Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-10-2021 Exécuté par lucky (31-10-2021 12:47:23) Exécuté depuis C:\Users\lucky\Desktop Microsoft Windows 10 Famille Version 20H2 19042.1288 (X64) (2021-04-20 19:54:10) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-496747561-3092127905-3112969351-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-496747561-3092127905-3112969351-503 - Limited - Disabled) Invité (S-1-5-21-496747561-3092127905-3112969351-501 - Limited - Disabled) lucky (S-1-5-21-496747561-3092127905-3112969351-1001 - Administrator - Enabled) => C:\Users\lucky WDAGUtilityAccount (S-1-5-21-496747561-3092127905-3112969351-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Total AV (Disabled - Up to date) {B185458D-38B3-A010-10F7-3D378DAA6032} AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.8.0 - ASUSTek COMPUTER INC.) Hidden ASUS Aac_NBDT HAL (HKLM-x32\...\{96b8f6e2-c120-487f-ba6a-ac08ff1110af}) (Version: 2.3.8.0 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.2.10 - ASUSTek COMPUTER INC.) Hidden ASUS AURA Headset Component (HKLM-x32\...\{c75683da-7c5a-47f5-bd1f-8fe11b855a52}) (Version: 1.2.10 - ASUSTek COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.05 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.45 - ASUSTek COMPUTER INC.) Hidden ASUS Keyboard HAL (HKLM-x32\...\{70a02ca5-4b39-4704-a3b3-753180d43bfd}) (Version: 1.0.45 - ASUSTek COMPUTER INC.) Hidden ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.31 - ASUSTeK Computer Inc.) Hidden ASUS MB Peripheral Products (HKLM-x32\...\{41fd1901-1c71-453a-b440-dbe756a2cdc6}) (Version: 1.0.31 - ASUSTeK Computer Inc.) Hidden ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.48 - ASUSTek COMPUTER INC.) Hidden ASUS Mouse HAL (HKLM-x32\...\{be658f64-af9c-4e70-b2b1-72f1de515a1b}) (Version: 1.0.48 - ASUSTek COMPUTER INC.) Hidden ASUS Promotion (HKLM\...\{10FE8E2F-7BDD-4430-8D63-3D3BA3F708D9}) (Version: 1.0.0 - ASUSTeK COMPUTER INC.) ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.59 - ASUSTeK Computer Inc.) Hidden AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.15 - ASUS) AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.15 - ASUS) AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.35 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{35381ead-8a19-4bff-a272-dcdfe38a5867}) (Version: 3.04.35 - ASUSTeK Computer Inc.) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 21.9.2493 - Avast Software) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Better-CrewLink 2.8.0 (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\03ceac78-9166-585d-b33a-90982f435933) (Version: 2.8.0 - OhMyGuus) Blitz (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.15.67 - Blitz, Inc.) Discord (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{B937FE60-4887-4C53-8C57-8821CBA819FD}) (Version: 1.1.279.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) FiveM (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2245.0 - Rockstar Games) Ingenering Group Inc Product (HKLM-x32\...\BridleBuddles) (Version: 2.1.0.0 - Ingenering Group Inc) Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) LibreOffice 7.1.2.2 (HKLM\...\{07426A34-E0CD-4EC4-843B-F7A47C7BC835}) (Version: 7.1.2.2 - The Document Foundation) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) MegaTrainer Ultimate version 2.5.0.1 (HKLM\...\{68A5CFDB-E05C-46BC-B2EB-988D1E2C2444}_is1) (Version: 2.5.0.1 - MegaDev GmbH) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14527.20234 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{F6678473-0198-46D0-A88F-2A247E6FA03C}) (Version: 1.0.0.0 - Mojang) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA GeForce Experience 3.20.0.118 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.118 - NVIDIA Corporation) NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote graphique 471.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.51 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Opera Stable 80.0.4170.63 (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\Opera 80.0.4170.63) (Version: 80.0.4170.63 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.106.49214 - Electronic Arts, Inc.) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Paladium Launcher 1.0.0-beta.3 (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\{47e8ef43-675f-53e8-b279-dc37a3f5eb19}) (Version: 1.0.0-beta.3 - Paladium) Paladium Launcher 1.0.0-beta.4 (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\47e8ef43-675f-53e8-b279-dc37a3f5eb19) (Version: 1.0.0-beta.4 - Paladium) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.37.349 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games) ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.2.18.5 - ASUSTek COMPUTER INC.) SAntivirus Realtime Protection Lite (HKLM-x32\...\SAntivirus) (Version: 1.0.22.28 - Corp DCom) <==== ATTENTION Search Powered by Yahoo! (HKLM-x32\...\{B6425E82-E6C2-8F02-5742-FF8287C22C02}) (Version: - ) SSOption (HKLM-x32\...