Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14.01.2019 01 Exécuté par ZixxosDev (15-01-2019 21:14:43) Exécuté depuis C:\Users\Zixxos\Desktop Windows 10 Education Version 1809 17763.253 (X64) (2018-12-26 12:27:45) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-542197270-3551194383-3529754735-500 - Administrator - Disabled) Damie (S-1-5-21-542197270-3551194383-3529754735-1003 - Limited - Enabled) => C:\Users\Damie DefaultAccount (S-1-5-21-542197270-3551194383-3529754735-503 - Limited - Disabled) Invité (S-1-5-21-542197270-3551194383-3529754735-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-542197270-3551194383-3529754735-504 - Limited - Disabled) ZixxosDev (S-1-5-21-542197270-3551194383-3529754735-1001 - Administrator - Enabled) => C:\Users\Zixxos ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 30.0.0.107 - Adobe Systems Incorporated) Analyseur et SDK MSXML 4.0 SP2 (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) AudioSwitch (HKLM-x32\...\AudioSwitch_is1) (Version: 2.2.2.0 - ) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Browser pour SQL Server 2017 (HKLM-x32\...\{D98813EC-043B-42FF-BF20-FD9C8B131A43}) (Version: 14.0.1000.169 - Microsoft Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform) Cryptographic Provider for Windows OS (HKLM-x32\...\{DAB78977-B639-47AF-87BC-F3FF3DC62998}) (Version: 1.3.1 - Intel Corporation) Hidden Cryptographic Provider for Windows OS (HKLM-x32\...\{eda5f31b-27b4-4644-80b1-e7d0c03f935f}) (Version: 1.3.1 - Intel Corpration) Dell SupportAssistAgent (HKLM\...\{8D7B279C-A661-465C-9658-F62FBD6A6B91}) (Version: 2.1.3.5 - Dell) Discord (HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\Discord) (Version: 0.0.302 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden EaseUS Partition Master 13.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS) Enregistreur VSS Microsoft pour SQL Server 2017 (HKLM\...\{ABFDE56B-6E10-4864-9091-7333D4A0B9E7}) (Version: 14.0.1000.169 - Microsoft Corporation) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Evernote v. 6.11.2 (HKLM-x32\...\{FC67AAF6-3477-11E8-B094-005056951CAD}) (Version: 6.11.2.7027 - Evernote Corp.) FileZilla Client 3.34.0 (HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\FileZilla Client) (Version: 3.34.0 - Tim Kosse) Filmora 8.3 Resource Pack version 8.3 (HKLM-x32\...\{D9387CFD-5715-4E2E-B273-372FDFB7B549}_is1) (Version: 8.3 - ask4pc) Filmora Halloween Pack (ask4pc) version 8.1 (HKLM-x32\...\{79CB1002-62B0-4E09-AFC5-8E9BC17C44DB}_is1) (Version: 8.1 - ask4pc) Filmora Horror Pack (ask4pc) version 8.1 (HKLM-x32\...\{C493A45D-CDB7-432B-8192-BFECB422700B}_is1) (Version: 8.1 - ask4pc) Firefox Developer Edition 64.0 (x64 en-US) (HKLM\...\Firefox Developer Edition 64.0 (x64 en-US)) (Version: 64.0 - Mozilla) Free Devis Factures 2 (HKLM-x32\...\FREE DEVIS FACTURES 2) (Version: 2.0.420.0 - Free Devis Factures) GDR 2002 pour SQL Server 2017 (KB4293803) (64-bit) (HKLM\...\KB4293803) (Version: 14.0.2002.14 - Microsoft Corporation) Git version 2.19.1 (HKLM\...\Git_is1) (Version: 2.19.1 - The Git Development Community) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Web Designer (HKLM\...\{811767F4-C586-4673-A41F-E9D767497222}) (Version: 3.0.2.0 - Google LLC.) Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1036 - Intel Corporation) Intel(R) Online Connect Software Asset Manager (HKLM-x32\...\{AE956AB9-CD98-4F1E-8B9E-C3C66E290D64}) (Version: 3.4.2072 - Intel Corporation) Hidden Killer Drivers (HKLM\...\{6A3DE09C-615D-4D3D-9087-EDED261BC0E6}) (Version: 1.5.1608 - Rivet Networks) Killer Performance Driver Suite (HKLM\...\{76A64BEB-A0A9-498C-B5C4-E3340DD7F497}) (Version: 1.5.1613 - Rivet Networks) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Logitech - Assistant pour jeux vidéo 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.88 - Logitech Inc.) LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Microsoft .NET Core SDK 2.1.502 (x64) (HKLM-x32\...\{6e700b89-6f3c-4dff-b957-44b77c8a4b0e}) (Version: 2.1.502 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft ODBC Driver 13 for SQL Server (HKLM\...\{49B9ED0C-74F8-4414-897E-F0DFC64E2EB5}) (Version: 14.0.2002.14 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{BD124715-29D5-4A2E-82EE-0F4392D9CFE3}) (Version: 11.3.6020.0 - Microsoft Corporation) Microsoft SQL Server 2017 (64-bit) (HKLM\...\Microsoft SQL Server SQL2017) (Version: - Microsoft Corporation) Microsoft SQL Server 2017 Setup (English) (HKLM\...\{E1E91B67-CCB7-4126-A8DE-151CD27DCA3B}) (Version: 14.0.2002.14 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{9B3F0A88-790D-3AD9-9F96-B19CF2746452}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.40303 - Microsoft Corporation) Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.23.0 - Microsoft Corporation) Mises à jour NVIDIA 34.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 34.0.0.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.40303 - Microsoft Corporation) Mozilla Firefox 64.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 64.0.2 (x64 fr)) (Version: 64.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.11 - MSI) Node.js (HKLM\...\{9A1DA61D-112C-46CE-AB8F-AD31985866F5}) (Version: 10.13.0 - Node.js Foundation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation) Oracle VM VirtualBox 5.2.22 (HKLM\...\{B3F7EC27-5008-4131-9C45-839E545C5675}) (Version: 5.2.22 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.33.19463 - Electronic Arts, Inc.) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Panneau de configuration NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden PhotoFiltre 7 (HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\PhotoFiltre 7) (Version: - ) Python 3.5.2 (64-bit) (HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\{d46281ac-f66b-4246-8cfe-34f61512982f}) (Version: 3.5.2150.0 - Python Software Foundation) Python 3.5.2 Core Interpreter (64-bit) (HKLM\...\{E151A5E4-D373-4388-82FB-0C9F5F6CFB76}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Development Libraries (64-bit) (HKLM\...\{5397E020-59CB-43BF-A0FE-32B26DE98187}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Documentation (64-bit) (HKLM\...\{911FCD3E-A42F-472C-983A-0518799BFE7D}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Executables (64-bit) (HKLM\...\{24C31CC2-A8F2-417E-A61B-5E682D39893B}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 pip Bootstrap (64-bit) (HKLM\...\{A74E3253-CB6C-4214-8964-FFCEB37DB5D8}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Standard Library (64-bit) (HKLM\...\{976C50E6-00DF-40A6-9E59-70A4F3EF4E32}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Tcl/Tk Support (64-bit) (HKLM\...\{A4B31C78-C884-4B36-BDE4-FBAD3A2A1C7E}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Test Suite (64-bit) (HKLM\...