Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 05-08-2019 Exécuté par BARRANGER (06-08-2019 13:07:38) Exécuté depuis D:\BARRANGER\Bureau Windows 10 Pro N Version 1903 18362.267 (X64) (2019-07-08 15:40:41) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3865479405-2261672943-2852135937-500 - Administrator - Disabled) BARRANGER (S-1-5-21-3865479405-2261672943-2852135937-1001 - Administrator - Enabled) => C:\Users\BARRANGER DefaultAccount (S-1-5-21-3865479405-2261672943-2852135937-503 - Limited - Disabled) Invité (S-1-5-21-3865479405-2261672943-2852135937-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3865479405-2261672943-2852135937-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) . . (HKLM\...\{89B9210B-8111-438F-B51B-7AB64F658E2C}) (Version: 7.1 - Intel) Hidden . . . (HKLM-x32\...\{DEAF3493-EBF3-40F2-9D8A-5BD016E9E47C}) (Version: 2.8.1.9 - Intel) Hidden µTorrent (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\uTorrent) (Version: 3.5.5.45311 - BitTorrent Inc.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}) (Version: 23.5.17750 - Acronis) Hidden Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}Visible) (Version: 23.5.17750 - Acronis) Adobe Acrobat 4.0 (HKLM-x32\...\Adobe Acrobat 4.0) (Version: 4.0 - Adobe Systems, Inc.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.010.20091 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.207 - Adobe) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.) AdoptOpenJDK JRE avec Hotspot 11.0.3.7 (x64) (HKLM\...\{EB1A316D-D3D6-40F7-A70C-F0F02365F835}) (Version: 11.0.3.7 - AdoptOpenJDK) AdoptOpenJDK JRE avec Hotspot 8.0.212.03 (x64) (HKLM\...\{318E3208-3ABD-44AE-AF80-089F13306CC6}) (Version: 8.0.212.03 - AdoptOpenJDK) AdoptOpenJDK JRE avec Hotspot 8.0.212.03 (x86) (HKLM-x32\...\{69DA9C42-5C94-4FD9-8DB4-1FCA95C06CFE}) (Version: 8.0.212.03 - AdoptOpenJDK) AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2084, 01.12.2018 - AIMP DevTeam) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.4.3 - Advanced Micro Devices, Inc.) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 5.2.2 - philandro Software GmbH) Apple Application Support (32 bits) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{6F085FCD-4B6A-4F63-AF23-B74629C40797}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation) ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.27 - ASUSTek COMPUTER INC.) Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team) Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.) Bitwarden (HKLM\...\173a9bac-6f0d-50c4-8202-4744c69d091a) (Version: 1.14.0 - 8bit Solutions LLC) Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden CASIO FA-124 (HKLM-x32\...\{FB47E710-6249-4EFA-BE36-E922B0612AF4}) (Version: 2.00.0001 - CASIO COMPUTER CO., LTD.) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco Packet Tracer 6.2 Student (HKLM-x32\...\Cisco Packet Tracer 6.2 Student_is1) (Version: - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.) CrystalDiskInfo 8.2.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.2.0 - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0770 - Disc Soft Ltd) Deezloader Remix 4.2.0 (HKLM\...\5eed4b40-1ed5-51be-ab52-56cdb94a998f) (Version: 4.2.0 - RemixDevs) Deezloader Remix 4.2.0 (HKLM-x32\...\5eed4b40-1ed5-51be-ab52-56cdb94a998f) (Version: 4.2.0 - RemixDevs) Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version: - ) Discord (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) DriversCloud.com (64 bits) (HKLM\...\{B8C26C25-0652-4D1D-90EF-330EAD99FFDC}) (Version: 10.0.8.0 - Cybelsoft) Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{006C8256-3855-43BF-8BA5-4B4C40F41F71}) (Version: 3.10.0065 - Seiko Epson Corporation) Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 2.56.00 - Seiko Epson Corporation) Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation) EPSON WF-2630 Series Printer Uninstall (HKLM\...\EPSON WF-2630 Series) (Version: - SEIKO EPSON Corporation) EPSON WF-2760 Series Printer Uninstall (HKLM\...\EPSON WF-2760 Series) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) f.lux (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\Flux) (Version: - f.lux Software LLC) FastStone Capture 9.0 (HKLM-x32\...\FastStone Capture) (Version: 9.0 - FastStone Soft) FormatFactory 4.6.2.0 (HKLM-x32\...\FormatFactory) (Version: 4.6.2.0 - Free Time) Forza Horizon 3 [FULL REMOVAL] (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\{2BF89276-C6E6-4E56-AF93-633A36F02D58}_is1) (Version: 1.0.119.1002 - Microsoft Studios) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.6.0.25114 - Foxit Software Inc.) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GIMP 2.10.10 (HKLM\...\GIMP-2_is1) (Version: 2.10.10 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC) Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google) Google SketchUp 8 (HKLM-x32\...\{E3F4EA31-41D7-4789-9AC4-F26CDAF797BA}) (Version: 3.0.14354 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Intel® Driver Update Utility (HKLM-x32\...\{411cfca4-41d9-44e3-9d3e-2de29d4804e4}) (Version: 2.8.1.9 - Intel) IObit Uninstaller 8 (HKLM-x32\...\IObitUninstall) (Version: 8.4.0.8 - IObit) iTunes (HKLM\...\{6DBC2AD3-28FC-4691-8A96-9049420C1DEC}) (Version: 12.4.3.1 - Apple Inc.) Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation) Java SE Development Kit 8 Update 144 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180144}) (Version: 8.0.1440.1 - Oracle Corporation) LibreOffice 6.2.0.3 (HKLM-x32\...\{C0B9601C-3433-41E2-B681-4C86274F0656}) (Version: 6.2.0.3 - The Document Foundation) Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) Logitech - Assistant pour jeux vidéo 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.) Logitech Options (HKLM\...\LogiOptions) (Version: 7.14.70 - Logitech) Microsoft Flight Simulator pour Windows 95 (HKLM-x32\...\Flight Simulator 6.0) (Version: - ) Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.11929.20002 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\OneDriveSetup.exe) (Version: 19.126.0627.0002 - Microsoft Corporation) Microsoft Project Professionnel 2019 - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.11929.20002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visio Professionnel 2019 - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.11929.20002 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation) Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft) MightyText (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\MightyText) (Version: 4.3.0 - MightyText) Mises à jour NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden Mobizen (HKLM-x32\...