Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-11-2019 Exécuté par ymer (03-11-2019 21:28:06) Exécuté depuis C:\Users\ymer\Desktop Windows 10 Home Version 1803 17134.1069 (X64) (2019-04-14 22:15:03) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1870456641-2507227550-3245078867-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1870456641-2507227550-3245078867-503 - Limited - Disabled) Invité (S-1-5-21-1870456641-2507227550-3245078867-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1870456641-2507227550-3245078867-504 - Limited - Disabled) ymer (S-1-5-21-1870456641-2507227550-3245078867-1001 - Administrator - Enabled) => C:\Users\ymer ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton Security (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.07.2004 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.07.2003.0 - Acer Incorporated) Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3024 - Acer Incorporated) Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated) Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer) Acer Jumpstart (HKLM-x32\...\{353B4583-ED04-4DF2-A1D6-A5A3EF5C4EBF}) (Version: 3.2.18270.20 - Acer) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.10.2003 - Acer Incorporated) Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3008 - Acer Incorporated) Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.02.3001 - Acer Incorporated) Adobe Acrobat 4.0 (HKLM-x32\...\Adobe Acrobat 4.0) (Version: 4.0 - Adobe Systems, Inc.) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe) Adobe Shockwave Player 12.3 (HKLM-x32\...\{4487064C-F31E-4499-A1EF-9B8E809A0358}) (Version: 12.3.5.205 - Adobe, Inc) Alarm Clock Pro (HKLM-x32\...\{CCE5423D-483E-42E9-8BF5-D991E76513FA}) (Version: 11.0.8 - Koingo Software, Inc.) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation) AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.17.2002.1 - Acer Incorporated) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BitTorrent (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\BitTorrent) (Version: 7.10.5.45312 - BitTorrent Inc.) Braveheart (HKLM-x32\...\Braveheart) (Version: - ) Cosmoteer 0.15.1a (HKLM\...\{BC4C8EB1-3CD1-465D-B4D3-A15F9F0B4C4F}_is1) (Version: 0.15.1a - Walt Destler) Crossout Launcher 1.0.3.93 (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\CrossOutLauncher_is1) (Version: - ) Cuban Missile Crisis (HKLM-x32\...\{653378B5-26CF-4839-86BB-04783648B01C}) (Version: 1.04.0000 - Strategy First) Hidden Cuban Missile Crisis (HKLM-x32\...\InstallShield_{653378B5-26CF-4839-86BB-04783648B01C}) (Version: 1.04.0000 - Strategy First) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.0948 - Disc Soft Ltd) Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.12.0 - Dashlane, Inc.) ELAN HIDI2C Filter Driver X64 13.6.7.2_WHQL (HKLM\...\Elantech) (Version: 13.6.7.2 - ELAN Microelectronic Corp.) Epic Games Launcher (HKLM-x32\...\{C26AA108-615E-4186-A499-9F82FDC21F3A}) (Version: 1.1.229.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Futuremark SystemInfo (HKLM-x32\...\{3DD053E0-EA08-459A-B615-567B86A01132}) (Version: 5.16.701.0 - Futuremark) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4526 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1633.3 - Intel Corporation) Java 8 Update 211 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180211F0}) (Version: 8.0.2110.12 - Oracle Corporation) Java 8 Update 212 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180212F0}) (Version: 8.0.2120.10 - Oracle Corporation) Jupiter Hell (HKLM-x32\...\1603513052_is1) (Version: 0.8.0 - GOG.com) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden LOST ORBIT Terminal Velocity (HKLM-x32\...\LOST ORBIT Terminal Velocity_is1) (Version: - ) MAGIX Speed burnR (HKLM\...\{46161E0A-3916-48E9-B9BF-34641F095665}) (Version: 7.0.1.27 - MAGIX Software GmbH) Hidden MAGIX Speed burnR (HKLM-x32\...\MX.{46161E0A-3916-48E9-B9BF-34641F095665}) (Version: 7.0.1.27 - MAGIX Software GmbH) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.12026.20344 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4ffaf7b8-a84a-4813-840c-8b1f1343ae54}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.39.2 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{CFF44AE9-2908-4D7D-B48B-1CB5139015C7}) (Version: 1.0.0.0 - Mojang) Molotov (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\Molotov) (Version: 4.1.0 - Molotov) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) Node.js (HKLM\...\{23A34EBD-AE97-4FB3-8542-501FBA47EA98}) (Version: 10.16.3 - Node.js Foundation) Norton Security (HKLM-x32\...\NGC) (Version: 22.19.8.65 - Symantec Corporation) n-Track Studio 9 (HKLM-x32\...\n-Track Studio 9) (Version: 9.0.3572 - n-Track) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote graphique 430.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.39 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12026.20344 - Microsoft Corporation) Hidden OpenOffice 4.1.6 (HKLM-x32\...\{50D70A8D-0503-4AA6-97EF-09849E9FB520}) (Version: 4.16.9790 - Apache Software Foundation) Opera Stable 63.0.3368.83 (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\Opera 63.0.3368.83) (Version: 63.0.3368.83 - Opera Software) Oxygen Not Included (HKLM-x32\...\Oxygen Not Included_is1) (Version: - ) Panneau de configuration NVIDIA 430.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.39 - NVIDIA Corporation) Hidden Project Hospital (HKLM-x32\...\1660194629_is1) (Version: 1.1.16587.4g - GOG.com) Python 3.7.0 (64-bit) (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\{f684de81-73c2-4924-ad43-e7ae400d47b5}) (Version: 3.7.150.0 - Python Software Foundation) Python 3.7.0 Core Interpreter (64-bit) (HKLM\...\{F046BD5A-33F4-4ABA-BD2D-0227F6291EC9}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Development Libraries (64-bit) (HKLM\...\{61246987-8D99-44A9-8FF5-E2E3F503B72D}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Documentation (64-bit) (HKLM\...\{E7C56E72-C80E-453B-9345-FAEAE5DB51A4}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Executables (64-bit) (HKLM\...\{84B7971A-F59F-4247-AD34-BEC02CF85FBD}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 pip Bootstrap (64-bit) (HKLM\...\{8A6F7991-1955-4C46-8C0C-8D7C6F7042FA}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Standard Library (64-bit) (HKLM\...