\{7BA8A393-A7EB-4529-8A63-D7A4502C0D24}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Utility Scripts (64-bit) (HKLM\...\{E5642976-7F8E-41C1-A249-419B809CA2A8}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) SAP .Net Connector 3.0 for .NET 4.0 on x64 (HKLM\...\{8BB447A9-A3A3-4613-858F-26F77B12367A}) (Version: 3.0.16 - SAP) Service de langage T-SQL Microsoft SQL Server 2017 (HKLM\...\{7051E3D8-7B59-4E38-A94F-BBA621D98267}) (Version: 14.0.1000.169 - Microsoft Corporation) SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.98.0213 - Electronic Arts) SQL Server 2017 Batch Parser (HKLM\...\{2C6E8311-28BD-4615-9545-6E39E8E83A4B}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Common Files (HKLM\...\{4C958FD2-5387-4EAA-A827-3C90F6E8AC88}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Common Files (HKLM\...\{9D1C0509-D490-4E9E-ACF5-A73E5C53742D}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Connection Info (HKLM\...\{A9A443F5-56E1-4FC6-937C-5F481345A843}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Connection Info (HKLM\...\{D47BE444-DEA1-4BC2-9C26-8E33095D5DB4}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Database Engine Services (HKLM\...\{A6689B3A-B518-4338-B027-3319565AF2E1}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Database Engine Services (HKLM\...\{DED314CA-0EFE-4593-9D66-EF75E5289A4C}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Database Engine Shared (HKLM\...\{0E22DBB4-691B-400C-B52D-8DFE8EC421AA}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Database Engine Shared (HKLM\...\{EF16163F-7C31-4F6D-9884-3284ACBABD8F}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 DMF (HKLM\...\{B9998A13-5563-496C-B95E-597FFC70B670}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 DMF (HKLM\...\{FB704EC4-73B0-4684-A3BF-553E53301412}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Full text search (HKLM\...\{C37AD300-12CF-4911-9019-A05D66055EB4}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Shared Management Objects (HKLM\...\{6CBBF624-696C-499E-948D-ADBAFFA2F548}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Shared Management Objects (HKLM\...\{D8B6AB86-87F1-482D-8F0A-2E2CB684792B}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Shared Management Objects Extensions (HKLM\...\{8C515C22-BE07-4908-985C-0AA9349E1ED4}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 Shared Management Objects Extensions (HKLM\...\{FF2700F0-34D4-44CF-BEB9-7D676FF8E3F9}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 SQL Diagnostics (HKLM\...\{DFA6A906-3024-49DE-87AD-750EAED2FA49}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 XEvent (HKLM\...\{6372DD65-0F93-4262-B9F5-5ACC6E9E731C}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden SQL Server 2017 XEvent (HKLM\...\{AA2A015C-C210-413B-95F6-BF9D3CDD6E0D}) (Version: 14.0.1000.169 - Microsoft Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sublime Text Build 3170 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) Sybase PowerDesigner 15.1 (HKLM-x32\...\{D88DF8F0-B749-4D26-AFBC-A6E588099793}) (Version: 15.1.2850 - Sybase Inc.) Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{61702639-6539-473A-8FE5-618E194C0069}) (Version: 2.7.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 27.0 - Ubisoft) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) VEGAS Pro 15.0 (HKLM\...\{E1892AB0-7FC4-11E7-9146-95BE57594EAC}) (Version: 15.0.177 - VEGAS) VEGAS Pro 16.0 (HKLM\...\{0A32E1A1-A098-11E8-973C-00155D6302F2}) (Version: 16.0.248 - VEGAS) Wampserver64 3.1.7 (HKLM\...\{wampserver64}_is1) (Version: 3.1.7 - Dominique Ottello aka Otomatic) Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) Wireshark 2.6.5 64-bit (HKLM-x32\...\Wireshark) (Version: 2.6.5 - The Wireshark developer community, hxxps://www.wireshark.org) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-542197270-3551194383-3529754735-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-04A85AB05E10}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-542197270-3551194383-3529754735-1001_Classes\CLSID\{53B2AC1B-7B81-47FC-8D3B-595CDE21D0BA}\InprocServer32 -> E:\Programmes\Evernote\EvernoteCCx64.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041) CustomCLSID: HKU\S-1-5-21-542197270-3551194383-3529754735-1001_Classes\CLSID\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}\InprocServer32 -> E:\Programmes\Evernote\EvernoteIEx64.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) CustomCLSID: HKU\S-1-5-21-542197270-3551194383-3529754735-1001_Classes\CLSID\{93c503ec-b307-4339-bca2-37fe3b4836e8}\InprocServer32 -> E:\Programmes\Evernote\EvernoteOLShim64.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] () ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-13] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-13] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => F:\Programmes\Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-10-14] () ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-13] (AVAST Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\Programmes\rarext64.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\Programmes\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-13] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] () ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-13] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\Programmes\rarext64.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\Programmes\rarext.dll [2017-08-11] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0180BB7E-79FE-40F0-8B32-4F1F6DDAB846} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation) Task: {142A9B2B-DB10-47DB-9F21-5D786384CBCE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-18] (Google Inc.) Task: {17657664-7CE2-422A-8846-E05A3B219A4C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {1A8A7AB6-C1BA-43B7-BEA0-716050E0AB3E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-12-06] (NVIDIA Corporation) Task: {1B1CBCF8-4182-411E-9FE6-4E9531799C8A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd) Task: {216B5784-36F9-4E39-A62F-F813FE8C8136} - System32\Tasks\Nahimic2Svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe Task: {29084104-14A1-43E2-B4FC-274FFDBC3365} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-zixxosgaming@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-12-13] (Adobe Systems, Incorporated) Task: {2D5CBAE1-F6A2-4952-AD95-C0F72C5E8312} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {2DECB449-079B-413D-AAEC-1ECE58E5A981} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-12-06] (NVIDIA Corporation) Task: {2ED3DD9B-407C-458C-810E-333634395AA7} - System32\Tasks\BundleApplicationRepairToolLauncherTask => C:\Users\Zixxos\AppData\Roaming\PCDr\Repair\BundleApplicationRepairTool.exe [2018-02-12] () Task: {43D5E659-53A3-4541-A8D6-D7B7F20DBD5E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation) Task: {4ABD6CF9-D8E7-4937-9238-C26029047F18} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => F:\Programmes\Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {548EE593-DAF2-4A5C-953D-656FB91CB1CB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => F:\Programmes\Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {5A0AB7DE-8FD8-485A-8CC3-5CE417FB06C4} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {5AB667D3-7BD8-4878-B206-DA116657958D} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7 => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-09-29] (Intel Corporation) Task: {640E2BAD-B050-4319-A98B-A2A87100BA31} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-12-22] (Dell Inc.) Task: {68967F2A-23D0-4025-A288-01C34F0E0C4C} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {7067B50E-67FF-455E-B900-8B803F71DF1A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation) Task: {7A2C74D1-F260-4BA5-AFD9-C3BB742147DE} - System32\Tasks\Driver Booster SkipUAC (Zixxos) => F:\Programmes\Driver Booster\4.5.0\DriverBooster.exe Task: {7F919412-7C45-4A07-97CC-B249EC30927C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {85EC8215-C696-4ECB-BE45-36536C78B8F6} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {898ABA94-6902-4709-AD74-B6939386C2FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-18] (Google Inc.) Task: {98C40FD9-DE31-4B1B-BB81-D1FE2640D204} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-14] (AVAST Software) Task: {9B295EF2-24C1-495D-81ED-DA4689E64F93} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation) Task: {9EB254B6-80B3-4F8F-BB81-696879949A9F} - System32\Tasks\Nahimic2Svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe Task: {AD916C14-9D95-4239-91AC-FB7AC3571C3D} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-zixxosgaming@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {C1333E8E-F8D3-43EC-B5F0-EC554C4DAF21} - System32\Tasks\Driver Booster SkipUAC (ZixxosDev) => F:\Programmes\Driver Booster\4.5.0\DriverBooster.exe Task: {C8572F4F-B06A-49D5-B267-3C61AE769F67} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe Task: {CE4EA1CC-2611-469D-96CE-AD2935767E88} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-12-06] (NVIDIA Corporation) Task: {D15D4842-CA8A-41AD-81E9-2C873A1D2C0D} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation) Task: {DD98C531-B4D3-481C-8169-63DDD47802A2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd) Task: {E2342B76-4B18-4398-9D8B-AF07793BF75C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-13] (AVAST Software) Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] () Task: {E3EBB1BB-7E11-45FD-9388-AD9D3B5B8630} - System32\Tasks\IntelIOC-Upgrade-f1c8187b-2653-47cd-a9be-b554b98f68a7-Logon => C:\Program Files (x86)\Intel\Intel(R) Online Connect Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2016-09-29] (Intel Corporation) Task: {E5B98172-799C-4DD8-BCFD-F128F5F92659} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset Task: {FD9D7E73-A4DB-4E9B-BCA2-E7EF99A2018E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel(R) Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Zixxos\Desktop\DEV\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation) ==================== Modules chargés (Avec liste blanche) ============== 2017-11-18 20:56 - 2018-10-11 00:10 - 000154152 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-10-05 12:15 - 2016-10-05 12:15 - 000107752 _____ () C:\Program Files\Intel\Intel(R) Online Connect Access\libglog.dll 2016-10-05 12:15 - 2016-10-05 12:15 - 000412904 _____ () C:\Program Files\Intel\Intel(R) Online Connect Access\JsonCpp.dll 2018-07-09 13:47 - 2018-12-06 11:14 - 001315312 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2019-01-12 18:11 - 2018-11-15 11:01 - 002712432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-03-05 20:47 - 2018-03-05 20:47 - 000614848 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-12-26 12:54 - 2018-12-26 12:54 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-10-14 19:45 - 2018-10-14 19:45 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2019-01-10 17:33 - 2019-01-10 17:33 - 005172224 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe 2019-01-10 17:33 - 2019-01-10 17:33 - 002172928 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.dll 2019-01-10 17:33 - 2019-01-10 17:33 - 001795584 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneContentDataStore.dll 2018-10-30 20:01 - 2018-10-30 20:02 - 001004032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2019-01-10 17:33 - 2019-01-10 17:33 - 002907136 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll 2018-12-08 10:57 - 2018-12-08 10:58 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-12-08 10:57 - 2018-12-08 10:57 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll 2017-12-01 16:29 - 2017-12-01 16:29 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2018-11-28 18:38 - 2018-11-28 18:39 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-12-08 10:57 - 2018-12-08 10:57 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll 2018-12-08 10:57 - 2018-12-08 10:57 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll 2018-07-09 13:47 - 2018-12-06 11:14 - 101252592 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-07-09 13:47 - 2018-12-06 11:14 - 004620272 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll 2018-07-09 13:47 - 2018-12-06 11:14 - 000109040 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2017-10-20 04:29 - 2017-10-20 04:29 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2017-10-20 04:29 - 2017-10-20 04:29 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2017-10-18 18:47 - 2017-10-18 18:48 - 098275328 _____ () E:\Programmes\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll 2017-10-18 18:48 - 2017-10-18 18:48 - 003922432 _____ () E:\Programmes\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll 2017-10-18 18:48 - 2017-10-18 18:48 - 000092672 _____ () E:\Programmes\Games\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll 2017-11-18 22:23 - 2017-10-24 12:24 - 000149504 _____ () F:\Programmes\AudioSwitch\AudioSwitch.exe 2019-01-13 15:09 - 2019-01-13 15:09 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2019-01-13 15:09 - 2019-01-13 15:09 - 000667016 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2018-08-29 09:30 - 2018-10-30 19:06 - 001057056 _____ () H:\Programmes\Steam\bin\cef\cef.win7x64\SDL2.dll 2018-08-29 09:30 - 2018-09-23 01:00 - 102804768 _____ () H:\Programmes\Steam\bin\cef\cef.win7x64\libcef.dll 2018-08-29 09:30 - 2018-09-23 01:00 - 004866336 _____ () H:\Programmes\Steam\bin\cef\cef.win7x64\libglesv2.dll 2018-08-29 