\{BA0D3A44-BCEE-4C8B-BCD4-F7F1E64F41E3}) (Version: 2.21.5.15 - RSUPPORT) MouseServer version 1.5.0.0 (HKLM-x32\...\{E13018F5-FFC7-4729-9C1B-1A85807D03E6}_is1) (Version: 1.5.0.0 - Necta Co.) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 68.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 68.0.1 (x64 fr)) (Version: 68.0.1 - Mozilla) Mozilla Firefox 68.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 68.0.1 (x86 fr)) (Version: 68.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0 - Mozilla) Nitro Pro 10 (HKLM\...\{CB0213D4-A664-4776-9AFF-A15EAC8FDCE4}) (Version: 10.5.9.9 - Nitro) NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote graphique 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.57 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20002 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20002 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.11929.20002 - Microsoft Corporation) Hidden OfficeSuite (HKLM-x32\...\{1aa97bb3-7747-46d7-8aa3-5e668bf63f9d}) (Version: 2.97.20104 - MobiSystems) OfficeSuite (HKLM-x32\...\{7FC14CD2-E82C-4AB8-B9C3-0D2AB4D5FC8A}) (Version: 2.97.20104.0 - MobiSystems) Hidden Ontrack® EasyRecovery™ Professional for Windows (HKLM-x32\...\Ontrack® EasyRecovery™ Professional for Windows_is1) (Version: 13.0.0.0 - Ontrack) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation) Opera Stable 60.0.3255.170 (HKLM-x32\...\Opera 60.0.3255.170) (Version: 60.0.3255.170 - Opera Software) Oracle VM VirtualBox 6.0.10 (HKLM\...\{609C0401-C840-43DD-95F4-06A53BC3E352}) (Version: 6.0.10 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.43.28287 - Electronic Arts, Inc.) Package de pilotes Windows - AMD (amdkmafd) System (08/15/2013 9.002.0.0000) (HKLM\...\8C72394F18276592DC15F403343861E70C67ECD1) (Version: 08/15/2013 9.002.0.0000 - AMD) Package de pilotes Windows - ATK (kbfiltr) Keyboard (08/02/2012 1.0.0.5) (HKLM\...\3D000CEFA8ABE154891027D80A490142AFE83EB6) (Version: 08/02/2012 1.0.0.5 - ATK) Package de pilotes Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2017 8.33.30.0) (HKLM\...\C1E56E8DB50F6668739EA600882230E1A899978E) (Version: 04/10/2017 8.33.30.0 - Graphics Tablet) paint.net (HKLM\...\{B998B716-4001-4919-BA90-BA14B51DFEB5}) (Version: 4.1.6 - dotPDN LLC) Panneau de configuration NVIDIA 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.57 - NVIDIA Corporation) Hidden PC Building Simulator Razer Workshop (HKLM-x32\...\PC Building Simulator Razer Workshop_is1) (Version: - ) PC Building Simulator v.1.1 (HKLM-x32\...\PC Building Simulator_is1) (Version: - ) PhotoFiltre 7 (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\PhotoFiltre 7) (Version: - ) PhotoFiltre Studio X (HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\PhotoFiltre Studio X) (Version: - ) Pro Evolution Soccer 2019 (HKLM-x32\...\{879B9B7F-6AAF-4686-A7FC-E937EE6BE37B}_is1) (Version: - KONAMI) PuTTY release 0.71 (64-bit) (HKLM\...\{B27534DB-4F72-4F49-A3AD-5EC1B6901E5E}) (Version: 0.71.0.0 - Simon Tatham) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.32.1206.2018 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8346 - Realtek Semiconductor Corp.) Realtek PCI-E Wireless LAN Driver (HKLM-x32\...\InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67}) (Version: Drv_3.00.0015 - REALTEK Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.) RIDE (HKLM-x32\...\UklERQ==_is1) (Version: 1 - ) Ride 2 (HKLM-x32\...\Ride 2_is1) (Version: - ) Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.) SafeIP (HKLM-x32\...\SAFEIP_is1) (Version: - SafeIP) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Skype version 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sublime Text Build 3176 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.4.2669 - TeamViewer) TECKNET wireless gaming mouse version 1.0.0.3 (HKLM-x32\...\TECKNET wireless gaming mouse_is1) (Version: - ) Thrustmaster Calibration Tool (HKLM-x32\...\{44B660BB-EAC5-4D4F-9890-C607DD5F7630}) (Version: 1.03.0000 - Thrustmaster) Thrustmaster FFB Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 2.FFD.2018 - Thrustmaster) UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: v13.15.35.180428 - ) Unlocker 1.9.0 (HKLM-x32\...\Unlocker-BackupByUnlockerPortable) (Version: 1.9.0 - Cedrick Collomb) Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft) VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN) VMware Workstation (HKLM\...\{431EEEDD-6D71-4269-8F7F-836CFAF69A17}) (Version: 15.0.2 - VMware, Inc.) VNC Viewer 6.19.325 (HKLM\...\{E074BDE7-682F-48C2-B7EB-04F0420D9239}) (Version: 6.19.325.40889 - RealVNC Ltd) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WakeOnLan v3.9.7 (HKLM-x32\...\WakeOnLan_is1) (Version: 3.9.7 - Dipisoft) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wondershare Filmora9(Build 9.1.4) (HKLM\...\Wondershare Filmora9_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Wondershare Recoverit(Build 7.1.5.20) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 7.1.5.20 - Wondershare Software Co.,Ltd.) XAMPP (HKLM-x32\...\xampp) (Version: 7.3.2-0 - Bitnami) Packages: ========= Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2811.0_x64__343d40qqvtj1t [2019-02-19] (Amazon.com) Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-03] (Microsoft Corporation) [MS Ad] Deezer Music -> C:\Program Files\WindowsApps\Deezer.62021768415AF_4.12.2.0_x86__q7m17pa7q8kj0 [2019-07-25] (Deezer SA) Forza Horizon 3 -> D:\Games\Forza Horizon 3\AppFiles [2019-08-03] (Microsoft Studios) Forza Horizon 3 Blizzard Mountain -> D:\Games\Forza Horizon 3\DLC2 [2019-08-03] (Microsoft Studios) Forza Horizon 3 Hot Wheels -> D:\Games\Forza Horizon 3\DLC1 [2019-08-03] (Microsoft Studios) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-07-20] (HP Inc.) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2019-02-19] (Instagram) Mail Orange -> C:\Program Files\WindowsApps\OrangeFrance.MailOrange_2.0.4.0_x64__3nekra66ya1hy [2019-02-19] (Orange) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-17] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-17] (Microsoft Corporation) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-21] (Microsoft Corporation) [MS Ad] PicsArt - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PicsArt-PhotoStudio_8.6.1.0_x86__crhqpqs3x1ygc [2019-07-12] (PicsArt Inc.) [MS Ad] RMC -> C:\Program Files\WindowsApps\41165Mitermite.RMC_1.1.14.0_x64__kqnspq53rphy4 [2019-02-19] (Stéphane Mitermite) [MS Ad] SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.36.0_x86__qt57b6kdvhcfw [2019-02-17] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0 [2019-08-01] (Spotify AB) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-02-19] (Twitter Inc.) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => D:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => D:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => D:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => D:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => D:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => D:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => D:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => D:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2019-05-30] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Program Files (x86)\Notepad++\NppShell_06.dll -> Pas de fichier ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-05-09] (暇光软件科技(上海)有限公司 -> Free Time) ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-06-28] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => D:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google) ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => D:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => D:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => D:/Program Files/PDFCreator/PDFCreatorShell.DLL -> Pas de fichier ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\Winrar\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\Winrar\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => D:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-11-21] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => D:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-11-21] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => D:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2019-05-30] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-05-09] (暇光软件科技(上海)有限公司 -> Free Time) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => D:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google) ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => D:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => D:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => D:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-06-28] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => D:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2018-07-21] (IObit Information Technology -> IObit) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => D:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\Winrar\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\Winrar\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\BARRANGER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\g brrng - Chrome.lnk -> D:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============== 2019-08-06 12:21 - 2019-08-06 12:21 - 000113664 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_ctypes.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000173568 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_elementtree.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001800192 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_hashlib.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000032256 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_multiprocessing.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000046080 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_psutil_windows.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000047616 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_socket.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 002230784 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_ssl.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000026112 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\_yappi.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000080896 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\bz2.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 006277632 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\cello.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000014848 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\common.time34.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000007680 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\hashobjs_ext.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000301568 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\PIL._imaging.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000169472 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\pyexpat.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001084416 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\pysqlite2._sqlite.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000548864 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\pythoncom27.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 000137728 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\pywintypes27.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 000010752 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\select.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000020992 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\thumbnails_ext.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000689664 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\unicodedata.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000118784 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\usb_ext.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000128512 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32api.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000438784 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32com.shell.shell.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000011776 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32crypt.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000023040 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32event.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000149504 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32file.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000223232 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32gui.