\SSOptin) (Version: 2.0.7.5 - FuchsiaCell LLC.) <==== ATTENTION Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Taskbar system version 1.0.0.2 (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\{C40E1200-5BEC-410C-B3C5-F7B475729D42}_is1) (Version: 1.0.0.2 - Taskbar system) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) TotalAV (HKLM-x32\...\TotalAV) (Version: 5.15.69 - TotalAV) <==== ATTENTION Trackmania (HKLM-x32\...\Uplay Install 5595) (Version: - Ubisoft) Twitch (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 92.0 - Ubisoft) VALORANT (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) WebAdvisor par McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.641 - McAfee, LLC) WeMod (HKU\S-1-5-21-496747561-3092127905-3112969351-1001\...\WeMod) (Version: 7.0.19 - WeMod) WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Packages: ========= ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_4.0.8.0_x64__qmba6cd70vzyy [2021-03-29] (ASUSTeK COMPUTER INC.) ASUS Windows Mixed Reality Headset -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWindowsMixedRealityHMDDCA_1.2.7.0_x64__qmba6cd70vzyy [2020-05-07] (ASUSTeK COMPUTER INC.) Avast Antivirus Download Center -> C:\Program Files\WindowsApps\51CA791E.AvastAntivirusDownloadCenter_1.21.1.0_x64__s1d0xtrs8dx04 [2021-09-18] (AVAST Software) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-04-17] (Microsoft Corporation) McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.67.0_x64__wafk5atnkzcwy [2021-09-18] (McAfee LLC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-20] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-20] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-30] (Microsoft Studios) [MS Ad] MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_3.0.25.0_x64__qmba6cd70vzyy [2021-10-30] (ASUSTeK COMPUTER INC.) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-12-25] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.183.0_x64__dt26b99r8h8gj [2020-05-07] (Realtek Semiconductor Corp) Sonic Studio 3 -> C:\Program Files\WindowsApps\A-Volute.SonicStudio3_3.16.19.0_x64__w2gh52qy24etm [2021-08-30] (A-Volute) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-15] (Spotify AB) [Startup Task] Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.2.24.0_x86__3h5nez1g3qt2c [2021-08-19] (GT Office PDF Studio) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-496747561-3092127905-3112969351-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> C:\Users\lucky\AppData\Local\NhNotifSys\sonicstudio\asusns.exe (A-Volute SAS -> A-Volute) CustomCLSID: HKU\S-1-5-21-496747561-3092127905-3112969351-1001_Classes\CLSID\{A88FE09F-D761-4E4B-9C2D-B2683F8F1F61} -> [MEGA] => C:\Users\lucky\Documents\MEGA [2021-01-16 19:49] ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-10-29] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-10-29] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-10-29] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-10-29] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\lucky\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-24] (Mega Limited -> ) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvak.inf_amd64_8a6c33718d5a3b53\nvshext.dll [2021-08-26] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-10-29] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2021-10-19 16:41 - 2021-10-30 12:04 - 000415232 _____ () [Fichier non signé] \\?\C:\Users\lucky\AppData\Local\Programs\Blitz\resources\app.asar.unpacked\node_modules\leveldown\prebuilds\win32-ia32\node.napi.node 2019-08-15 18:13 - 2019-08-15 18:13 - 000989184 _____ () [Fichier non signé] C:\Program Files (x86)\TotalAV\e_sqlite3.DLL 2021-05-14 11:22 - 2021-05-14 11:22 - 000113664 _____ () [Fichier non signé] C:\Program Files (x86)\TotalAV\Netlib.dll 2020-12-16 00:10 - 2020-12-16 00:10 - 001165824 _____ () [Fichier non signé] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.67.0_x64__wafk5atnkzcwy\e_sqlite3.dll 2021-10-19 16:41 - 2021-10-30 12:04 - 002564096 _____ () [Fichier non signé] C:\Users\lucky\AppData\Local\Programs\Blitz\ffmpeg.dll 2021-10-19 16:41 - 2021-10-30 12:04 - 000357888 _____ () [Fichier non signé] C:\Users\lucky\AppData\Local\Programs\Blitz\libegl.dll 2021-10-19 16:41 - 2021-10-30 12:04 - 006827520 _____ () [Fichier non signé] C:\Users\lucky\AppData\Local\Programs\Blitz\libglesv2.dll 2020-05-26 17:08 - 2020-05-26 17:08 - 002831360 _____ (Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\LightingService\log4cxx.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000047104 _____ (havendv) [Fichier non signé] C:\Program Files (x86)\TotalAV\NamedPipeServerStream.NetFrameworkVersion.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000353792 _____ (hxxps//system.data.sqlite.org/) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Data.SQLite.dll 2021-09-17 19:29 - 2021-09-17 19:29 - 016744448 _____ (McAfee LLC) [Fichier non signé] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.67.0_x64__wafk5atnkzcwy\mcafee-security.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000010752 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Accessibility.