09:30 - 2018-09-23 01:00 - 000116000 _____ () H:\Programmes\Steam\bin\cef\cef.win7x64\libegl.dll 2016-10-04 17:09 - 2016-10-04 17:09 - 000253664 _____ () C:\Program Files\Intel\Intel(R) Online Connect\CSLibWrapper.dll 2018-12-25 15:43 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2018-12-25 15:43 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll 2017-11-18 21:05 - 2018-12-06 11:14 - 001033200 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-05-02 17:36 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\Zixxos\AppData\Local\Discord\app-0.0.301\ffmpeg.dll 2018-05-02 17:36 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\Zixxos\AppData\Local\Discord\app-0.0.301\libglesv2.dll 2018-05-02 17:36 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\Zixxos\AppData\Local\Discord\app-0.0.301\libegl.dll 2017-11-20 19:17 - 2018-10-30 19:06 - 000879904 _____ () H:\Programmes\Steam\SDL2.dll 2017-11-20 19:17 - 2016-09-01 02:02 - 004969248 _____ () H:\Programmes\Steam\v8.dll 2017-11-20 19:17 - 2019-01-05 00:33 - 002650400 _____ () H:\Programmes\Steam\video.dll 2017-11-20 19:17 - 2016-09-01 02:02 - 001563936 _____ () H:\Programmes\Steam\icui18n.dll 2017-11-20 19:17 - 2016-09-01 02:02 - 001195296 _____ () H:\Programmes\Steam\icuuc.dll 2017-12-14 17:30 - 2017-12-20 02:43 - 005137696 _____ () H:\Programmes\Steam\libavcodec-57.dll 2017-12-14 17:30 - 2017-12-20 02:43 - 000695584 _____ () H:\Programmes\Steam\libavformat-57.dll 2017-12-14 17:30 - 2017-12-20 02:43 - 000351520 _____ () H:\Programmes\Steam\libavresample-3.dll 2017-12-14 17:30 - 2017-12-20 02:43 - 000847136 _____ () H:\Programmes\Steam\libavutil-55.dll 2017-12-14 17:30 - 2017-12-20 02:43 - 000783648 _____ () H:\Programmes\Steam\libswscale-4.dll 2017-11-20 19:17 - 2019-01-05 00:33 - 001028384 _____ () H:\Programmes\Steam\bin\chromehtml.DLL 2017-11-20 19:17 - 2016-07-04 23:17 - 000266560 _____ () H:\Programmes\Steam\openvr_api.dll 2018-05-02 17:36 - 2018-12-18 21:05 - 011328856 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node 2018-05-02 17:36 - 2018-11-16 14:01 - 001639256 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node 2018-05-02 17:36 - 2018-05-02 17:36 - 001910104 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-05-02 17:36 - 2018-05-02 17:36 - 000422744 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-05-02 17:36 - 2018-05-02 17:36 - 000145240 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-05-02 17:36 - 2018-05-02 17:36 - 000512856 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node 2018-05-02 17:36 - 2018-12-18 21:05 - 001658712 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node 2018-10-01 17:05 - 2018-10-17 15:32 - 009621848 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node 2018-05-02 17:36 - 2018-05-02 17:36 - 002722648 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node 2018-08-20 18:06 - 2018-12-13 16:27 - 001261400 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node 2018-08-20 18:06 - 2019-01-09 16:42 - 022034264 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node 2018-05-02 17:36 - 2018-05-02 17:36 - 002760536 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node 2018-05-02 17:36 - 2018-05-02 17:36 - 001249112 _____ () \\?\C:\Users\Zixxos\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node 2016-10-20 01:28 - 2016-10-20 01:28 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2019-01-13 18:22 - 2019-01-13 18:22 - 085602816 _____ () E:\Program Files (x86)\Battle.net\Battle.net.10892\libcef.dll 2019-01-13 18:22 - 2019-01-13 18:22 - 000540336 _____ () E:\Program Files (x86)\Battle.net\Battle.net.10892\ortp.dll 2019-01-13 18:22 - 2019-01-13 18:22 - 000089600 _____ () E:\Program Files (x86)\Battle.net\Battle.net.10892\libEGL.dll 2019-01-13 18:22 - 2019-01-13 18:22 - 003841536 _____ () E:\Program Files (x86)\Battle.net\Battle.net.10892\libGLESv2.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [486] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\localhost -> localhost ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-01-09 22:18 - 2019-01-09 22:26 - 000000039 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\GtkSharp\2.12\bin;F:\Programmes\Microsoft SQL Server\Client SDK\ODBC\130\Tools\Binn\;F:\x86\Microsoft SQL Server\140\Tools\Binn\;F:\Programmes\Microsoft SQL Server\140\Tools\Binn\;F:\Programmes\Microsoft SQL Server\140\DTS\Binn\;C:\WINDOWS\System32\OpenSSH\;F:\Programmes\nodejs\;F:\Programmes\Git\cmd;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\ HKU\S-1-5-21-542197270-3551194383-3529754735-1001\Control Panel\Desktop\\Wallpaper -> E:\Users\Zixxos\Download\kali5.jpg HKU\S-1-5-80-2652535364-2169709536-2857650723-2622804123-1107741775\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-80-3263513310-3392720605-1798839546-683002060-3227631582\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKLM\...\StartupApproved\StartupFolder: => "Killer Control Center.lnk" HKLM\...\StartupApproved\Run: => "Nahimic2UILauncher" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "Super Charger" HKLM\...\StartupApproved\Run32: => "Nahimic2UILauncher" HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk" HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-542197270-3551194383-3529754735-1001\...\StartupApproved\Run: => "Chromium" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{CA377BFD-FBCC-4C70-9216-FD9B37147399}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation) FirewallRules: [{2EF6BD07-E8B9-4A86-8EFC-7546473EE481}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation) FirewallRules: [{6D0AAA11-99D2-4B82-BF4C-3F2CEE396887}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{3AEB7F02-A77B-4F6F-BB6B-047C7D90EB30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{5BDD294D-3814-4018-BAFA-0A1DE7283643}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) FirewallRules: [{166E13AE-8FBD-4867-8715-22EE38F0D9E6}] => (Allow) E:\Program Files (x86)\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{192CFC15-4A8E-422F-A0F5-41199B2ED7A5}] => (Allow) E:\Program Files (x86)\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{2B915150-3EF9-4175-9B9B-61FA0DFCE43B}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [{9181AAF3-4164-45FC-93B1-0E7B3DCE7BD6}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [UDP Query User{D030BF0E-7B15-4F44-ABBB-A867440BA97D}I:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe] => (Allow) I:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe Pas de fichier FirewallRules: [TCP Query User{4E438D4A-653D-4ECB-B337-234924649674}I:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe] => (Allow) I:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe Pas de fichier FirewallRules: [UDP Query