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000048128 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32inet.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000029696 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32pdh.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000027648 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32pipe.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000044032 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32process.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000020480 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32profile.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000136192 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32security.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000026624 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\win32ts.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000034304 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\windows.conditional.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000038400 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\windows.connectivity.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000073216 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\windows.device_monitor.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000110592 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\windows.volumes.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000020480 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\windows.winwrap.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001325056 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._controls_.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001489408 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._core_.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001007104 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._gdi_.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000103424 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._html2.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 000916992 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._misc_.pyd 2019-08-06 12:21 - 2019-08-06 12:21 - 001039872 _____ () [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wx._windows_.pyd 2019-07-13 09:49 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] D:\Program Files\7-Zip\7-zip.dll 2019-02-17 21:11 - 2018-09-15 09:29 - 000097280 _____ (Microsoft Corporation) [Fichier non signé] D:\Program Files\Common Files\Microsoft Shared\Ink\tpcps.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 003042304 _____ (Python Software Foundation) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\python27.dll 2019-07-26 18:30 - 2015-08-03 08:54 - 000547328 _____ (SafeIP) [Fichier non signé] C:\WINDOWS\system32\SafeIPs64.dll 2019-07-26 18:30 - 2015-08-03 08:52 - 004606976 _____ (SafeIP) [Fichier non signé] D:\Program Files (x86)\SafeIP\SafeIPs.exe 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files (x86)\Origin\LIBEAY32.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files (x86)\Origin\ssleay32.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\platforms\qwindows.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\Qt5Core.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\Qt5Gui.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\Qt5Network.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\Qt5Widgets.dll 2019-08-03 15:06 - 2019-08-03 15:05 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] D:\Program Files (x86)\Origin\Qt5Xml.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 000202240 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxbase30u_net_vc90_x64.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 002831872 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxbase30u_vc90_x64.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 001654784 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxmsw30u_adv_vc90_x64.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 006542336 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxmsw30u_core_vc90_x64.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 000773632 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxmsw30u_html_vc90_x64.dll 2019-08-06 12:21 - 2019-08-06 12:21 - 000137216 _____ (wxWidgets development team) [Fichier non signé] C:\Users\BARRANGER\AppData\Local\Temp\_MEI140922\wxmsw30u_webview_vc90_x64.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData:gs5sys [7170] AlternateDataStreams: C:\Users\All Users:gs5sys [7170] AlternateDataStreams: C:\Users\BARRANGER:gs5sys [3074] AlternateDataStreams: C:\ProgramData\Application Data:gs5sys [7170] AlternateDataStreams: C:\Users\BARRANGER\Application Data:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\Cookies:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\Local Settings:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\Modèles:gs5sys [2048] AlternateDataStreams: C:\Users\BARRANGER\AppData\Local:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\AppData\Roaming:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\AppData\Local\Application Data:gs5sys [3074] AlternateDataStreams: C:\Users\BARRANGER\AppData\Local\Historique:gs5sys [3074] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SafeIPS => ""="service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\localhost -> localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> D:\Program Files\AdoptOpenJDK\jre-8.0.212.03-hotspot\bin;D:\Program Files (x86)\AdoptOpenJDK\jre-8.0.212.03-hotspot\bin;D:\Program Files\AdoptOpenJDK\jre-11.0.3.7-hotspot\bin;d:\program files (x86)\common files\oracle\java\javapath;c:\programdata\oracle\java\javapath;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;d:\program files (x86)\quicktime\qtsystem\;d:\program files (x86)\windows live\shared;D:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;D:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Android;C:\Windows\System32;D:\Program Files\PuTTY\;D:\Program Files (x86)\Common Files\Acronis\VirtualFile\;D:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;D:\Program Files (x86)\Common Files\Acronis\FileProtector\;D:\Program Files (x86)\Common Files\Acronis\FileProtector64\;D:\Program Files (x86)\Common Files\Acronis\SnapAPI\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: AcronisActiveProtectionService => 2 MSCONFIG\Services: AcrSch2Svc => 2 MSCONFIG\Services: afcdpsrv => 2 MSCONFIG\Services: Apple Mobile Device => 2 MSCONFIG\Services: IObitUnSvr => 2 MSCONFIG\Services: mmsminisrv => 2 MSCONFIG\Services: Mobizen plugin => 2 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: Origin Web Helper Service => 2 MSCONFIG\Services: OverwolfUpdater => 3 MSCONFIG\Services: ss_conn_service => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: syncagentsrv => 2 MSCONFIG\Services: tmGAInstall => 2 MSCONFIG\Services: VMAuthdService => 2 MSCONFIG\Services: VMnetDHCP => 2 MSCONFIG\Services: VMUSBArbService => 2 MSCONFIG\Services: VMware NAT Service => 2 MSCONFIG\Services: WindscribeService => 2 MSCONFIG\Services: WinZip Smart Monitor Service => 2 HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk" HKLM\...