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000293888 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.CSharp.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000028160 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.DependencyInjection.Abstractions.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000062976 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.DependencyInjection.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000038912 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.Logging.Abstractions.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000024576 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.Logging.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000041472 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.Options.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000029184 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Extensions.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000007680 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Win32.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000033792 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.Win32.Registry.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 003406336 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\PresentationCore.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000242176 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\PresentationFramework.Aero2.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 005783040 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\PresentationFramework.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000008704 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\PresentationFramework-SystemData.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000008192 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\PresentationFramework-SystemXml.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000167424 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Collections.Immutable.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000035328 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Collections.NonGeneric.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000032256 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Collections.Specialized.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000005632 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ComponentModel.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000014336 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ComponentModel.EventBasedAsync.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000021504 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ComponentModel.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000259072 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ComponentModel.TypeConverter.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000365568 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Configuration.ConfigurationManager.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000062976 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Console.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000954368 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Data.Common.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000040960 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Diagnostics.DiagnosticSource.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000119808 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Diagnostics.EventLog.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000012288 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Diagnostics.FileVersionInfo.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000105472 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Diagnostics.Process.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000403968 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Drawing.Common.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000047616 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Drawing.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000091136 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.Compression.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000034816 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.FileSystem.AccessControl.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000086016 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.FileSystem.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000016896 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.FileSystem.DriveInfo.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000028160 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.FileSystem.Watcher.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000108544 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.Packaging.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000054272 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.IO.Pipes.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000127488 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Linq.