: [{87C66AF1-3C61-4F2F-B76B-69B61A0D273B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Garfield Kart\GarfieldKartNoMulti.exe FirewallRules: [{EC5FEB14-96AA-499C-88A4-33B061DF4BDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Garfield Kart\GarfieldKartNoMulti.exe FirewallRules: [{BA4351AD-84FE-4930-95A8-8D0F2CC64C52}] => (Allow) LPort=8319 FirewallRules: [UDP Query User{4A89AD8A-611B-4992-BA78-6E530370E8B4}C:\users\patri\appdata\local\fivem\fivem.exe] => (Allow) C:\users\patri\appdata\local\fivem\fivem.exe FirewallRules: [TCP Query User{959B3280-FF9B-472D-A87C-AC5A31797ECD}C:\users\patri\appdata\local\fivem\fivem.exe] => (Allow) C:\users\patri\appdata\local\fivem\fivem.exe FirewallRules: [{F1A6ED55-E53A-44F7-8A73-24F4D31FFE87}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{3859CDD7-6525-4719-BE69-F17DA1763541}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [UDP Query User{27968D3A-0096-4614-9A5B-1E24E0FA31BE}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe FirewallRules: [TCP Query User{8167660D-1ECD-4582-9A11-06311B192E8C}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe FirewallRules: [{97F1632C-4B27-4B70-9689-98C65F367C46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{9F5BD987-4E3A-46FC-A8E6-2BA75B782E69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{01906CBF-3DE8-4B4C-91BE-B170A75ED62C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{7FC8915F-6A69-4559-A0A8-3BB9243EF7FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{4767CD6E-751B-47CF-89B4-3294D6A024C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2DC241B4-061C-4442-AFC5-F92830198CAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{41D97953-2DAC-4C98-84D4-BAAC451E36B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pressure\bin\pressure.exe FirewallRules: [{ADD28696-A71E-4A2C-93DA-E2239701BCC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pressure\bin\pressure.exe FirewallRules: [UDP Query User{33BE0A42-C659-4953-950F-B84801C441A8}C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{17C6B3EF-3EBC-4698-BCF5-624535317296}C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{9A77DD48-DBED-4A90-963F-25B726FFC771}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{3B55E64B-ACF3-4C71-800F-1DDE3F0ECA55}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{1AED6325-EE6E-4C15-B4CA-55244A725C6C}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{C4C08580-C767-4B92-BBCB-3021C4FDCB96}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{6FEC78BF-7248-42C2-B91A-8D39E3B110AB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{2E1F51CE-C475-4BBE-828E-B7A2DCC510D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe FirewallRules: [{64D9B411-E1BC-492B-B82B-F88FB8816A28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{000BCD4D-271E-486B-9782-1796776BB219}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe FirewallRules: [{211BDD79-BFE0-4BD9-9E2E-9F29C60F9E4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{D4A5CFEE-AE57-4345-929B-10D5BB537043}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{EEBF064B-7E40-4C60-9D87-CD7B94CA7D87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\60 Seconds!\60Seconds.exe FirewallRules: [{29CA1B11-2294-448F-A855-AA6DCA854102}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\60 Seconds!\60Seconds.exe FirewallRules: [{BEDB0D37-09F3-42E6-848F-D9A89FFC9239}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2 Sixense Perceptual Pack\portal2.exe FirewallRules: [{AEA8E7B5-1323-45E5-96F2-136817DB4320}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2 Sixense Perceptual Pack\portal2.exe FirewallRules: [{0629CA25-5F49-4962-A9DC-5A1B3037BE20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{AB552833-4BC3-4F64-80AD-A0CBE82144E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{4BB15619-204C-4E55-8E15-18EA3FE3671F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{04C3BE31-12DC-4703-B85C-25C4C6E42F53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{5F1A957D-B6CF-402B-AFF1-EB331E289E85}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe FirewallRules: [{8061B91A-359A-41FC-8D5F-C874B1E18DCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal\hl2.exe FirewallRules: [{CE617D5D-20B9-4FEB-B120-799A6811EF9C}] => (Allow) C:\Program Files\Parsec\parsecd.exe