\StartupApproved\StartupFolder: => "OCS Inventory NG Systray.lnk" HKLM\...\StartupApproved\Run: => "Greenshot" HKLM\...\StartupApproved\Run: => "Launch LCore" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run: => "TabletDriver" HKLM\...\StartupApproved\Run: => "GameSessionsTray" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run: => "WinZip PreLoader" HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run32: => "TECKNET wireless gaming mouse" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "DSATray" HKLM\...\StartupApproved\Run32: => "Lightshot" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "vspdfprsrv.exe" HKLM\...\StartupApproved\Run32: => "OfficeSuite" HKLM\...\StartupApproved\Run32: => "UnlockerAssistant" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKLM\...\StartupApproved\Run32: => "EEventManager" HKLM\...\StartupApproved\Run32: => "FUFAXRCV" HKLM\...\StartupApproved\Run32: => "FUFAXSTM" HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\StartupFolder: => "DipisoftUpdate.lnk" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "com.squirrel.MightyText.MightyText" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000007" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000006" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000005" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000004" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000003" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000002" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001" HKU\S-1-5-21-3865479405-2261672943-2852135937-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [DNS Server Forward Rule - UDP - 70D433A8-6256-48A0-AFB9-E7DF3B1FA9C9 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - TCP - 70D433A8-6256-48A0-AFB9-E7DF3B1FA9C9 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - UDP - 8BA68CF4-F15A-4DE0-B51D-208B6CD9EFD8 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - TCP - 8BA68CF4-F15A-4DE0-B51D-208B6CD9EFD8 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - UDP - 9C1B7501-5994-40CF-91D9-23B163C69745 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - TCP - 9C1B7501-5994-40CF-91D9-23B163C69745 - 0] => (Allow) LPort=53 FirewallRules: [{E0274129-ECBA-44EE-B828-CCABDF78E16B}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{725BF607-E940-4829-921F-7F461D19A715}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> ) FirewallRules: [{83A6C888-17BA-4169-BF5D-219E9105741F}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> ) FirewallRules: [{86CBCAD5-2112-4FC6-87F2-B13C7D8DAA06}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> ) FirewallRules: [{79791F4D-10E1-4FCF-8D03-F14EC5E02B75}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> ) FirewallRules: [{8B899CCE-5795-452C-8D32-92453ECFE8A8}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{2F3CA40B-73D8-4F2A-83EF-342172B792D8}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> ) FirewallRules: [{E5C49B19-6133-4A9D-90A7-5DD6F7673E59}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> ) FirewallRules: [{111960A2-CDB0-41A7-9FC1-6AC8B7BF1D75}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> ) FirewallRules: [{B7EF8E4E-FA21-44E3-A64A-4558DE8D242B}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> ) [Fichier non signé] FirewallRules: [{2888C8E0-F873-4368-8BED-999BF1E5DD82}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> ) [Fichier non signé] FirewallRules: [{F3097D83-5216-4F2E-A48B-9D2B0D1E560F}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> ) FirewallRules: [{4D9CD432-745B-47D4-8DFA-BCC97BAE50D0}] => (Allow) D:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> ) FirewallRules: [{F4F04F43-5037-4F4D-B5D3-450320722A6E}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{F1BDFC38-CEC1-4EA1-8DDD-4D7271D753D8}] => (Allow) D:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> ) FirewallRules: [{6A5ED223-BFF2-46E2-ACD0-5A819A622DD3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{0CF6A9EF-BA48-428B-A65C-9F2B538790B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{26DEE9AD-C52C-44D6-9414-584B9E0CC4F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{8D673D5B-405B-4D75-A0FB-BC4B34AAD3C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{86B87FF9-4007-4E9C-AF88-14453D765D2C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{36DC88ED-2B66-4489-9424-178F0E4DD6DD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{82D316A6-0EBC-4838-8A0D-C8E649E72B1B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{7DF43F16-DC32-40F0-A77D-DF1F95D604C4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.110.540.0_x86__zpdnekdrzrea0\Spotify.exe Pas de fichier FirewallRules: [{E7548378-CB29-4BC4-8011-E7AC760CAD5B}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{D706D346-BDB0-40B2-A384-508C1671F18A}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{336156EF-79A0-4C74-A984-82780128B933}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{9324E81C-ACB7-4D38-BE70-7B75D7059371}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{D6F2BE3B-4437-4D59-847A-CA33ECB88C40}] => (Allow) D:\Program Files\Opera\60.0.3255.170\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{21F3EB5A-9113-42D4-A705-9B6F38C8F8BE}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{7982ACF1-875E-49A5-9897-2979271CD4F3}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{B7FBB65B-4114-47D1-B902-DE1C7D89181C}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{07AFC63E-1D88-43BA-8B3C-37BF43156CA1}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{286EFCEB-10DD-4810-9919-53BE41FDBAFD}] => (Allow) D:\Program Files\Opera\60.0.3255.151\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{FE97B88C-36F5-4EE3-978D-33D07EE59206}] => (Allow) D:\Program