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000541696 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Linq.Expressions.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000284160 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Management.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000532992 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.Http.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000036352 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.NameResolution.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000079872 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.NetworkInformation.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000079872 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000130560 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.Requests.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000225792 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.Security.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000014336 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.ServicePoint.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000193024 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.Sockets.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000057344 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.WebClient.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000026112 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Net.WebHeaderCollection.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000035328 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ObjectModel.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 003054080 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Private.Xml.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000025088 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Reflection.DispatchProxy.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000434688 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Reflection.Metadata.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000006656 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Runtime.CompilerServices.VisualC.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000010752 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Runtime.InteropServices.RuntimeInformation.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000062976 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Runtime.Numerics.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000010752 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Runtime.Serialization.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000078848 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.AccessControl.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000038912 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Claims.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000225280 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.Algorithms.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000067072 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.Csp.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000031232 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.Encoding.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000277504 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.Pkcs.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000040960 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.Primitives.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000180736 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Cryptography.X509Certificates.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000060416 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Security.Principal.Windows.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000050176 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.ServiceProcess.ServiceController.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000137216 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Text.RegularExpressions.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000017920 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Threading.AccessControl.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000141312 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Transactions.Local.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000014848 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Web.HttpUtility.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000734208 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Windows.Controls.Ribbon.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000046592 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Windows.Extensions.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 006715392 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Windows.Forms.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000564736 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\System.Xaml.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000032768 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\UIAutomationProvider.