User{0352EFDC-A5C1-4D40-96B1-E74CD487D733}I:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe] => (Allow) I:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe Pas de fichier FirewallRules: [TCP Query User{0B67C72B-28C8-45E4-957F-A1E18DCD208F}I:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe] => (Allow) I:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe Pas de fichier FirewallRules: [UDP Query User{270DA5E1-CAC0-4742-925D-D7E16F5F2B71}F:\programmes\nodejs\node.exe] => (Allow) F:\programmes\nodejs\node.exe (Node.js) FirewallRules: [TCP Query User{4BBCE8E9-7C4C-4CB9-8BD3-7F5CD17200D3}F:\programmes\nodejs\node.exe] => (Allow) F:\programmes\nodejs\node.exe (Node.js) FirewallRules: [{3B2A8DEF-3A22-4D19-8C65-6D3FAEA04CC1}] => (Allow) C:\Users\Zixxos\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) FirewallRules: [{B6C72465-3848-4D91-9F13-81E51BF820BB}] => (Allow) C:\Users\Zixxos\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) FirewallRules: [{6A36E52D-0ED7-42C5-9BA3-66D75C9D2B10}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation) FirewallRules: [{48435253-FD53-4C07-9014-245C7E9749CE}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation) FirewallRules: [{2ADCC781-8100-4C4F-BAC6-F937F28140A3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{D516D9D9-C971-49B9-9583-A3166C817B87}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{C7D6835C-2D6B-4074-92A8-271852F19D41}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations) FirewallRules: [{CD88E2E2-752E-4758-BB2A-F598507E4EEA}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations) FirewallRules: [{91EFB840-BBAE-4372-909B-C5118827426B}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (Ubisoft) FirewallRules: [{B9346307-3766-493C-8E0B-477A644D2863}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (Ubisoft) FirewallRules: [{47BE0A20-B189-4122-9687-2650B9D02E12}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Shotgun Legend\Shotgun Legend.exe (Wastebasket Games ) FirewallRules: [{E4757826-E9EB-44A5-BF61-54DBB80C9686}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Shotgun Legend\Shotgun Legend.exe (Wastebasket Games ) FirewallRules: [UDP Query User{4E7BB733-7525-4764-90EB-C9E1AD911A5E}F:\programmes\steamlibrary\steamapps\common\watch this!\engine\binaries\win32\ue4game-win32-shipping.exe] => (Allow) F:\programmes\steamlibrary\steamapps\common\watch this!\engine\binaries\win32\ue4game-win32-shipping.exe (Epic Games, Inc.) FirewallRules: [TCP Query User{30EA303E-C9C3-4CFD-9C78-70AA09CAF3CF}F:\programmes\steamlibrary\steamapps\common\watch this!\engine\binaries\win32\ue4game-win32-shipping.exe] => (Allow) F:\programmes\steamlibrary\steamapps\common\watch this!\engine\binaries\win32\ue4game-win32-shipping.exe (Epic Games, Inc.) FirewallRules: [{720D1C4D-A3FF-4607-9240-E8DA0237A391}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Watch This!\WatchThis.exe () FirewallRules: [{F56ACB5A-49A3-42F9-B59E-6B583AEFEDB8}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Watch This!\WatchThis.exe () FirewallRules: [{74FEA0BE-D4FB-4BEE-AB70-CAEB00D7AC24}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Planet of Mubu\Planet_of_Mubu.exe ( ) FirewallRules: [{FFE13B06-C4D5-41A1-AC4F-C2E486FEF6EF}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Planet of Mubu\Planet_of_Mubu.exe ( ) FirewallRules: [{A310D887-58FE-47E5-8BEF-C0ECB0748AA7}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\BombTag\BombTag.exe () FirewallRules: [{E1BFB549-9E7C-4D97-B68C-EB04C4909F0B}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\BombTag\BombTag.exe () FirewallRules: [{DD4EB9BB-AF81-4CF7-88AC-F8CE1816F22A}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () FirewallRules: [{AC94DB93-AA24-4885-8C03-9E253E5892D7}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Business Tour\BusinessTour.exe () FirewallRules: [{3DCBA5B5-3906-4B70-B85C-02050EB6C2AA}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! Zero 2\Zup! Zero 2.exe () FirewallRules: [{C99C83FC-107B-4128-949A-68F057665DB9}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! Zero 2\Zup! Zero 2.exe () FirewallRules: [{3C78FD70-5586-4064-86C7-414C872FC310}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! X\Zup! X.exe () FirewallRules: [{308E41AE-C224-4583-888D-A1A917CC7D66}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! X\Zup! X.exe () FirewallRules: [{70DA204C-7540-4DE3-8F55-38E6D824AD35}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 8\Zup! 8.exe () FirewallRules: [{28DC3736-1276-476E-AB20-9F7ED182FFAC}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 8\Zup! 8.exe () FirewallRules: [{E67C2804-480E-4679-8759-B25AF6736BE1}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 7\Zup! 7.exe () FirewallRules: [{5C7A3E59-6C6D-4BCF-8B7E-0027DA2AA0F5}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 7\Zup! 7.exe () FirewallRules: [{E1A9BB16-2986-4F15-BEDD-FFB4FE472151}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 6\Zup! 6.exe () FirewallRules: [{9809C174-CB1B-44A2-979B-A6C7D90637B1}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 6\Zup! 6.exe () FirewallRules: [{F8F2B737-F06B-4DE6-824A-491EEA5A2477}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 5\Zup! 5.exe () FirewallRules: [{90B9B84C-38CD-430D-B82C-BFA4E34E08C4}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 5\Zup! 5.exe () FirewallRules: [{83931A3E-F403-4217-AC32-797257A7E698}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 4\Zup! 4.exe () FirewallRules: [{A0021434-05B4-463D-B5E3-68C65D1E8DDF}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 4\Zup! 4.exe () FirewallRules: [{202A4C07-0138-4E82-82E6-231A9DCF4A8E}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 3\Zup! 3.exe () FirewallRules: [{43CA3F3C-4BC4-43B3-B529-76FD563FAFF4}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 3\Zup! 3.exe () FirewallRules: [{700FEA96-229E-4BDD-AC6D-9F5625D69637}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 2\Zup! 2.exe () FirewallRules: [{FDF80C37-6FBF-4E9A-BC6A-34AB662393EF}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! 2\Zup! 2.exe () FirewallRules: [{5664ED18-D5F7-40DF-8CD0-641AE533E930}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup!\Zup!.exe () FirewallRules: [{CD6758AF-C635-4FC1-AE99-3EB2EE7A4000}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup!\Zup!.exe () FirewallRules: [{D5DCFDE2-2FA5-4C2F-A4ED-D5B4D490D229}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! Zero\Zup! Zero.exe () FirewallRules: [{05B485FC-D728-425C-852C-743C4DF45B93}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Zup! Zero\Zup! Zero.exe () FirewallRules: [{06BB3234-68D3-4674-900E-FF20CE4264DB}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Ball 3D\Ball 3D.exe () FirewallRules: [{90F07416-E568-40F7-8822-F7B31A9D997B}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Ball 3D\Ball 3D.exe () FirewallRules: [{5CA77AC0-1DA5-4283-929A-BB7968CAFD72}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve) FirewallRules: [{F74C5C27-D165-43D8-9B09-B2EFA48C9782}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve) FirewallRules: [{296C92E0-593B-4835-A9B2-4FEEE6485C7B}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [{1D02F6E9-CED5-4D61-BC7C-AF64EDABE621}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [{5BEB8695-7519-41A8-B027-AB9D8C56DC5E}] => (Allow) H:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) FirewallRules: [{93A6A6A1-1A7F-43D4-AD5E-EE9ADE56C6A5}] => (Allow) H:\Programmes\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation) FirewallRules: [{FD475D27-8A61-4D60-8AEC-1840B7BCB1A1}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Boson X\bosonx.exe () FirewallRules: [{2964B5DF-6A44-40AD-8DA1-C0AAD338F25A}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\Boson X\bosonx.exe () FirewallRules: [UDP Query User{3521AC0D-1A1E-479E-A647-889E9D97D8A0}F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games, Inc.) FirewallRules: [TCP Query User{7DF94B0E-E101-4312-A156-DE7683427050}F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games, Inc.) FirewallRules: [UDP Query User{4784588B-8A40-4291-9BFC-CEB2BA0BC342}E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.) FirewallRules: [TCP Query User{40BF66F8-1801-414E-A08F-F943B55BD8AA}E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.) FirewallRules: [{639247FA-3558-44FD-BCFE-EF8FA800B53F}] => (Allow) H:\Programmes\Steam\steamapps\common\Soundpad\Soundpad.exe (Leppsoft) FirewallRules: [{7632E4E1-02DB-4500-BE69-1B4EEEFCAB10}] => (Allow) H:\Programmes\Steam\steamapps\common\Soundpad\Soundpad.exe (Leppsoft) FirewallRules: [{47C540FE-C7B5-4545-9FCA-F57425D9A6FA}] => (Allow) H:\Programmes\Steam\steamapps\common\H1Z1\LaunchPad.exe (Daybreak Game Company) FirewallRules: [{0314CA3C-E8A4-403B-92E6-B6B8DF1B0E5F}] => (Allow) H:\Programmes\Steam\steamapps\common\H1Z1\LaunchPad.exe (Daybreak Game Company) FirewallRules: [UDP Query User{6857E456-7E0C-4034-B7AA-281FBEC295AF}H:\programmes\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) H:\programmes\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company) FirewallRules: [TCP Query User{56D05398-A795-4BED-803C-25D1F37CBACA}H:\programmes\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) H:\programmes\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company) FirewallRules: [{254C81BC-9E99-4E6C-9242-0C4A9F83DF6B}] => (Allow) H:\Programmes\Steam\Steam.exe (Valve Corporation) FirewallRules: [{02020132-7BAC-479A-B1D0-678910B7429D}] => (Allow) H:\Programmes\Steam\Steam.exe (Valve Corporation) FirewallRules: [UDP Query User{441B377E-BEDE-44CB-B2BA-4ADDE64A4C23}F:\programmes\games\overwatch\overwatch.exe] => (Allow) F:\programmes\games\overwatch\overwatch.exe (Blizzard Entertainment) FirewallRules: [TCP Query User{FCC798BE-0CB9-4C2B-9C77-724D91F3D7F8}F:\programmes\games\overwatch\overwatch.exe] => (Allow) F:\programmes\games\overwatch\overwatch.exe (Blizzard Entertainment) FirewallRules: [UDP Query User{9F7F0890-9B9B-43A5-BB54-CC5B8DE87FF7}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.) FirewallRules: [TCP Query User{82060AE5-4828-4104-98B3-A8163F6015EE}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.) FirewallRules: [{AE617DFE-519D-42CF-BB6F-A724BC1FB344}] => (Allow) H:\Programmes\Steam\steamapps\common\Arma 3\arma3launcher.exe (Bohemia Interactive) FirewallRules: [{423C8F8C-FF5E-4470-B4D2-37CB3FB9A4B5}] => (Allow) H:\Programmes\Steam\steamapps\common\Arma 3\arma3launcher.exe (Bohemia Interactive) FirewallRules: [{5C02761C-8ACB-4234-891A-725913FEEAFC}] => (Allow) H:\Programmes\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe () FirewallRules: [{1446CAE5-7727-4AA4-B986-F8773CDF6543}] => (Allow) H:\Programmes\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe () FirewallRules: [TCP Query User{CC0BFAE2-70FD-4FAA-9CBE-9EE15888F134}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.) FirewallRules: [UDP Query User{A3A91CEA-F03A-4982-804D-8A2EDF59415F}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.) FirewallRules: [TCP Query User{35926ED7-4A30-419A-A914-1F146AC6F702}E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.) FirewallRules: [UDP Query User{59C19E64-B069-4A78-BFD6-0C852025BECE}E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\programmes\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.) FirewallRules: [TCP Query User{66018CC0-F8D8-424B-808D-D7B02F8701C6}H:\programmes\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) H:\programmes\steam\steamapps\common\arma 3\arma3_x64.exe (Bohemia Interactive) FirewallRules: [UDP Query User{4E9938E1-1671-4750-A86A-2DA726A44326}H:\programmes\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) H:\programmes\steam\steamapps\common\arma 3\arma3_x64.exe (Bohemia Interactive) FirewallRules: [{97646E08-8F2F-414E-A871-7C6027007671}] => (Allow) F:\Programmes\Kill Ping\Kill Ping.exe () FirewallRules: [{2A7F6795-9D6D-4D51-B060-F19C7957767E}] => (Allow) H:\Programmes\Steam\steamapps\common\Steep\steep.exe () FirewallRules: [{33396E5F-8C2F-44C0-BF48-3901C66DA67F}] => (Allow) H:\Programmes\Steam\steamapps\common\Steep\steep.exe () FirewallRules: [TCP Query User{49BA4ABE-506C-420C-A968-FE1A6E18218A}H:\programmes\jeux\age of empires iii\bin\age3y.exe] => (Allow) H:\programmes\jeux\age of empires iii\bin\age3y.exe (Microsoft Corporation) FirewallRules: [UDP Query User{65B19D93-767E-4CAC-A658-6D4C396255D0}H:\programmes\jeux\age of empires iii\bin\age3y.exe] => (Allow) H:\programmes\jeux\age of empires iii\bin\age3y.exe (Microsoft Corporation) FirewallRules: [{EDE3795A-896E-41E2-B272-DD3D013DBFD7}] => (Allow) E:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts Inc.) FirewallRules: [{34AF67D2-C6CC-42E9-95C2-0C169215C88F}] => (Allow) E:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts Inc.) FirewallRules: [{F10DB23F-CF79-435C-A41A-9D51107E2231}] => (Allow) F:\Programmes\Office\Office16\outlook.exe (Microsoft Corporation) FirewallRules: [{64B0F7EC-623E-4E76-90D4-AC32EDEB836E}] => (Allow) H:\Programmes\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations) FirewallRules: [{9C27D666-FCA9-4EB7-9C9F-67CF7429366B}] => (Allow) H:\Programmes\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations) FirewallRules: [{1CA67A61-5B90-4E9F-B945-5A172DD48A1C}] => (Allow) F:\Programmes\Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{8635558C-5884-49C5-8CCA-8E884A42E048}] => (Allow) F:\Programmes\Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{AB786917-A8F6-4F66-B378-85B121F696DB}] => (Allow) F:\Programmes\Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [{E11ECBD1-1E06-42AF-8AFE-267CA3F59F45}] => (Allow) F:\Programmes\Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [TCP