Files (x86)\\Bignox\\BigNoxVM\\RT\NoxVMHandle.exe Pas de fichier FirewallRules: [{AB92B0DF-2023-4A87-AECD-69569EB07C87}] => (Allow) D:\Program Files\BlueStacks\HD-Player.exe Pas de fichier FirewallRules: [UDP Query User{4FE40556-4462-497B-995C-6C9DB0386AAE}D:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) D:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [TCP Query User{6B4A4C6B-70C7-4FCD-A23C-F4A024D55F47}D:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) D:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{E999015A-41EC-4DAB-A190-3BFEE491A6F4}] => (Allow) D:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{08943030-141F-4DB2-9E03-8AA1866A0547}] => (Allow) D:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [UDP Query User{402BCD7B-A741-4CD4-A256-843211107D36}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [TCP Query User{89D25D7F-20E3-4D0D-8BC0-2C79553C34A6}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [UDP Query User{0AE500FC-7F02-4C85-BE0C-DDD79D7E16CE}D:\program files (x86)\deezloader remix\deezloader remix.exe] => (Allow) D:\program files (x86)\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé] FirewallRules: [TCP Query User{93DB983C-4498-4D66-AF16-0A7DE93904DA}D:\program files (x86)\deezloader remix\deezloader remix.exe] => (Allow) D:\program files (x86)\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé] FirewallRules: [UDP Query User{F8B139CC-53D9-4441-9D64-243BE4C92F42}D:\program files\deezloader remix\deezloader remix.exe] => (Allow) D:\program files\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé] FirewallRules: [TCP Query User{90FAF162-BE58-4815-8A2A-5AC4BA843FDE}D:\program files\deezloader remix\deezloader remix.exe] => (Allow) D:\program files\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé] FirewallRules: [{566A83DF-E75A-4C3E-91D1-B3D935F43E73}] => (Block) D:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé] FirewallRules: [{E36DDEB2-2F08-476C-86EC-88D64AA5CD10}] => (Block) D:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé] FirewallRules: [UDP Query User{0C2825A0-7AB3-41A6-9FA5-FA659C39E34C}D:\program files (x86)\deluge\deluge.exe] => (Allow) D:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé] FirewallRules: [TCP Query User{31CADE7E-8763-4241-99CB-A763904B3DB0}D:\program files (x86)\deluge\deluge.exe] => (Allow) D:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé] FirewallRules: [{73ECA73B-7F2F-4721-B12C-48F968466B17}] => (Allow) D:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{A7BB95CA-E268-44FF-95A2-DC9DB30A91BC}] => (Allow) D:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{B1FA86AF-0D31-47DB-A385-BD7BAF177D51}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe Pas de fichier FirewallRules: [{40C92B5C-E0A1-4022-8FBE-960AA4ADF02E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe Pas de fichier FirewallRules: [UDP Query User{3BAA6EC6-4978-420C-90C9-DA5F22B92198}D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe (Cisco Systems, Inc. -> ) FirewallRules: [TCP Query User{3980F024-D04A-4A64-8326-02967FDA2FDA}D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe (Cisco Systems, Inc. -> ) FirewallRules: [UDP Query User{8E9A988A-A126-443D-8183-587B57D3E533}D:\program files\logitech gaming software\lcore.exe] => (Allow) D:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{F3946985-D39D-46EE-914F-3F90E5490CA7}D:\program files\logitech gaming software\lcore.exe] => (Allow) D:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{3B7C63A3-9393-4682-973A-FAD33B4AEAE0}D:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) D:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{E83E2E48-FF5A-48F1-B685-D86643C4A4AA}D:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) D:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [UDP Query User{EA4035C3-BD56-4FB7-84C4-1C10604616B4}D:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) D:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{D2CECCFD-0BE6-4BAC-AB4D-F1A27A62B725}D:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) D:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [UDP Query User{0F3E3931-E301-4444-A238-7CE0C7C41509}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [TCP Query User{D7CF6DB6-4CAB-462F-9A11-36D1BFEEE761}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [UDP Query User{439CD99C-C690-44F6-94E6-13076DEA06EA}D:\program files\logitech gaming software\lcore.exe] => (Allow) D:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{20187FDD-D1F5-47D7-B28D-678C39E2DA39}D:\program files\logitech gaming software\lcore.exe] => (Allow) D:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{ADA091F9-0AE3-4D00-9612-C98B8FE8505A}] => (Allow) D:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{77ECEA4A-BA27-4A37-8FDB-A93A9BA30DC7}] => (Allow) D:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F4E44032-1612-41D3-9171-B52F3D4544EE}] => (Allow) D:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C473F179-A168-4A5A-A02A-4E3EED7EE97F}] => (Allow) D:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8B0ECEF4-04CB-4ABF-8F6C-C3FB9EFABA29}] => (Allow) LPort=1900 FirewallRules: [{B467D8E3-B257-493E-ADFC-FED8E4ED37A2}] => (Allow) LPort=2869 FirewallRules: [{84203998-9BC6-4D11-AA94-6C35FCDDA442}] => (Allow) D:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> ) FirewallRules: [{C6368698-8D43-4756-9C81-A083E8421D44}] => (Allow) D:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> ) FirewallRules: [{0FF17FCF-6A06-4751-9B6E-C027CF2F4EBE}] => (Allow) D:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [{F6F57123-D04B-457B-848A-761CCD4B25F6}] => (Allow) D:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [{0F9D7126-8F38-42F3-9F4A-490A8AA3E6A3}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{E04B3759-7F24-4CB7-BCAD-7134A5379A1A}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{113DDBB7-3921-415E-AAD8-3B25278CBDAE}] => (Allow) D:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{94FA2BC9-FC4C-4EA7-964F-362AB00F5251}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{1675354F-F8CA-4C92-8BD8-1FBD9B411291}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{7A2E3F9A-2AFE-494D-BE66-DE5487A98422}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe Pas de fichier FirewallRules: [{F757E8D5-1DC0-497E-A5B8-E9C83ED540A8}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe Pas de fichier FirewallRules: [{58341402-1A64-4714-8D04-557358B66C8C}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{B7D8CA01-1FE0-4ED9-A9F8-56DAEE302232}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{D651414F-F327-4908-A972-B97748EDE73B}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{CF178A8F-CF46-4316-94E8-C15B054E171E}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{56C98BF4-E41B-4AB6-9BAD-B8035FD37D0A}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{B603FA24-B235-4D80-B156-A31A36E3961B}] => (Allow) D:\Program Files (x86)\IObit\Driver Booster\6.2.1\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{7FD2B1EA-9134-4F91-8F1C-22A7D3E6BD13}] => (Allow) D:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{EFA53238-6DEE-4E55-8108-B83943447414}] => (Allow) D:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{177E5C37-DA75-476F-A84E-16B60B9E763C}] => (Allow) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [UDP Query User{EB09C74A-2D69-4C2A-874A-E7FF19914D6B}D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe (Cisco Systems, Inc. -> ) FirewallRules: [TCP Query User{6975C526-469E-43EB-9E0C-226B0C83E477}D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) D:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe (Cisco Systems, Inc. -> ) FirewallRules: [{431561F9-64E8-43CB-8A8C-878FC8935939}] => (Allow) D:\Program Files (x86)\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{699FE4B5-551A-4EA3-AC4A-ED6608B15477}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Pas de fichier FirewallRules: [{E0F5315D-3ED1-465E-BFC6-B1F4D2BFD831}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.) FirewallRules: [{F80BE1AB-559E-466E-85E9-46E20A13252A}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{9E5393BF-53BD-4412-8960-544A4388A85A}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{2AD13529-ED45-4F86-A361-A5E323424E77}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{8A147514-CF5A-41D1-BEE1-DDD7E6E54BE6}] => (Allow) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{6A021CE0-1312-429E-80E1-AE64C203ADC4}] => (Allow) D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5508139D-F90E-46BD-B0F5-005EBDA4AE66}] => (Allow) D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7ABEF21A-CA43-4389-A152-866DC04972B9}] => (Allow) D:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{A00FBF5A-31B0-4D97-AE4C-473EFE4F53FC}] => (Allow) C:\Users\BARRANGER\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{06757FB2-F917-4435-879F-40FC7B76A360}] => (Allow) C:\Users\BARRANGER\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{CF5F3A8D-E0C4-4ABB-B9D2-8D77FEEDF6F1}] => (Allow) D:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CA3D680D-FFBF-44DF-87ED-3A1EAFCAC197}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B5B898A1-2272-4E4C-9389-939DD21A2421}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B42BE03D-1F6F-4108-B547-BF247CC6DE97}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{49FDE3FF-086D-4BDA-88D7-046B9EAA82A4}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{251F7335-55DC-4D26-B554-4CD0E6D904D1}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9B169A64-CBAD-4835-BAD4-FDC88E933823}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0EF25892-5A5D-4C6F-89D5-0BD4C98E5AEE}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B4A6C7B9-A3C1-4DF6-99D9-548356369A64}] => (Allow) D:\WindowsApps\SpotifyAB.SpotifyMusic_1.112.449.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{E9A642B7-9DA3-402B-AFE3-1650A1B2E9A9}C:\users\barranger\appdata\roaming\utorrent\helper\helper.exe] => (Allow) C:\users\barranger\appdata\roaming\utorrent\helper\helper.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{3CA978C7-0491-4CFC-82A3-764692901D5A}C:\users\barranger\appdata\roaming\utorrent\helper\helper.exe] => (Allow) C:\users\barranger\appdata\roaming\utorrent\helper\helper.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{EFA2CD92-EDC2-459B-A808-146B788D8665}D:\barranger\bureau\spintires mudrunner\mudrunner.exe] => (Allow) D:\barranger\bureau\spintires mudrunner\mudrunner.exe Pas de fichier FirewallRules: [UDP Query User{D8050298-3315-454B-B938-8FEBEAC6957C}D:\barranger\bureau\spintires mudrunner\mudrunner.exe] => (Allow) D:\barranger\bureau\spintires mudrunner\mudrunner.exe Pas de fichier FirewallRules: [{9D5D8E32-600A-4C9D-A206-EA73F091494C}] => (Allow) D:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A17DAE59-F73E-45C4-A7B3-D908F71461EB}] => (Allow) D:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{3F0C8A7F-248E-45D9-9ACE-F320839F3AE3}] => (Allow) D:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{46C5A452-399D-4121-ADFB-94F916DFA94C}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8794837B-79A6-4D22-8BDA-636E4A86E58F}] => (Allow) D:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8AADC3E7-AB58-4A1D-867C-A2899AF69715}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{4CAA8AB2-B032-478B-84B0-62D3D2BE31BF}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{12760346-3ABA-4C69-8C16-23502E6830E6}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{57C505A2-5651-473C-AAA5-66FDF87ECDC4}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{B89CA05C-A6B5-488D-94F0-AC1B51501B23}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{C75FCAD5-37D2-4CAE-84EE-4E8F796C3FFD}] => (Allow) D:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) StandardProfile\AuthorizedApplications: [C:\Users\BARRANGER\AppData\Roaming\uTorrent\helper\helper.exe] => Enabled:ipsec ==================== Points de restauration ========================= 06-08-2019 12:33:21 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Impossible d’initialiser l’index. Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Impossible d’initialiser l’application. Contexte : Application Windows Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Impossible d’initialiser l’objet rassembleur. Contexte : Application Windows, Catalogue SystemIndex Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Impossible d’initialiser le plug-in dans . Contexte : Application Windows, Catalogue SystemIndex Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Impossible d’initialiser le gestionnaire plug-in . Contexte : Application Windows Détails : (HRESULT : 0x80040154) (0x80040154) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Impossible d’initialiser l’index. Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Impossible d’initialiser l’application. Contexte : Application Windows Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/06/2019 12:39:01 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Impossible d’initialiser l’objet rassembleur. Contexte : Application Windows, Catalogue SystemIndex Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Erreurs système: ============= Error: (08/06/2019 01:10:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Windows Search s’est terminé de façon inattendue pour la 1746ème fois. Error: (08/06/2019 01:10:13 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Windows Search s’est arrêté avec l’erreur spécifique au service suivante : %%2147749126 Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Windows Search s’est terminé de façon inattendue pour la 1745ème fois. Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Windows Search s’est arrêté avec l’erreur spécifique au service suivante : %%2147749126 Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Windows Search s’est terminé de façon inattendue pour la 1744ème fois. Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Windows Search s’est arrêté avec l’erreur spécifique au service suivante : %%2147749126 Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Windows Search s’est terminé de façon inattendue pour la 1743ème fois. Error: (08/06/2019 01:10:12 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Windows Search s’est arrêté avec l’erreur spécifique au service suivante : %%2147749126 Windows Defender: =================================== Date: 2019-08-05 17:16:10.723 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {D3B7A45B-9371-4EFE-816C-BDD230FC2EC2} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-08-05 16:13:03.402 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {729F6F4D-B626-42C2-AC1A-7A923A32DD29} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-08-04 22:32:57.510 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {C81CA065-B510-4A8D-A35F-B23F4F29751B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-08-04 22:29:00.288 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:Win32/Sality.AU&threatid=2147636658&enterprise=0 Nom : Worm:Win32/Sality.AU ID : 2147636658 Gravité : Grave Catégorie : Ver Chemin : thread:_tid=11864,pid=7820,name=Worm:Win32/Sality.AU; thread:_tid=15180,pid=12744,name=Worm:Win32/Sality.AU; thread:_tid=15672,pid=12448,name=Worm:Win32/Sality.AU; thread:_tid=16488,pid=17040,name=Worm:Win32/Sality.AU; thread:_tid=16516,pid=16644,name=Worm:Win32/Sality.AU; thread:_tid=16536,pid=8848,name=Worm:Win32/Sality.AU; thread:_tid=3528,pid=17276,name=Worm:Win32/Sality.AU; thread:_tid=6188,pid=12580,name=Worm:Win32/Sality.AU; thread:_tid=9932,pid=12184,name=Worm:Win32/Sality.AU Origine de la détection : Inconnu Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la signature : AV: 1.299.1250.0, AS: 1.299.1250.0, NIS: 1.299.1250.0 Version du moteur : AM: 1.1.16200.1, NIS: 1.1.16200.1 Date: 2019-08-04 22:08:51.881 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:Win32/Sality.AU&threatid=2147636658&enterprise=0 Nom : Worm:Win32/Sality.AU ID : 2147636658 Gravité : Grave Catégorie : Ver Chemin : thread:_tid=11864,pid=7820,name=Worm:Win32/Sality.AU; thread:_tid=15180,pid=12744,name=Worm:Win32/Sality.AU; thread:_tid=15672,pid=12448,name=Worm:Win32/Sality.AU; thread:_tid=16488,pid=17040,name=Worm:Win32/Sality.AU; thread:_tid=16516,pid=16644,name=Worm:Win32/Sality.AU; thread:_tid=16536,pid=8848,name=Worm:Win32/Sality.AU; thread:_tid=3528,pid=17276,name=Worm:Win32/Sality.AU; thread:_tid=6188,pid=12580,name=Worm:Win32/Sality.AU; thread:_tid=9932,pid=12184,name=Worm:Win32/Sality.AU Origine de la détection : Inconnu Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la signature : AV: 1.299.1250.0, AS: 1.299.1250.0, NIS: 1.299.1250.0 Version du moteur : AM: 1.1.16200.1, NIS: 1.1.16200.1 Date: 2019-08-06 11:46:58.791 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. Date: 2019-08-04 10:08:23.361 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. Date: 2019-08-01 22:55:34.643 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : 1.299.1072.0 Version précédente de la signature : 1.299.989.0 Source de mise à jour : Utilisateur Type de signature : Logiciel anti-espion Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.16200.1 Version précédente du moteur : 1.1.16200.1 Code d’erreur : 0x80509004 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Date: 2019-08-01 22:55:34.643 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : 1.299.1072.0 Version précédente de la signature : 1.299.989.0 Source de mise à jour : Utilisateur Type de signature : Anti-virus Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.16200.1 Version précédente du moteur : 1.1.16200.1 Code d’erreur : 0x80509004 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Date: 2019-08-01 22:55:33.680 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.299.989.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.16200.1 Code d’erreur : 0x80240022 Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions. CodeIntegrity: =================================== Date: 2019-08-06 13:10:13.382 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:12.907 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:12.410 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:11.949 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:11.381 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:10.881 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:10.318 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. Date: 2019-08-06 13:10:09.814 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. X570ZD.305 11/27/2018 Motherboard: ASUSTeK COMPUTER INC. X570ZD Processeur: AMD Ryzen 5 2500U with Radeon Vega Mobile Gfx Pourcentage de mémoire utilisée: 50% Mémoire physique - RAM - totale: 11208.55 MB Mémoire physique - RAM - disponible: 5527.82 MB Mémoire virtuelle totale: 13000.55 MB Mémoire virtuelle disponible: 5944.47 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:118.63 GB) (Free:45.86 GB) NTFS Drive d: (Données) (Fixed) (Total:931.5 GB) (Free:267.21 GB) NTFS \\?\Volume{523c7b6e-f272-47ad-8e33-9ed67ef84976}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS \\?\Volume{caa7e277-1158-0e41-9f7b-7d498333ec48}\ () (Fixed) (Total:0.06 GB) (Free:0.02 GB) FAT ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Protective MBR) (Size: 119.2 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt ============================