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000200704 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\UIAutomationTypes.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 001046528 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\WindowsBase.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000086016 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\TotalAV\WindowsFormsIntegration.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000132096 _____ (Microsoft.AppCenter) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.AppCenter.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000013312 _____ (Microsoft.AppCenter.Analytics) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.AppCenter.Analytics.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000041984 _____ (Microsoft.AppCenter.Crashes) [Fichier non signé] C:\Program Files (x86)\TotalAV\Microsoft.AppCenter.Crashes.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000683008 _____ (Newtonsoft) [Fichier non signé] C:\Program Files (x86)\TotalAV\Newtonsoft.Json.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000030720 _____ (pwm) [Fichier non signé] C:\Program Files (x86)\TotalAV\pwm.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000066048 _____ (Raygun) [Fichier non signé] C:\Program Files (x86)\TotalAV\Mindscape.Raygun4Net.NetCore.Common.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000004608 _____ (Raygun) [Fichier non signé] C:\Program Files (x86)\TotalAV\Mindscape.Raygun4Net.NetCore.dll 2020-04-05 18:36 - 2020-04-05 18:36 - 001343488 _____ (Robert Simpson, et al.) [Fichier non signé] C:\Program Files (x86)\TotalAV\SQLite.Interop.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000005632 _____ (SourceGear) [Fichier non signé] C:\Program Files (x86)\TotalAV\SQLitePCLRaw.batteries_v2.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000045568 _____ (SourceGear) [Fichier non signé] C:\Program Files (x86)\TotalAV\SQLitePCLRaw.core.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000005120 _____ (SourceGear) [Fichier non signé] C:\Program Files (x86)\TotalAV\SQLitePCLRaw.nativelibrary.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000056320 _____ (SourceGear) [Fichier non signé] C:\Program Files (x86)\TotalAV\SQLitePCLRaw.provider.dynamic_cdecl.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000038912 _____ (Stephen Cleary) [Fichier non signé] C:\Program Files (x86)\TotalAV\Nito.AsyncEx.Coordination.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000032256 _____ (Stephen Cleary) [Fichier non signé] C:\Program Files (x86)\TotalAV\Nito.AsyncEx.Tasks.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000015360 _____ (Stephen Cleary) [Fichier non signé] C:\Program Files (x86)\TotalAV\Nito.Collections.Deque.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000007168 _____ (Stephen Cleary) [Fichier non signé] C:\Program Files (x86)\TotalAV\Nito.Disposables.dll 2020-05-07 03:55 - 2020-05-07 03:55 - 000023040 _____ (Synaptics Incorporated.) [Fichier non signé] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.183.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll 2021-01-18 15:48 - 2021-10-20 13:05 - 001282048 _____ (The OpenSSL Project, hxxp//www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2020-12-09 18:37 - 2020-12-09 18:37 - 002650112 _____ (The OpenSSL Project, hxxps//www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\TotalAV\libcrypto-1_1.dll 2020-12-09 18:37 - 2020-12-09 18:37 - 000641024 _____ (The OpenSSL Project, hxxps//www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\TotalAV\libssl-1_1.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-10-20 13:05 - 2021-10-20 13:05 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll 2020-04-28 04:05 - 2020-04-28 04:05 - 006164600 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] C:\Users\lucky\AppData\Local\MEGAsync\Qt5Core.dll 2019-09-12 00:18 - 2019-09-12 00:18 - 000429056 _____ (TODO: ) [Fichier non signé] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000076288 _____ (UiPath) [Fichier non signé] C:\Program Files (x86)\TotalAV\UiPath.CoreIpc.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000389632 _____ (Utilizr) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilizr.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000041472 _____ (Utilizr.NotifyIcon) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilizr.NotifyIcon.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000033280 _____ (Utilizr.OpenVPN) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilizr.OpenVPN.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000040960 _____ (Utilizr.VPN) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilizr.VPN.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000014848 _____ (Utilizr.VPN.RasSharp.NetCore) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilizr.VPN.RasSharp.NetCore.dll 2021-05-14 11:24 - 2021-05-14 11:24 - 000376320 _____ (Utilzr.WPF) [Fichier non signé] C:\Program Files (x86)\TotalAV\Utilzr.WPF.