\{18D93BBC-06F6-449D-96FB-CD473CFC6A6D}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Tcl/Tk Support (64-bit) (HKLM\...\{A2FC01E0-059E-4D21-AFD2-B63A7E1EF3CD}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Test Suite (64-bit) (HKLM\...\{E4266358-1C9B-4AF0-ABF7-72BE136904CF}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python 3.7.0 Utility Scripts (64-bit) (HKLM\...\{9E24E01B-CBD8-4558-A56D-6188F1A3C822}) (Version: 3.7.150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{D6BDDB48-938A-4384-A7BE-2B4E4931B111}) (Version: 3.7.6386.0 - Python Software Foundation) Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10388 - Qualcomm Atheros) Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.278 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8569 - Realtek Semiconductor Corp.) Rebel Cops (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\Rebel Cops) (Version: - HOODLUM) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.4.116 - Rockstar Games) Sekiro Shadows Die Twice (HKLM-x32\...\Sekiro Shadows Die Twice_is1) (Version: - ) Spintires The Original Game (HKLM-x32\...\Spintires The Original Game_is1) (Version: - ) STAR WARS® - Knights of the Old Republic™ II - The Sith Lords (HKLM-x32\...\1421404581_is1) (Version: 2.0.0.3 - GOG.com) StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SWINE HD Remaster (HKLM-x32\...\SWINE HD Remaster_is1) (Version: - ) UBOAT (HKLM-x32\...\1771607985_is1) (Version: B124 (Preview 4) - GOG.com) UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation) Vs2013Msi (HKLM-x32\...\{4DAB1C0B-B3B8-4B99-BC26-597079BEED61}) (Version: 1.0.0 - Default Company Name) WampServer 2.2 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) War Thunder Launcher 1.0.3.172 (HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH) Packages: ========= Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe [2019-04-15] (Microsoft Corporation) [MS Ad] EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-10-31] (Microsoft Corporation) Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.30.10924.0_x64__8wekyb3d8bbwe [2019-04-15] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.3.4032.0_x86__8wekyb3d8bbwe [2019-04-14] (Microsoft Studios) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-04-15] (Microsoft Corporation) [MS Ad] Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_2.3.1055.0_x64__a2t3txkz9j1jw [2019-04-15] (MAGIX) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-05-30] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-05-30] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-05-30] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-07-24] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-07-24] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxDTCM.dll [2018-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> Pas de fichier ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [msacm.vorbis] => c:\windows\system32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé] HKLM\...\Drivers32: [vidc.iv50] => C:\WINDOWS\SysWOW64\ir50_32original.dll [746496 2018-04-12] (Microsoft Windows -> Intel Corporation) HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé] ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\ymer:Heroes & Generals [38] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [472] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION ==================== Internet Explorer sites de confiance/sensibles ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 12:47 - 2019-10-13 23:17 - 000003909 _____ C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 a.ads1.msn.com 0.0.0.0 a.ads2.msads.net 0.0.0.0 a.ads2.msn.com 0.0.0.0 a.rad.msn.com 0.0.0.0 a-0001.a-msedge.net 0.0.0.0 a-0002.a-msedge.net 0.0.0.0 a-0003.a-msedge.net 0.0.0.0 a-0004.a-msedge.net 0.0.0.0 a-0005.a-msedge.net 0.0.0.0 a-0006.a-msedge.net 0.0.0.0 a-0007.a-msedge.net 0.0.0.0 a-0008.a-msedge.net 0.0.0.0 a-0009.a-msedge.net 0.0.0.0 ac3.msn.com 0.0.0.0 ad.doubleclick.net 0.0.0.0 adnexus.net 0.0.0.0 adnxs.com 0.0.0.0 ads.msn.com 0.0.0.0 ads1.msads.net 0.0.0.0 ads1.msn.com 0.0.0.0 aidps.atdmt.com 0.0.0.0 aka-cdn-ns.adtech.de 0.0.0.0 a-msedge.net 0.0.0.0 az361816.vo.msecnd.net 0.0.0.0 az512334.vo.msecnd.net 0.0.0.0 b.ads1.msn.com 0.0.0.0 b.ads2.msads.net 0.0.0.0 b.rad.msn.com 0.0.0.0 bs.serving-sys.com 0.0.0.0 c.atdmt.com ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> c:\programdata\oracle\java\javapath;c:\program files (x86)\common files\oracle\java\javapath;c:\program files (x86)\intel\icls client\;c:\program files\intel\icls client\;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\program files (x86)\intel\intel(r) management engine components\dal;c:\program files\intel\intel(r) management engine components\dal;c:\program files (x86)\intel\intel(r) management engine components\ipt;c:\program files\intel\intel(r) management engine components\ipt;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;c:\program files\nvidia corporation\nvidia nvdlisr;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\nodejs\ HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg DNS Servers: 192.168.43.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Dropbox" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "reWASD Tray Agent" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "Alarm Clock Pro.exe" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1870456641-2507227550-3245078867-1001\...