Query User{BC061E85-6D72-434E-AF5C-47B072115D62}F:\programmes\sublime text 3\plugin_host.exe] => (Allow) F:\programmes\sublime text 3\plugin_host.exe () FirewallRules: [UDP Query User{4AAE3F50-23AA-4348-937A-584798D9DDA4}F:\programmes\sublime text 3\plugin_host.exe] => (Allow) F:\programmes\sublime text 3\plugin_host.exe () FirewallRules: [{48D23308-A172-439B-80B5-8AA94AE71224}] => (Allow) H:\Programmes\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Ltd) FirewallRules: [{E0BD8413-B0F5-4735-86EA-4D5AA657454E}] => (Allow) H:\Programmes\Steam\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe (EasyAntiCheat Ltd) FirewallRules: [TCP Query User{A469DAA3-929C-4A9E-B05F-19417119FF75}H:\programmes\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) H:\programmes\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.) FirewallRules: [UDP Query User{9F868B39-17DB-4360-AB6D-DCB113AAF862}H:\programmes\steam\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) H:\programmes\steam\steamapps\common\realm royale\binaries\win64\realm.exe (Hirez Studios, Inc.) FirewallRules: [{0EE4B160-5057-45D1-96BE-F6FA8F9B0056}] => (Allow) F:\Programmes\Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{E4158656-B2DC-4EE3-BDD1-7B2BFD9C0C8C}] => (Allow) F:\Programmes\Office\Office16\lync.exe (Microsoft Corporation) FirewallRules: [{40EE2A02-4FA4-41EF-A36D-CD84A1987684}] => (Allow) F:\Programmes\Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [{6EF422F4-A41C-42C2-8DDF-C46AD4A31C0D}] => (Allow) F:\Programmes\Office\Office16\UcMapi.exe (Microsoft Corporation) FirewallRules: [{9B70C437-7B07-4FCC-AAA6-0CA6EAC8EB2F}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\ActionRecorder\Action.exe (Mirillis Ltd.) FirewallRules: [{0A4034E9-44B2-4316-9055-DCB8F84DA9EA}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\ActionRecorder\Action.exe (Mirillis Ltd.) FirewallRules: [{219BAB43-6F13-4029-BAEA-3A37477CC39F}] => (Allow) C:\Users\Zixxos\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) FirewallRules: [TCP Query User{783BD3AF-5D2A-4C82-B0E3-D35683F1CCA0}F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games, Inc.) FirewallRules: [UDP Query User{1507124B-7E92-470E-856F-4C5D7EAF36D8}F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) F:\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games, Inc.) FirewallRules: [{C85C7DDF-E9B1-40BC-AD20-299BF1068BFB}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\GarrysMod\hl2.exe () FirewallRules: [{D058E896-5DA1-457B-AAB2-2824743F5B20}] => (Allow) F:\Programmes\SteamLibrary\steamapps\common\GarrysMod\hl2.exe () FirewallRules: [{E77B9743-7F8B-4055-BDA7-BD642E3F9E4B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [{3B41FBB2-45DD-4174-9A76-A7E6B3008DCF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) FirewallRules: [TCP Query User{995B7F26-6C3C-4072-A371-88008962F0CB}F:\programmes\sublime text 3\plugin_host.exe] => (Allow) F:\programmes\sublime text 3\plugin_host.exe () FirewallRules: [UDP Query User{D5C0B3CE-290A-4286-BB07-82CA79F21606}F:\programmes\sublime text 3\plugin_host.exe] => (Allow) F:\programmes\sublime text 3\plugin_host.exe () FirewallRules: [{7D6B212F-FF17-4999-B530-6A72F12355D5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{CEFB3854-2C7F-442B-8B95-ADC8E51E8CA6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{C7D7C974-5C37-4605-928F-1C8D9120E807}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [{24B06C49-9834-407C-830E-C4DDE5CB6113}] => (Allow) H:\Programmes\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) FirewallRules: [TCP Query User{98126B8C-3145-46F8-9DF8-4BEE4B5027C1}J:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe] => (Allow) J:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe Pas de fichier FirewallRules: [UDP Query User{47D7FA98-D6E2-488D-96C5-4C9E8C201220}J:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe] => (Allow) J:\laragon\bin\apache\httpd-2.4.27-win64-vc14\bin\httpd.exe Pas de fichier FirewallRules: [TCP Query User{F1D0C797-A6A1-446B-8C95-FFDEA8F2ECDA}J:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe] => (Allow) J:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe Pas de fichier FirewallRules: [UDP Query User{E799876B-5B2D-4684-A0C6-42FAF9CD59D8}J:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe] => (Allow) J:\laragon\bin\mysql\mysql-5.7.19-winx64\bin\mysqld.exe Pas de fichier FirewallRules: [{C1FF2710-0DFD-4362-A7DB-1E30901198C8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{8CBAA744-F325-4341-BD35-EE959A3E2505}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [TCP Query User{4F082501-ACD8-4DDD-8E9F-FF1B9C1CAF5D}F:\programmes\games\overwatch\overwatch.exe] => (Allow) F:\programmes\games\overwatch\overwatch.exe (Blizzard Entertainment) FirewallRules: [UDP Query User{5AE9D2BA-C407-4E1B-A424-D9B883F5EB18}F:\programmes\games\overwatch\overwatch.exe] => (Allow) F:\programmes\games\overwatch\overwatch.exe (Blizzard Entertainment) ==================== Points de restauration ========================= 13-01-2019 13:19:07 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 15-01-2019 18:05:32 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Clavier standard PS/2 Description: Clavier standard PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Claviers standard) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Souris Microsoft PS/2 Description: Souris Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/15/2019 05:25:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Nom du module défaillant : LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000000000104f23 ID du processus défaillant : 0xea0 Heure de début de l’application défaillante : 0x01d4aceef5475026 Chemin d’accès de l’application défaillante : C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe Chemin d’accès du module défaillant: C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe ID de rapport : 1ab975c3-78c2-434e-8e75-02d248e0e8b2 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/15/2019 05:25:25 PM) (Source: Killer Network Service) (EventID: 16) (User: ) Description: Event-ID 16 Error: (01/14/2019 05:21:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Nom du module défaillant : LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000000000104f23 ID du processus défaillant : 0x3024 Heure de début de l’application défaillante : 0x01d4ac253689080f Chemin d’accès de l’application défaillante : C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe Chemin d’accès du module défaillant: C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe ID de rapport : 3fc21fec-1d4e-4ed0-8216-6ede0bb0aa8a Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/14/2019 