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [490] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-496747561-3092127905-3112969351-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-496747561-3092127905-3112969351-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-496747561-3092127905-3112969351-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=ASTE SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps//fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_fptxqjxp1acegikmwv4_20_27_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FtByCyCyDyDyEtC0D0D0FyDyD0CyB0DtN0D0Tzu0StAtCtDzztN1L2XzuyDtFtCtFtDtFtCyCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyDzytA0D0ByCyEtAtGtBtAyD0CtGyDzyyDyDtGtDtAzy0FtG0FtB0F0FtC0FyCyByB0C0F0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1StAyCtC1OyCyByDtGyC1OyC1OtGyEyD1P1RtGzyzy1SyEtGyEtByB1SyByEzy1S1T1TzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByByDtBzztN1Q2Z1B1P1RzutCyDzytAzyzztByEtByC%26cr%3D104225707%26a%3Dwsg_fptxqjxp1acegikmwv4_20_27_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps//fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_fptxqjxp1acegikmwv4_20_27_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FtByCyCyDyDyEtC0D0D0FyDyD0CyB0DtN0D0Tzu0StAtCtDzztN1L2XzuyDtFtCtFtDtFtCyCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyDzytA0D0ByCyEtAtGtBtAyD0CtGyDzyyDyDtGtDtAzy0FtG0FtB0F0FtC0FyCyByB0C0F0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1StAyCtC1OyCyByDtGyC1OyC1OtGyEyD1P1RtGzyzy1SyEtGyEtByB1SyByEzy1S1T1TzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByByDtBzztN1Q2Z1B1P1RzutCyDzytAzyzztByEtByC%26cr%3D104225707%26a%3Dwsg_fptxqjxp1acegikmwv4_20_27_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps//fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_fptxqjxp1acegikmwv4_20_27_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FtByCyCyDyDyEtC0D0D0FyDyD0CyB0DtN0D0Tzu0StAtCtDzztN1L2XzuyDtFtCtFtDtFtCyCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyDzytA0D0ByCyEtAtGtBtAyD0CtGyDzyyDyDtGtDtAzy0FtG0FtB0F0FtC0FyCyByB0C0F0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1StAyCtC1OyCyByDtGyC1OyC1OtGyEyD1P1RtGzyzy1SyEtGyEtByB1SyByEzy1S1T1TzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByByDtBzztN1Q2Z1B1P1RzutCyDzytAzyzztByEtByC%26cr%3D104225707%26a%3Dwsg_fptxqjxp1acegikmwv4_20_27_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps//fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_fptxqjxp1acegikmwv4_20_27_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FtByCyCyDyDyEtC0D0D0FyDyD0CyB0DtN0D0Tzu0StAtCtDzztN1L2XzuyDtFtCtFtDtFtCyCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyDzytA0D0ByCyEtAtGtBtAyD0CtGyDzyyDyDtGtDtAzy0FtG0FtB0F0FtC0FyCyByB0C0F0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1StAyCtC1OyCyByDtGyC1OyC1OtGyEyD1P1RtGzyzy1SyEtGyEtByB1SyByEzy1S1T1TzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByByDtBzztN1Q2Z1B1P1RzutCyDzytAzyzztByEtByC%26cr%3D104225707%26a%3Dwsg_fptxqjxp1acegikmwv4_20_27_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} SearchScopes: HKLM-x32 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxp//www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKU\S-1-5-21-496747561-3092127905-3112969351-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-496747561-3092127905-3112969351-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps//fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_fptxqjxp1acegikmwv4_20_27_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0FtByCyCyDyDyEtC0D0D0FyDyD0CyB0DtN0D0Tzu0StAtCtDzztN1L2XzuyDtFtCtFtDtFtCyCzztN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2SyDzytA0D0ByCyEtAtGtBtAyD0CtGyDzyyDyDtGtDtAzy0FtG0FtB0F0FtC0FyCyByB0C0F0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1StAyCtC1OyCyByDtGyC1OyC1OtGyEyD1P1RtGzyzy1SyEtGyEtByB1SyByEzy1S1T1TzyyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByByDtBzztN1Q2Z1B1P1RzutCyDzytAzyzztByEtByC%26cr%3D104225707%26a%3Dwsg_fptxqjxp1acegikmwv4_20_27_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-04-13] (Oracle America, Inc. -> Oracle Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-10-20] (McAfee, LLC -> McAfee, LLC) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-04-13] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-10-20] (McAfee, LLC -> McAfee, LLC) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 05:49 - 2021-05-20 20:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-496747561-3092127905-3112969351-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lucky\Pictures\60-604612_best-wallpaper-4k.