\StartupApproved\Run: => "Gaijin.Net Updater" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{5D35894E-4516-46A7-B43E-B8CBBF0422DE}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{5B80B741-0378-4796-8D3F-8F17538EB4B7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{CD284E5D-5499-44BE-83DA-0A7D2029A751}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{87864FA8-E9C6-4701-B911-216AF79D652E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{8329B4DD-D722-4E63-819E-1C4364313876}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{37BF8014-8B5B-4F05-ADC0-7FCDB12EA1D7}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{ACA42C99-9B4F-4F43-8D31-0C0D2CBEFA6B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{FA863EED-517C-490B-8DAA-4172E99668A0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{C2D694A5-9EE1-48EB-A900-FD26B5F111F7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{6F7EB34D-600A-4B99-99D0-69EE59E2CFBC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{3CD719DB-B4C0-43AB-9BC6-E298ED16E720}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{0B1B3965-9F44-4904-8862-8D7D0C3D22C4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{C874B5C0-79FF-47A0-A801-64CCD21E1018}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Pas de fichier FirewallRules: [{E0A72150-F96F-48CF-90FF-A8329113FE3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{1B3943A6-A7D6-47C8-94F1-054E1BCB94CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{31D6DB5C-67BE-4A95-BC1E-F6775CA357AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [Fichier non signé] FirewallRules: [{6803770A-762F-483A-9052-D7B46FDAF8DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [Fichier non signé] FirewallRules: [{7D986C2A-BE14-4C0F-AB7B-C91108983D6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TerraTech Beta\TerraTechWin64.exe () [Fichier non signé] FirewallRules: [{5C36D787-4849-4EE1-8636-43986953271F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TerraTech Beta\TerraTechWin64.exe () [Fichier non signé] FirewallRules: [{62B8FEEE-14BE-403D-A60D-A0E715AD0DA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{6920B922-E087-448E-A4F4-94F10B4A88EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{FA06052E-7A9C-40E9-888C-4827D1A95A41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\King Arthur's Gold\KAG.exe () [Fichier non signé] FirewallRules: [{CA4A1745-2AB2-47ED-95DA-27CD11A3040C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\King Arthur's Gold\KAG.exe () [Fichier non signé] FirewallRules: [{8A0F8E0A-4384-4C3A-AB7D-DB60A293FAAB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Homeworld\HWLauncher\Launcher.exe (Gearbox Software) [Fichier non signé] FirewallRules: [{B4F70ED3-B0C3-4FBF-8A45-08918016A0C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Homeworld\HWLauncher\Launcher.exe (Gearbox Software) [Fichier non signé] FirewallRules: [{27CC1F40-EB84-4E22-B4F7-AFCB7D7E0CE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations) FirewallRules: [{E45AA0C7-5859-44AE-80BB-80C76CE4A841}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations) FirewallRules: [{2F5C7326-2A12-4538-9C65-6CB6316C8327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{6FDC25AA-9210-4D02-8BDD-C5BB71F73129}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{DBE735A9-AD69-4165-9F97-EB5608F7E643}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{EBE2302C-C21B-4505-8E08-BA9360EAF3D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{9DCC71A8-9BE9-479B-8B32-37403047FB45}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{25D13DE7-A0BB-4140-9ED2-ADC7B092716A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{D3E3C19B-F215-4D52-BC43-091F3DD462DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House a.s. -> Keen Software House) FirewallRules: [{FCA78DCD-8E8E-470A-A6D2-88CB0ED9BFE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House a.s. -> Keen Software House) FirewallRules: [{AD973B8A-FB40-47EC-8BB7-3416DE513D9F}] => (Allow) C:\Program Files (x86)\Deskshare\FTP Manager Lite 2\FTP Manager Lite.exe Pas de fichier FirewallRules: [{67448493-13C3-44FB-88B7-9019662DC81D}] => (Allow) C:\Program Files (x86)\Deskshare\FTP Manager Lite 2\FTP Manager Lite.exe Pas de fichier FirewallRules: [TCP Query User{189C4DF8-05E1-429F-912B-BFF486BCD67B}C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\zerobranestudio\zbstudio.exe] => (Allow) C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\zerobranestudio\zbstudio.exe Pas de fichier FirewallRules: [UDP Query User{FD577755-D828-4AF6-8A03-2444850C1F83}C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\zerobranestudio\zbstudio.exe] => (Allow) C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\zerobranestudio\zbstudio.exe Pas de fichier FirewallRules: [TCP Query User{AFDD38F4-A6EB-4527-A699-7FF84B3BA373}C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\crush2d.exe] => (Allow) C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\crush2d.exe Pas de fichier FirewallRules: [UDP Query User{EEB02C76-E836-488B-A94F-B53E06C2D110}C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\crush2d.exe] => (Allow) C:\users\ymer\downloads\planetoid.pioneers.online\planetoid.pioneers.online\planetoid pioneers online\crush2d.exe Pas de fichier FirewallRules: [TCP Query User{BAE5A08D-919E-44C5-AB25-2625E24AE6D8}C:\users\ymer\downloads\killsquad\killsquad\game\binaries\win64\game-win64-shipping.exe] => (Allow) C:\users\ymer\downloads\killsquad\killsquad\game\binaries\win64\game-win64-shipping.exe Pas de fichier FirewallRules: [UDP Query User{68066E33-2599-42D6-BCFE-77A4C6CEE4B2}C:\users\ymer\downloads\killsquad\killsquad\game\binaries\win64\game-win64-shipping.exe] => (Allow) C:\users\ymer\downloads\killsquad\killsquad\game\binaries\win64\game-win64-shipping.exe Pas de fichier FirewallRules: [{64D650CC-A9D6-4F54-8A58-2EE44998B2BF}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{2FCD0A52-FC2D-4507-8D44-F1C1281DD5C1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [TCP Query User{DCE7986B-3953-46EE-8E1A-E7732F2D0E86}C:\users\ymer\downloads\battle.academy\battle academy\ba_steam_full_2.6.0v3.exe] => (Allow) C:\users\ymer\downloads\battle.academy\battle academy\ba_steam_full_2.6.0v3.exe Pas de fichier FirewallRules: [UDP Query User{7A5C3B08-5A41-460A-BE4A-FF70971CB007}C:\users\ymer\downloads\battle.academy\battle academy\ba_steam_full_2.6.0v3.exe] => (Allow) C:\users\ymer\downloads\battle.academy\battle academy\ba_steam_full_2.6.0v3.exe Pas de fichier FirewallRules: [TCP Query User{A9657A7D-3E5E-4388-A2DC-74202FFE6C23}C:\program files (x86)\starcraft ii\versions\base75025\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75025\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [UDP Query User{1C711D3C-7DB1-4211-9372-CB8C387D7C32}C:\program files (x86)\starcraft ii\versions\base75025\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75025\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [{74B7ACFA-9901-41E7-8780-AC0C9CBA0C82}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS) FirewallRules: [{2B78F5EA-04FE-4357-93F3-4731B95801EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe (Reto-Moto ApS -> Reto-Moto ApS) FirewallRules: [{32F0CE46-D415-49A4-9F9E-9EA2EC60ADEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conqueror's Blade\ConquerorsBladeSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [{9CEE2EDE-A47B-4799-BBA3-7B402DD07F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Conqueror's Blade\ConquerorsBladeSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{6B440FA5-5628-4DBB-9114-12CC981F62DA}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [UDP Query User{9CA34B8C-E257-4820-9B3F-7F184B4A2DA5}C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [{C7C2F2B4-0CCA-4934-98CD-34916231DC30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eve Online\eve.exe (CCP Hf -> ) FirewallRules: [{7F28B9A9-5E3A-4518-800B-6DC638310A02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eve Online\eve.exe (CCP Hf -> ) FirewallRules: [{E0A502B2-FCEF-475F-9ED1-A7AFE2EEA855}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [{091A08DB-1ADC-4940-9568-EC942231830D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{CD4C23A4-38D0-40FA-ADEF-0AB7074588C5}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [UDP Query User{1A79E967-526F-4364-859B-7013CD4BC033}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru, LLC -> ) FirewallRules: [TCP Query User{ACCD52D0-ADF2-4030-A002-7F62DD1A5B7C}C:\program files (x86)\steam\steamapps\common\warface\warface\bin64release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin64release\game.exe (Mail.Ru, LLC -> Crytek GmbH) FirewallRules: [UDP Query User{ABED9F24-93CE-4FC5-B3FE-11C6EE4D7E78}C:\program files (x86)\steam\steamapps\common\warface\warface\bin64release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\warface\bin64release\game.exe (Mail.Ru, LLC -> Crytek GmbH) FirewallRules: [TCP Query User{D4B1CEFA-0150-453A-BD8E-FF92DFABEB36}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{D48BEC65-445F-4628-8688-DCB0D3F88957}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> ) FirewallRules: [{DBE5BD67-1370-4D8A-B757-03169815E8F8}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [{9E87F428-C7D7-4B8F-ACC8-C3F4C83A3250}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> ) FirewallRules: [TCP Query User{55C41E2E-4F5E-4AE9-B44B-C15AD5131359}C:\program files (x86)\starcraft ii\versions\base75689\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75689\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [UDP Query User{70793055-2A71-409A-9AD1-367933A0C812}C:\program files (x86)\starcraft ii\versions\base75689\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75689\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [{24B2705E-AD14-4F3B-BC31-97DE0841B05D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Drunken Wrestlers 2\DW2_Data\Managed\DW2Launcher\DW2Launcher.exe () [Fichier non signé] FirewallRules: [{80EE82A8-6692-4417-AC14-E764CDDFE07D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Drunken Wrestlers 2\DW2_Data\Managed\DW2Launcher\DW2Launcher.exe () [Fichier non signé] FirewallRules: [{6CBA614F-5444-4257-BAF4-618EFDEFDD26}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [Fichier non signé] FirewallRules: [{0FBB03A5-EF12-48C5-9F55-6CD1937950B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [Fichier non signé] FirewallRules: [{50011669-56F8-4109-8E4B-BD89A321EF03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RED HOT VENGEANCE\RedHotVengeance.exe (Bros Before Giraffes ) [Fichier non signé] FirewallRules: [{F61EF9FD-F116-4D0E-82BC-979CDD5A69FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RED HOT VENGEANCE\RedHotVengeance.exe (Bros Before Giraffes ) [Fichier non signé] FirewallRules: [{1BCE1F14-F614-43F1-AACE-3FE7EC8E6404}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New Frontier\Launcher.exe (Free Reign Entertainment LLC) [Fichier non signé] FirewallRules: [{53FDCB00-51BB-4C04-A6E1-C20A49BEDFF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\New Frontier\Launcher.exe (Free Reign Entertainment LLC) [Fichier non signé] FirewallRules: [{44BAFC41-028A-4739-954B-D6BB0151F0B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Legend of CaoCao Tactics\nxsteam\nxsteam.exe (NEXON Korea Corporation. -> NEXON) FirewallRules: [{978E3778-38B7-456F-8071-D31B19E629EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Legend of CaoCao Tactics\nxsteam\nxsteam.exe (NEXON Korea Corporation. -> NEXON) FirewallRules: [{3F0660BF-7A51-493C-9ABF-9F1CED4285C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BLOCKADE Classic\BlockadeClassic.exe () [Fichier non signé] FirewallRules: [{19B39DDF-4C14-4662-AD49-CD76480A9D4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BLOCKADE Classic\BlockadeClassic.exe () [Fichier non signé] FirewallRules: [{F93C411F-0162-4DC7-914E-16F91AD93B11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Racing Classics\Racing Classics.exe () [Fichier non signé] FirewallRules: [{87DEFFDD-3CDD-4A55-96D1-846765FC20DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Racing Classics\Racing Classics.exe () [Fichier non signé] FirewallRules: [{156FCDEC-95F1-4898-A4C9-06CD2420C5FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GUNS UP\GUNS UP.exe () [Fichier non signé] FirewallRules: [{4963C0AE-2D72-4FBC-8C25-DC0B124CBCCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GUNS UP\GUNS UP.exe () [Fichier non signé] FirewallRules: [{86BA5527-C21C-41F6-B338-D2EA442B726D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle Grounds III\bg3.exe () [Fichier non signé] FirewallRules: [{6ADB6C88-DF3F-4585-9C68-1357BBDC4CEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle Grounds III\bg3.exe () [Fichier non signé] FirewallRules: [TCP Query User{812EE429-808E-4118-88EB-8BBFD30B74A6}C:\users\ymer\downloads\castle.story.v1.1.10\castle story.exe] => (Allow) C:\users\ymer\downloads\castle.story.v1.1.10\castle story.exe () [Fichier non signé] FirewallRules: [UDP Query User{D5A35D38-B6F6-43D7-BBE1-F598E76DC508}C:\users\ymer\downloads\castle.story.v1.1.10\castle story.exe] => (Allow) C:\users\ymer\downloads\castle.story.v1.1.10\castle story.exe () [Fichier non signé] FirewallRules: [{D4D3EC7D-A0C4-48EB-AE29-A2861EBC52FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> ) FirewallRules: [{3E042A8B-A3A9-4DA3-9415-D893748B1228}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> ) FirewallRules: [{92E84082-6390-4EB4-ACC3-DDB70952A959}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) FirewallRules: [{84900E60-E19B-4C58-B7BD-CC9A5613189C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Frontier 2\DeadFrontier2.exe (Creaky Corpse Ltd -> ) FirewallRules: [{0BB95A3B-D338-4CB8-8EE6-1D73CF2D5D2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dreadnought\DreadnoughtLauncher.exe (Six Foot, LLC -> Six Foot LLC) FirewallRules: [{812467E4-FABE-4992-AE0F-3BEC0CE3D44E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dreadnought\DreadnoughtLauncher.exe (Six Foot, LLC -> Six Foot LLC) FirewallRules: [TCP Query User{816266A9-A612-4865-8987-4F23B985DB33}C:\program files (x86)\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe (Six Foot, LLC -> Epic Games, Inc.) FirewallRules: [UDP Query User{E033F98D-A5DD-4463-A240-A73B2DB2A7C0}C:\program files (x86)\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe (Six Foot, LLC -> Epic Games, Inc.) FirewallRules: [TCP Query User{90255BDC-9823-4C9C-96A5-AD9210DF09C6}C:\users\ymer\downloads\peace.death.v29.11.2017\peace death.exe] => (Allow) C:\users\ymer\downloads\peace.death.v29.11.2017\peace death.exe Pas de fichier FirewallRules: [UDP Query User{68B9D8E9-ED8C-4ECA-8B8E-BE33CD41440B}C:\users\ymer\downloads\peace.death.v29.11.2017\peace death.exe] => (Allow) C:\users\ymer\downloads\peace.death.v29.11.2017\peace death.exe Pas de fichier FirewallRules: [TCP Query User{9BD0394D-BAED-4EB0-8975-B3F5031D11DE}C:\program files (x86)\her majestys ship\hms.exe] => (Allow) C:\program files (x86)\her majestys ship\hms.exe Pas de fichier FirewallRules: [UDP Query User{D2747828-589D-4C91-B11F-E1C31CC24547}C:\program files (x86)\her majestys ship\hms.exe] => (Allow) C:\program files (x86)\her majestys ship\hms.exe Pas de fichier FirewallRules: [TCP Query User{06B0B6BC-E9BA-4AB3-925A-CEDCEAF29143}C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.v2019_01_11a\steam_emus\goldberg_v0.2.3\lobby_connect\lobby_connect.exe] => (Allow) C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.v2019_01_11a\steam_emus\goldberg_v0.2.3\lobby_connect\lobby_connect.exe Pas de fichier FirewallRules: [UDP Query User{144AE75E-E348-4571-9ACE-5EB9D5E1944F}C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.v2019_01_11a\steam_emus\goldberg_v0.2.3\lobby_connect\lobby_connect.exe] => (Allow) C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.v2019_01_11a\steam_emus\goldberg_v0.2.3\lobby_connect\lobby_connect.exe Pas de fichier FirewallRules: [TCP Query User{0E4EFF9F-5BE0-4CC1-A77F-9CC17489B6CA}C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.exe] => (Allow) C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.exe Pas de fichier FirewallRules: [UDP Query User{0DCF4A5E-E86A-4313-BF43-F6DAA2DEDEA2}C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.exe] => (Allow) C:\users\ymer\downloads\forts.v2019.06.20a.inclu.dlc\forts.v2019.06.20a\forts.exe Pas de fichier FirewallRules: [TCP Query User{83B80F86-6062-4251-81B2-633B1AC7BF60}C:\users\ymer\downloads\last.wood.fixed\last wood\lastwood.exe] => (Allow) C:\users\ymer\downloads\last.wood.fixed\last wood\lastwood.exe () [Fichier non signé] FirewallRules: [UDP Query User{1DE32C63-7FFD-4E5A-8D0A-3F91A35FA02D}C:\users\ymer\downloads\last.wood.fixed\last wood\lastwood.exe] => (Allow) C:\users\ymer\downloads\last.wood.fixed\last wood\lastwood.exe () [Fichier non signé] FirewallRules: [{B85BB55A-9C99-49ED-B54B-1D3D376FE901}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleRush\Cv2_Base\Binaries\Win64\Cv2_BaseClient_Shipping.exe (Thunder4dev) [Fichier non signé] FirewallRules: [{974C5D0C-B256-4ACE-A936-C38E4CD24A0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BattleRush\Cv2_Base\Binaries\Win64\Cv2_BaseClient_Shipping.exe (Thunder4dev) [Fichier non signé] FirewallRules: [TCP Query User{0734698C-1E48-4946-B243-0A460404565B}C:\program files (x86)\starcraft ii\versions\base75800\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75800\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [UDP Query User{2FB0A1AD-5E6A-4B0A-A53F-3FFFCE16917B}C:\program files (x86)\starcraft ii\versions\base75800\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base75800\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.) FirewallRules: [{52909F8D-A692-41C6-8F34-6034286DDF9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [Fichier non signé] FirewallRules: [{95E244AB-8CED-4DC3-A340-E599B15956B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [Fichier non signé] FirewallRules: [{F9423013-61D5-483F-8433-232FDBBCDCE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{A128C21A-C628-48ED-82B3-71096DA7EF25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [TCP Query User{8A86C39E-2A02-4469-8905-3B516DBB50D4}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe Pas de fichier FirewallRules: [UDP Query User{0489323A-8AE5-4C46-8CAF-5948C6CE7F16}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe Pas de fichier FirewallRules: [{774E45C5-8F31-423A-B633-0E442E868755}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe () [Fichier non signé] FirewallRules: [{4AA018BC-1526-4F03-A1ED-7172D82D7DA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe () [Fichier non signé] FirewallRules: [{5244C04C-F71D-4F0B-AA6D-3A4F91A4ED33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [Fichier non signé] FirewallRules: [{093B892C-4A35-4433-ACA6-E80E0D86AEEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe () [Fichier non signé] FirewallRules: [{F8FBCB7B-E9C1-4BAF-AB1F-2ECAF7BA0740}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D2C53E6A-D0B1-4475-BC5C-BD2A30A6922E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{C533874D-54E1-4F7E-8979-EF65FECF786A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{C215F1C4-3AD8-47AC-8CD2-0616F35602D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heavy Metal Machines\WDLauncherSO.exe (Hoplon Infotainment SA -> ) FirewallRules: [{30C72484-3E88-48FE-BC23-03B904786CA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heavy Metal Machines\WDLauncherSO.exe (Hoplon Infotainment SA -> ) FirewallRules: [TCP Query User{74563C82-2F3F-4AE9-BD00-0FED4B54AC6F}C:\program files (x86)\steam\steamapps\common\heavy metal machines\hmm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\heavy metal machines\hmm.exe (Hoplon Infotainment SA -> ) FirewallRules: [UDP Query User{BD4F3BFC-FC80-4BB4-83D2-6DBAA3DFF50C}C:\program files (x86)\steam\steamapps\common\heavy metal machines\hmm.