FirewallRules: [TCP Query User{176150EE-BF9C-4141-BD55-8110F684A63C}C:\program files (x86)\club penguin 3d\club penguin 3d.exe] => (Allow) C:\program files (x86)\club penguin 3d\club penguin 3d.exe FirewallRules: [UDP Query User{D98ADC59-E2B0-4CDC-9563-FC216AA93DFF}C:\program files (x86)\club penguin 3d\club penguin 3d.exe] => (Allow) C:\program files (x86)\club penguin 3d\club penguin 3d.exe FirewallRules: [TCP Query User{2338A80C-0C36-410A-AF2D-6B72D8617260}C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{BB5D3504-D5CD-4F4E-ADAC-3679DFE5A1C5}C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) C:\users\patri\documents\curse\minecraft\install\runtime\jre-x64\1.8.0_51\bin\javaw.exe FirewallRules: [{4199B522-A570-45CB-82EF-ED4A83EE3248}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe FirewallRules: [{90786621-FC8C-4BBA-9ED0-4F2EA5E217BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe FirewallRules: [{66D82032-0E51-42F0-9F68-271B428B0D4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Air Brawl\Air Brawl.exe FirewallRules: [{C920EBA3-CAB8-4132-BA75-3A7075ABCF08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Air Brawl\Air Brawl.exe FirewallRules: [TCP Query User{B936A2AA-6EC4-4639-A74A-9C2B70A7D14B}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe FirewallRules: [UDP Query User{465DD360-6BB9-4037-B386-9125A1993C61}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe FirewallRules: [TCP Query User{3824213C-228A-4E34-80DD-F61C0BDAC02C}C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe FirewallRules: [UDP Query User{675C4ECA-38BC-4CCE-AE77-585A5FC62465}C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin32release\game.exe FirewallRules: [{CA27EDBB-3B41-4729-9D38-5103A1B7AB20}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{98C93319-6C8C-405A-9D6F-9556AFE8CC72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{3ABE222F-2037-4B88-AD5E-73C8B3F572E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe FirewallRules: [{89D655FC-AD36-4913-A0B9-C4E876C98E01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe FirewallRules: [{2CD905D3-4AE8-411D-B6E5-96E13DD2A1C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman™\Launcher.exe FirewallRules: [{41C5B827-E264-4E94-A1BF-AA9326E2654E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hitman™\Launcher.exe FirewallRules: [{ED90BCCC-C473-41D5-93FB-6278CD1D37C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{6D7D4964-817F-4ED2-A2D3-EE6030D2F3D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{97A16A11-DE8B-4CF9-B97A-3C954C02D211}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe FirewallRules: [{D24C45F5-C999-4960-872E-15D24352D5A2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe FirewallRules: [TCP Query User{70EE2C2B-5A13-47EC-B0C4-539094431B5D}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe FirewallRules: [UDP Query User{2FE5058E-CFBD-4C59-B9DC-EBDC50830F67}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe FirewallRules: [{B3F9352B-174E-4325-9CE6-54AF675FCE81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [{C2D7EC04-A830-4A34-9B7A-1FF3C40EF204}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [TCP Query User{128522E2-8880-4C68-9C73-05FBF5FADBD3}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe FirewallRules: [UDP Query User{34CAAABE-3BFD-4585-9F5F-C647895729DC}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe FirewallRules: [TCP Query User{614981DE-9110-4E0F-A1E0-7DDF20417400}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{F6400D22-A631-4241-B83C-02D46B8CDE47}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{448B08CE-012F-46CD-BB47-DF6D3295D1A7}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{F5CBF7CB-E137-4377-98EE-575FCDE8A3CE}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{95D0DE7D-D940-4CCC-AD6D-2A4FEAD3A9BE}C:\xampp\php\php.exe] => (Allow) C:\xampp\php\php.exe FirewallRules: [UDP Query User{93ADA575-34B0-4103-BBE4-16C76A31CA81}C:\xampp\php\php.exe] => (Allow) C:\xampp\php\php.exe FirewallRules: [{02D6A6EE-0902-4DA3-8031-5907FD91AE8B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{3B973F63-4C0D-4CF2-87F7-251B394DCCB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8E377D87-2D23-4B5E-AFE2-CFF7EF3C1F30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{18608BA5-A564-4844-841B-2C553B84EA31}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{5E41E8BE-CD64-4728-9608-95D5C635E7FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{66140E01-FEAD-4A4E-A1B9-0709A1DD3CA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{96D8D47F-182B-4F75-92F2-B3DFFC6F405A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{70B2FE78-D042-4C25-9D83-5F761789E103}C:\users\patri\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patri\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{16014121-2B79-4878-B4D5-BE1EA5B70C41}C:\users\patri\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patri\appdata\roaming\spotify\spotify.exe FirewallRules: [{4DF85432-6BB8-4350-9E1F-377FB2A6B3CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{4C7C06DA-9EC0-4611-A577-D8BBC90BDB05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{564FF8F8-42ED-46A8-B3AF-500338992FD9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe FirewallRules: [{97BFF20E-9BBE-4CBF-B343-4D26AABC82D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe FirewallRules: [{3E7429D7-6507-4653-8F48-EDB9D1E3BB0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Snails\epic_snails.exe FirewallRules: [{B274EB5E-5B1C-4D8B-ACE7-3103E7FE8585}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Snails\epic_snails.exe FirewallRules: [{8471A3F9-1861-4A51-AA84-667874EC68BA}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{0B0CF5A5-65CD-4D8D-B48F-477FECBED243}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{5A3B826C-E5B9-48E5-A02C-4C163C690815}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{9038CE4E-222C-4049-8111-58A749246466}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{5C99A06B-D3D7-4967-8377-D1AC6923D0B8}] => (Allow) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe FirewallRules: [{5C538BA9-0F55-405A-9197-EB61B9DAA775}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{728B7C07-F0BD-43DD-8558-4713DF83E66E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{5B31E8FF-5451-4A2D-A150-D25798DA2141}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{11A256AB-4A46-4469-A0C5-D67673A5B19B}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{C6FF838A-4683-4EDA-AFB7-03F924B9CD84}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{1544810A-C01D-4194-ABD5-805F0598B02D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{95DD18FD-28FF-4E05-959B-B8DA298CD6F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe FirewallRules: [{1AA90D42-2C61-44EB-A2E9-35FAAB831A8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe FirewallRules: [{92B657DF-AD82-4133-9895-7A1A031627C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\VRPlayground\SlimeRancher.exe FirewallRules: [{958B46A3-998D-44FD-ABB5-BBADE1B5B797}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\VRPlayground\SlimeRancher.exe ==================== Points de restauration ========================= 10-11-2018 19:03:43 Point de contrôle planifié 14-11-2018 19:15:44 Windows Update 23-11-2018 17:56:13 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/27/2018 11:32:20 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ALEXI) Description: Windows ne peut pas charger la DLL de compteur extensible « C:\WINDOWS\system32\sysmain.dll » (code d'erreur Win32 126). Error: (11/27/2018 11:32:20 AM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (11/27/2018 11:21:38 AM) (Source: MSSQLServerADHelper100) (EventID: 100) (User: ) Description: '0' is an invalid number of start up parameters. This service takes two start up parameters. Error: (11/26/2018 07:55:23 PM) (Source: MSSQLServerADHelper100) (EventID: 100) (User: ) Description: '0' is an invalid number of start up parameters. This service takes two start up parameters. Error: (11/26/2018 07:40:44 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/26/2018 07:39:06 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (11/26/2018 05:41:42 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme SystemSettings.exe version 10.0.17763.1 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 3b6c Heure de début : 01d4859f2ba5ba47 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Windows\ImmersiveControlPanel\SystemSettings.exe ID de rapport : c7d8630f-7d71-4be6-9b9b-e80a92d9c05c Nom complet du package défectueux : windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy ID de l'application relative à un package défectueux : microsoft.windows.immersivecontrolpanel Type de blocage : Quiesce Error: (11/26/2018 05:27:07 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ALEXI) Description: Windows ne peut pas charger la DLL de compteur extensible « C:\WINDOWS\system32\sysmain.dll » (code d'erreur Win32 126). Erreurs système: ============= Error: (11/27/2018 11:34:33 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Service Broker du moniteur d'exécution System Guard est en attente de démarrage. Error: (11/27/2018 11:32:30 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service NO-IP DUC v4.1.1 est en attente de démarrage. Error: (11/27/2018 11:32:15 AM) (Source: DCOM) (EventID: 10016) (User: ALEXI) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID ALEXI\Alexi de l’utilisateur (S-1-5-21-559249008-301149163-1135055631-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/27/2018 11:28:12 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Gestionnaire des cartes téléchargées est en attente de démarrage. Error: (11/27/2018 11:26:13 AM) (Source: DCOM) (EventID: 10016) (User: ALEXI) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID ALEXI\Alexi de l’utilisateur (S-1-5-21-559249008-301149163-1135055631-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/27/2018 11:26:03 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Optimisation de livraison est en attente de démarrage. Error: (11/27/2018 11:25:33 AM) (Source: DCOM) (EventID: 10016) (User: ALEXI) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID ALEXI\Alexi de l’utilisateur (S-1-5-21-559249008-301149163-1135055631-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/27/2018 11:23:22 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Le pilote a détecté une erreur de pilote interne sur \Device\VBoxNetLwf. Windows Defender: =================================== Date: 2018-10-04 21:12:12.518 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/WpePro&threatid=2147627942&enterprise=0 Nom : HackTool:Win32/WpePro ID : 2147627942 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\patri\Desktop\WPE PRO (CPPS EXPLOITS)\WpeSpy.dll Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-JJDC5PQ\patri Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.277.344.0, AS: 1.277.344.0, NIS: 1.277.344.0 Version du moteur : AM: 1.1.15300.6, NIS: 1.1.15300.6 Date: 2018-11-27 11:25:12.140 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.277.344.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15300.6 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =================================== Date: 2018-11-18 10:43:31.651 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-18 10:43:31.648 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-18 10:43:31.628 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-18 10:43:31.625 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-18 10:34:45.465 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-17 16:03:35.504 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-17 11:16:53.516 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-11-16 17:23:24.762 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVG\Antivirus\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 84% Mémoire physique - RAM - totale: 8130.64 MB Mémoire physique - RAM - disponible: 1296.99 MB Mémoire virtuelle totale: 14018.64 MB Mémoire virtuelle disponible: 6322.9 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:915.21 GB) (Free:143.56 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: ("Recovery") (Fixed) (Total:13.6 GB) (Free:1.63 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] \\?\Volume{7ed73017-48c2-4284-af48-5713cd54986b}\ (Windows RE tools) (Fixed) (Total:1 GB) (Free:0.63 GB) NTFS \\?\Volume{2ce35a9d-8365-48b1-874c-b169fc9764d6}\ () (Fixed) (Total:0.77 GB) (Free:0.33 GB) NTFS \\?\Volume{71d28b7c-eecf-4fe9-bcf1-5a5360e6abd6}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS \\?\Volume{8e163469-4625-4ab8-971a-15e864326edd}\ (SYSTEM) (Fixed) (Total:0.35 GB) (Free:0.3 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 547A8C44) Partition: GPT. ==================== Fin de Addition.txt ============================