05:21:31 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files\AVAST Software\Avast\AvastSvc.exe, PID : 3232, PID ProfSvc : 1548. Error: (01/14/2019 05:21:17 PM) (Source: Killer Network Service) (EventID: 16) (User: ) Description: Event-ID 16 Error: (01/13/2019 03:53:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Nom du module défaillant : LAClient.exe, version : 1.1.133.0, horodatage : 0x59962590 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000000000104f23 ID du processus défaillant : 0x3208 Heure de début de l’application défaillante : 0x01d4ab4fbed5417f Chemin d’accès de l’application défaillante : C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe Chemin d’accès du module défaillant: C:\Program Files\Logitech Gaming Software\LAClient\LAClient.exe ID de rapport : b79e0261-c872-4580-a213-142f03531fa8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/13/2019 03:53:19 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_ON. Error: (01/13/2019 03:52:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante LegacyCsLoaderService.exe, version : 1.9.5.68, horodatage : 0x57f5510a Nom du module défaillant : KERNELBASE.dll, version : 10.0.17763.134, horodatage : 0x1659a33b Code d’exception : 0x40000015 Décalage d’erreur : 0x0000000000055299 ID du processus défaillant : 0x27c0 Heure de début de l’application défaillante : 0x01d4ab4f7fe50f44 Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel(R) Online Connect Access\LegacyCsLoaderService.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : c3b81ed4-f077-49f5-9fb0-b3487a110164 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (01/15/2019 09:12:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-76UGBFA) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID DESKTOP-76UGBFA\ZixxosDev de l’utilisateur (S-1-5-21-542197270-3551194383-3529754735-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/15/2019 06:05:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Origin Client Service s’est terminé de façon inattendue pour la 1ème fois. Error: (01/15/2019 05:53:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service WpnUserService_4f7be s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (01/15/2019 05:40:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070057 : 9ND94HKF4S0Z-AppUp.SGXDFP. Error: (01/15/2019 05:37:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service WpnUserService_4f7be s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (01/15/2019 05:34:32 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-76UGBFA) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID DESKTOP-76UGBFA\ZixxosDev de l’utilisateur (S-1-5-21-542197270-3551194383-3529754735-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/15/2019 05:27:59 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-76UGBFA) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID DESKTOP-76UGBFA\ZixxosDev de l’utilisateur (S-1-5-21-542197270-3551194383-3529754735-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/15/2019 05:26:04 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Intel(R) Online Connect Helper. Windows Defender: =================================== Date: 2019-01-12 11:32:20.811 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0 Nom : Trojan:Win32/Bluteal!rfn ID : 2147724737 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Windows\files\bin\KMSS.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-76UGBFA\ZixxosDev Nom du processus : C:\Windows\files\kmss.dat Version de la signature : AV: 1.283.2764.0, AS: 1.283.2764.0, NIS: 1.283.2764.0 Version du moteur : AM: 1.1.15500.2, NIS: 1.1.15500.2 Date: 2019-01-11 19:36:46.251 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {BC5AAF2A-8DF7-4260-8059-F8A983E762B0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-01-02 14:17:02.994 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {D6B09C9B-A5C5-4A63-9181-EE52555B43CB} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-12-27 16:34:22.968 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {6CFA6AB8-19CF-43C0-8A5D-D70EA0BB4D46} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-12-26 13:37:20.274 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nom : HackTool:Win32/AutoKMS ID : 2147685180 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\Zixxos\Desktop\DEV\Apprentissage\BTSSIO\Attente\MICROSOFT OFFICE 2016\Microsoft Toolkit.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : AUTORITE NT\Système Nom du processus : C:\Windows\System32\SearchProtocolHost.exe Version de la signature : AV: 1.283.1524.0, AS: 1.283.1524.0, NIS: 1.283.1524.0 Version du moteur : AM: 1.1.15500.2, NIS: 1.1.15500.2 Date: 2019-01-10 17:35:25.331 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.283.2672.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15500.2 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Pourcentage de mémoire utilisée: 20% Mémoire physique - RAM - totale: 32694.35 MB Mémoire physique - RAM - disponible: 26113.42 MB Mémoire virtuelle totale: 37558.35 MB Mémoire virtuelle disponible: 29752.68 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:222.42 GB) (Free:17.99 GB) NTFS Drive e: (HDD) (Fixed) (Total:457.43 GB) (Free:250.42 GB) NTFS Drive f: (DATA) (Fixed) (Total:457.77 GB) (Free:124.52 GB) NTFS Drive g: (Kingston) (Fixed) (Total:55.35 GB) (Free:53.74 GB) NTFS Drive h: (Toshiba) (Fixed) (Total:931.51 GB) (Free:793.67 GB) NTFS \\?\Volume{29691f0e-c1ff-4afc-b4e5-5cd31d52b55c}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS \\?\Volume{726ed40b-f113-4122-a8ec-e9f3e40241cd}\ (Recovery) (Fixed) (Total:0.39 GB) (Free:0.12 GB) NTFS \\?\Volume{15dc9279-01f9-4f70-8447-5a57f2f5d1c3}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS \\?\Volume{641bb68c-3818-4099-abda-125028d8808e}\ (Push Button Reset) (Fixed) (Total:15.17 GB) (Free:1.79 GB) NTFS \\?\Volume{acfa4114-c1b3-4bac-8118-7e80c1232256}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS \\?\Volume{32327887-2fe0-4193-af95-def64f013eab}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS \\?\Volume{4d995422-f535-416a-8218-ad4dcb5c146f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 \\?\Volume{6e3f9a5e-10b9-4482-b307-40875ec371a3}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 \\?\Volume{11065ea9-f262-4d7b-bf92-f4672c5624a2}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 55.9 GB) (Disk ID: 0ED98DB2) Partition: GPT. ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: A0C6BA82) Partition: GPT. ======================================================== Disk: 2 (Size: 223.6 GB) (Disk ID: A029CC27) Partition: GPT. ======================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 41492688) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================