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\heavy metal machines\hmm.exe (Hoplon Infotainment SA -> ) FirewallRules: [TCP Query User{57B412C0-C457-49A1-855D-EC82456FC56D}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{4D5D7BC1-90C4-4C1A-8A0C-B7982F7CB136}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{594B6013-D979-46B7-BD3D-7819C245DD02}] => (Allow) C:\Users\ymer\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{FC1A1AE8-BCD9-4D1A-B33F-00D334C6D451}] => (Allow) C:\Users\ymer\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{8A7A78E3-1BB7-4CB3-9866-0BCF8D1B6897}] => (Allow) C:\Users\ymer\AppData\Local\Programs\Opera\63.0.3368.83\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{D036A652-B8BC-4018-A855-EC71BEB234BB}C:\users\ymer\downloads\unrailed\unrailed\unrailedgame.exe] => (Allow) C:\users\ymer\downloads\unrailed\unrailed\unrailedgame.exe Pas de fichier FirewallRules: [UDP Query User{C7EFB777-4385-4E63-A716-F1055EB634AD}C:\users\ymer\downloads\unrailed\unrailed\unrailedgame.exe] => (Allow) C:\users\ymer\downloads\unrailed\unrailed\unrailedgame.exe Pas de fichier FirewallRules: [TCP Query User{9A3FAD2F-2DF8-414A-A9A8-708E6DB377F8}C:\program files (x86)\steam\steamapps\common\unrailed\unrailedgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\unrailed\unrailedgame.exe (HP Inc.) [Fichier non signé] FirewallRules: [UDP Query User{6D778616-D851-4001-871F-21FBFE9551CB}C:\program files (x86)\steam\steamapps\common\unrailed\unrailedgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\unrailed\unrailedgame.exe (HP Inc.) [Fichier non signé] FirewallRules: [TCP Query User{F8EBCD49-BFEB-4598-A572-0F405AC2DEC1}C:\program files\cosmoteer\cosmoteer.exe] => (Allow) C:\program files\cosmoteer\cosmoteer.exe (Walternate Realities LLC -> ) FirewallRules: [UDP Query User{896DC8BA-DFC8-4271-AE70-1FF55366DC9E}C:\program files\cosmoteer\cosmoteer.exe] => (Allow) C:\program files\cosmoteer\cosmoteer.exe (Walternate Realities LLC -> ) FirewallRules: [{1D1508B1-B212-49AD-85EB-EF04A7501D99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\star conflict\game.exe (Targem Games LLC -> Star Gem) [Fichier non signé] FirewallRules: [{DAB32BAC-EC43-43CD-B77F-649F907CC39D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\star conflict\game.exe (Targem Games LLC -> Star Gem) [Fichier non signé] FirewallRules: [{BA79C298-41B6-4600-8470-01883380F8BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Besiege\Besiege.exe () [Fichier non signé] FirewallRules: [{0B838916-EE25-4B62-BBD0-F2F14C207FDC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Besiege\Besiege.exe () [Fichier non signé] FirewallRules: [{F7D6D213-6E76-4470-90FC-B3D45C9EA98C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetside Arena\PSA_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{5CE48597-E1F4-4A2A-A822-474CD22D789F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planetside Arena\PSA_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{2874C687-8CE4-4FBB-BCD1-81957BFB8DA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Maze\DeadMaze.exe (Atelier 801) [Fichier non signé] FirewallRules: [{2A0FB6FC-465B-4764-8550-636B101B9A5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dead Maze\DeadMaze.exe (Atelier 801) [Fichier non signé] FirewallRules: [TCP Query User{A328C083-A644-47C5-8189-D45B91CF25B8}C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe] => (Allow) C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe (BeamNG GmbH) [Fichier non signé] FirewallRules: [UDP Query User{607248B3-1EB4-453E-BD46-12E9906F98C2}C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe] => (Allow) C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe (BeamNG GmbH) [Fichier non signé] FirewallRules: [{E2A113D5-18DC-4365-B74B-36EBF8CAB003}] => (Block) C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe (BeamNG GmbH) [Fichier non signé] FirewallRules: [{DFDE9463-89CC-488C-AA24-D192A1C145DA}] => (Block) C:\users\ymer\downloads\beamng.drive.v0.17.1.1\bin64\beamng.drive.x64.exe (BeamNG GmbH) [Fichier non signé] FirewallRules: [{EE107CC8-A786-4DFB-BEB8-1662DCAA53DF}] => (Allow) C:\Users\ymer\AppData\Local\Temp\7zS0D1F\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [{26266AFE-8C4D-4AE6-96DA-83BD343F64A2}] => (Allow) C:\Users\ymer\AppData\Local\Temp\7zS0D1F\HPDiagnosticCoreUI.exe (HP Inc. -> HPDC LP) FirewallRules: [TCP Query User{967D447A-B0FD-4F05-AB8F-BD99F6043533}C:\users\ymer\downloads\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe] => (Allow) C:\users\ymer\downloads\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe Pas de fichier FirewallRules: [UDP Query User{A8B23321-0A32-4072-9F4F-F7653FB2A325}C:\users\ymer\downloads\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe] => (Allow) C:\users\ymer\downloads\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe Pas de fichier FirewallRules: [TCP Query User{9377B01B-91AF-412C-91F8-241F83FC0923}C:\games\stormworks build and rescue v0.8.33\game\common\stormworks\stormworks.exe] => (Allow) C:\games\stormworks build and rescue v0.8.33\game\common\stormworks\stormworks.exe Pas de fichier FirewallRules: [UDP Query User{2CAB28FB-88EE-40A2-8E7E-47795821E7B3}C:\games\stormworks build and rescue v0.8.33\game\common\stormworks\stormworks.exe] => (Allow) C:\games\stormworks build and rescue v0.8.33\game\common\stormworks\stormworks.exe Pas de fichier FirewallRules: [TCP Query User{71B0DB19-AD5E-435E-9865-F4E8EC7909DA}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [UDP Query User{3F4924CC-7985-44BF-B08D-75C848E646BB}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [TCP Query User{B906CA11-D967-4E51-8CFA-703E3F493B86}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [UDP Query User{6B6CF6AD-8BFE-423D-98DB-0502930D9529}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js) FirewallRules: [{E96B65A7-79A7-4235-B804-10660756AC35}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{FEE18AFD-FE93-4793-9E86-7E3203BE388D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Selection\SteamLauncher.exe () [Fichier non signé] FirewallRules: [{4AA7A7AD-7D57-4FB7-BE2E-780E7BD6FBF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Selection\SteamLauncher.exe () [Fichier non signé] FirewallRules: [TCP Query User{FBB3CAF7-21A0-44B1-9A24-630AD657254F}C:\games\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe] => (Allow) C:\games\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe () [Fichier non signé] FirewallRules: [UDP Query User{278D5879-1045-4B8B-BAC2-41BA1072475B}C:\games\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe] => (Allow) C:\games\stormworks.build.and.rescue.v0.8.33\steamapps\common\stormworks\stormworks.exe () [Fichier non signé] FirewallRules: [TCP Query User{B5EA7F02-2BDC-4E11-939E-B5E5A478A456}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet64.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet64.exe () [Fichier non signé] FirewallRules: [UDP Query User{6A83BF81-A845-43EA-986E-33B2004C73F5}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet64.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet64.exe () [Fichier non signé] FirewallRules: [TCP Query User{0C01EEC4-4F62-4945-97A7-99D4A91B33A9}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\setupapplication soviet.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\setupapplication soviet.exe (3DIVISION) [Fichier non signé] FirewallRules: [UDP Query User{CDA9E473-FF15-4AA4-8A4D-260A4F9595C1}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\setupapplication soviet.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\setupapplication soviet.exe (3DIVISION) [Fichier non signé] FirewallRules: [TCP Query User{DD93AAAB-C182-4B17-98F5-182170AC7EC2}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet.exe () [Fichier non signé] FirewallRules: [UDP Query User{44ED21A8-89F4-4B19-96A9-DAD77637D8E5}C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet.exe] => (Allow) C:\users\ymer\downloads\soviet.republic.v0.7.9.13\soviet.exe () [Fichier non signé] FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe Pas de fichier FirewallRules: [TCP Query User{75BB26C5-11C1-4F10-87DC-685F521D0512}C:\users\ymer\downloads\stars.end.v0.652\stars end\stars end.exe] => (Allow) C:\users\ymer\downloads\stars.end.v0.652\stars end\stars end.exe () [Fichier non signé] FirewallRules: [UDP Query User{A95F5CEE-47E7-4BD4-AC49-427C847EA40D}C:\users\ymer\downloads\stars.end.v0.652\stars end\stars end.exe] => (Allow) C:\users\ymer\downloads\stars.end.v0.652\stars end\stars end.exe () [Fichier non signé] FirewallRules: [{8CB3D28F-5BF9-47B7-ABBF-DF2CFDAA4EEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OrcsMustDieUnchained\Dashboard\Bin\SpitfireDashboard.exe () [Fichier non signé] FirewallRules: [{FF20D09B-4BBA-4390-BE89-0AA08E4E6C0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OrcsMustDieUnchained\Dashboard\Bin\SpitfireDashboard.exe () [Fichier non signé] FirewallRules: [{0E93F394-3834-48D7-AF72-74189E50E3AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [Fichier non signé] FirewallRules: [{52F8DC71-7DD1-4BEC-A6FF-535250CF2DBE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe () [Fichier non signé] FirewallRules: [TCP Query User{8B309EB0-B3EE-4696-99F9-61FBBA01BECE}C:\users\ymer\downloads\armored.battle.crew.ww1.v0.2.3\armored battle crew ww1.exe] => (Allow) C:\users\ymer\downloads\armored.battle.crew.ww1.v0.2.3\armored battle crew ww1.exe () [Fichier non signé] FirewallRules: [UDP Query User{8CC6D0CD-9DEE-4222-A4EA-C852696F112A}C:\users\ymer\downloads\armored.battle.crew.ww1.v0.2.3\armored battle crew ww1.exe] => (Allow) C:\users\ymer\downloads\armored.battle.crew.ww1.v0.2.3\armored battle crew ww1.exe () [Fichier non signé] FirewallRules: [{CC5778AA-F258-46CD-83E8-D8394FEBE485}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pla_toon\pla_toon.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{D8EEC745-3E68-400A-9BF8-35E543D18478}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pla_toon\pla_toon.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{328192F4-4939-4C4A-97F9-7E62F059480E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tribes\Binaries\Win32\TribesAscend.exe (Hirez Studios, Inc.) [Fichier non signé] FirewallRules: [{2B66CF3B-96D0-41CA-A1AB-8D33126F691A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tribes\Binaries\Win32\TribesAscend.exe (Hirez Studios, Inc.) [Fichier non signé] FirewallRules: [{3BD43AD2-0342-40A8-84EB-E9F6F20F077D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SNOW\bin\win_x64\GameLauncher.exe (Poppermost Productions AB) [Fichier non signé] FirewallRules: [{EBCFD737-0550-4BF9-AC4F-395BB6620AA0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SNOW\bin\win_x64\GameLauncher.exe (Poppermost Productions AB) [Fichier non signé] FirewallRules: [TCP Query User{7DB03B66-6C0F-4760-A3F7-BBF43E0F8F1D}C:\program files (x86)\steam\steamapps\common\pla_toon\pla_toon\binaries\win64\pla_toon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pla_toon\pla_toon\binaries\win64\pla_toon-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{7FF84E4A-A26C-4E45-84EC-92774E625CD2}C:\program files (x86)\steam\steamapps\common\pla_toon\pla_toon\binaries\win64\pla_toon-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pla_toon\pla_toon\binaries\win64\pla_toon-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] ==================== Points de restauration ========================= 02-11-2019 23:56:36 AdwCleaner_BeforeCleaning_02/11/2019_23:56:35 ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: High Precision Event Timer Description: High Precision Event Timer Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/03/2019 09:31:55 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:31:55Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:31:25 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:31:25Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:30:55 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:30:55Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:30:25 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:30:25Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:29:55 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:29:55Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:29:25 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:29:25Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:28:55 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:28:55Z. Code d’erreur : 0x80041315. Error: (11/03/2019 09:28:25 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2119-10-10T20:28:25Z. Code d’erreur : 0x80041315. Erreurs système: ============= Error: (11/03/2019 09:20:44 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-01GSCOJH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID LAPTOP-01GSCOJH\ymer de l’utilisateur (S-1-5-21-1870456641-2507227550-3245078867-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 08:28:37 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-01GSCOJH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID LAPTOP-01GSCOJH\ymer de l’utilisateur (S-1-5-21-1870456641-2507227550-3245078867-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 08:17:48 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-01GSCOJH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID LAPTOP-01GSCOJH\ymer de l’utilisateur (S-1-5-21-1870456641-2507227550-3245078867-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 06:51:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 06:50:29 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-01GSCOJH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID LAPTOP-01GSCOJH\ymer de l’utilisateur (S-1-5-21-1870456641-2507227550-3245078867-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 05:18:29 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-01GSCOJH) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID LAPTOP-01GSCOJH\ymer de l’utilisateur (S-1-5-21-1870456641-2507227550-3245078867-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/03/2019 04:34:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Hôte de synchronisation_86fe4 s’est arrêté avec l’erreur : Le mappeur de point final n’a plus de point final disponible. Error: (11/03/2019 04:34:08 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2019-11-03 20:29:27.939 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0 Nom : Trojan:Win32/Azden.A!cl ID : 2147718745 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\ymer\Downloads\FRST.exe; webfile:_C:\Users\ymer\Downloads\FRST.exe|https://download.bleepingcomputer.com/dl/77c8d4bf0d68d0bb74963a6be8bec23a/5dbf2af5/windows/security/security-utilities/f/farbar-recovery-scan-tool/FRST.exe|pid:1248,ProcessStart:132172829162263057 Origine de la détection : Internet Type de détection : Chemin rapide Source de détection : Téléchargements et pièces jointes Utilisateur : LAPTOP-01GSCOJH\ymer Nom du processus : Unknown Version de la signature : AV: 1.305.1304.0, AS: 1.305.1304.0, NIS: 1.305.1304.0 Version du moteur : AM: 1.1.16500.1, NIS: 1.1.16500.1 Date: 2019-10-29 08:28:06.105 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\ymer\Downloads\Lonely.Mountains.Downhill-SiMPLEX\SiMPLEX.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.305.883.0, AS: 1.305.883.0, NIS: 1.305.883.0 Version du moteur : AM: 1.1.16500.1, NIS: 1.1.16500.1 Date: 2019-10-29 08:28:03.593 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\ymer\Downloads\Lonely.Mountains.Downhill-SiMPLEX\SiMPLEX.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la signature : AV: 1.305.883.0, AS: 1.305.883.0, NIS: 1.305.883.0 Version du moteur : AM: 1.1.16500.1, NIS: 1.1.16500.1 Date: 2019-10-27 00:10:55.099 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Detplock&threatid=2147680291&enterprise=0 Nom : Trojan:Win32/Detplock ID : 2147680291 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_E:\HOODLUM\Rebel Cops_Data\Plugins\steam_api.dll Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : LAPTOP-01GSCOJH\ymer Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.305.689.0, AS: 1.305.689.0, NIS: 1.305.689.0 Version du moteur : AM: 1.1.16500.1, NIS: 1.1.16500.1 Date: 2019-10-27 00:07:16.174 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Detplock&threatid=2147680291&enterprise=0 Nom : Trojan:Win32/Detplock ID : 2147680291 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\games\Rebel Cops\Rebel Cops_Data\Plugins\steam_api.dll Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : LAPTOP-01GSCOJH\ymer Nom du processus : C:\games\Rebel Cops\Rebel Cops.exe Version de la signature : AV: 1.305.689.0, AS: 1.305.689.0, NIS: 1.305.689.0 Version du moteur : AM: 1.1.16500.1, NIS: 1.1.16500.1 Date: 2019-11-02 02:21:22.875 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.305.1165.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.16500.1 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2019-10-25 13:24:09.876 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.305.576.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.16500.1 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =================================== Date: 2019-04-18 03:34:45.596 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:33:51.330 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:33:51.128 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:33:50.862 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:33:49.184 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:33:48.931 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:29:05.316 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-04-18 03:28:36.134 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== BIOS: Insyde Corp. V1.25 03/03/2017 Carte mère: Acer Ironman_SK Processeur: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Pourcentage de mémoire utilisée: 56% Mémoire physique - RAM - totale: 6012.22 MB Mémoire physique - RAM - disponible: 2625.75 MB Mémoire virtuelle totale: 11900.22 MB Mémoire virtuelle disponible: 8005.84 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:930.4 GB) (Free:252 GB) NTFS \\?\Volume{5edc31d8-3e3b-47ff-99f8-9a4f70959128}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.46 GB) NTFS \\?\Volume{b4b7abaf-5dba-49ae-821f-fa152445d5f8}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: CC421F07) Partition: GPT. ==================== Fin de Addition.txt =======================