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{F53BE373-5C0B-44FB-96BF-02E4B634EE9F}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => Pas de fichier FirewallRules: [{79C4462B-D198-4058-A977-AC22D4FD1A0B}] => (Block) C:\program files\plitch\plitch.exe => Pas de fichier FirewallRules: [{69765BE6-774F-43FD-85A4-5947C425A9EC}] => (Block) C:\program files\plitch\plitch.exe => Pas de fichier FirewallRules: [UDP Query User{95AF1298-EA5B-4D78-9073-6DDE49D2F8A8}C:\program files\plitch\plitch.exe] => (Allow) C:\program files\plitch\plitch.exe => Pas de fichier FirewallRules: [TCP Query User{05669D52-F0FE-4637-88E2-988D5FBE51ED}C:\program files\plitch\plitch.exe] => (Allow) C:\program files\plitch\plitch.exe => Pas de fichier FirewallRules: [UDP Query User{543FF819-21BD-4454-BE3D-891CD016C2C7}C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{FC754E4B-28CA-4B2A-94D6-F4B86EE9CA64}C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{4794B492-7E9B-431E-83FE-F3C4B3FE22B7}C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{F0162D10-CC32-49AD-9ECE-4726FBE651F3}C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{353FCBE7-50B0-4678-8688-48CF03D99C1C}C:\users\lucky\desktop\among us extra role\among us.exe] => (Block) C:\users\lucky\desktop\among us extra role\among us.exe => Pas de fichier FirewallRules: [TCP Query User{72EC7240-658C-429A-BA3D-5C3F11F574CE}C:\users\lucky\desktop\among us extra role\among us.exe] => (Block) C:\users\lucky\desktop\among us extra role\among us.exe => Pas de fichier FirewallRules: [{A12D5DAE-EF1C-470E-BC3A-0B17177D8327}] => (Block) C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [{BCE85FAF-CE68-418A-A969-EE0D844B4199}] => (Block) C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [UDP Query User{867DBD41-9A14-4D5E-BE74-E4D7744691BA}C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [TCP Query User{BDFAAD47-0445-4566-9CE0-08E4FFE8B6E5}C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.153.608.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [{68186A13-CEAD-4554-875C-330D6108CDC1}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{B035B83F-9EE6-415A-8B7F-FB42D64B2A00}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [UDP Query User{7C3B742C-BFDD-4979-95D4-BDC86BC92F31}C:\users\lucky\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\lucky\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [TCP Query User{C9801EEA-F3F4-4A77-B8DE-CDD1849BC1F8}C:\users\lucky\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\lucky\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [UDP Query User{3EF7754A-5E59-4EE0-ABA0-D57AF0222998}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe FirewallRules: [TCP Query User{D3C9A93C-2760-4C2A-A75E-9258B5BFBC7A}C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre1.8.0_202\bin\javaw.exe FirewallRules: [{ACB87FBA-D339-4293-87B7-5DAAA4031F36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe => Pas de fichier FirewallRules: [{E690EC5E-BA3B-45D4-8175-CBE045DC76DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe => Pas de fichier FirewallRules: [UDP Query User{C53ED37F-120D-4E25-97B5-9A3E477B8B8B}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{81D30DC4-7698-4209-962E-B701B41A1F15}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{05B63DCB-ABFD-4F48-A5EE-8F978D1CFC1F}C:\users\lucky\documents\among us amoureux\among us.exe] => (Allow) C:\users\lucky\documents\among us amoureux\among us.exe => Pas de fichier FirewallRules: [TCP Query User{297D5C73-7000-4FED-9B65-C0D8AF0E4778}C:\users\lucky\documents\among us amoureux\among us.exe] => (Allow) C:\users\lucky\documents\among us amoureux\among us.exe => Pas de fichier FirewallRules: [UDP Query User{5B4213C6-8ED3-4682-9751-B98E06158E92}C:\users\lucky\documents\among us shériff\among us.exe] => (Allow) C:\users\lucky\documents\among us shériff\among us.exe => Pas de fichier FirewallRules: [TCP Query User{AD731A16-8846-43E9-9185-61611B1AB317}C:\users\lucky\documents\among us shériff\among us.exe] => (Allow) C:\users\lucky\documents\among us shériff\among us.exe => Pas de fichier FirewallRules: [{2431007E-A3CC-4DE5-8B03-94182D2D3B89}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Trackmania\trackmania.exe (NADEO SASU -> Nadeo) FirewallRules: [{F8A4362F-DD5C-42BA-A41D-982DC848B1D6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Trackmania\trackmania.exe (NADEO SASU -> Nadeo) FirewallRules: [UDP Query User{05286D6B-A072-4F8C-A877-752F0B864897}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{1B3333A3-C187-49E3-8B21-9BEB112EDC26}D:\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{C8B3D23D-0062-466E-9A20-3C8E109566B0}C:\users\lucky\appdata\local\programs\bettercrewlink\better-crewlink.exe] => (Allow) C:\users\lucky\appdata\local\programs\bettercrewlink\better-crewlink.exe (OhMyGuus) [Fichier non signé] FirewallRules: [TCP Query User{4D6E522B-6CA0-408E-8EE6-CA213B71E0E8}C:\users\lucky\appdata\local\programs\bettercrewlink\better-crewlink.exe] => (Allow) C:\users\lucky\appdata\local\programs\bettercrewlink\better-crewlink.exe (OhMyGuus) [Fichier non signé] FirewallRules: [UDP Query User{E000BF89-8E17-4A2A-B8FD-4D78CF4F5215}C:\users\lucky\appdata\local\programs\crewlink\crewlink.exe] => (Allow) C:\users\lucky\appdata\local\programs\crewlink\crewlink.exe => Pas de fichier FirewallRules: [TCP Query User{65204091-725F-417C-BD9C-D8A5E3775020}C:\users\lucky\appdata\local\programs\crewlink\crewlink.exe] => (Allow) C:\users\lucky\appdata\local\programs\crewlink\crewlink.exe => Pas de fichier FirewallRules: [UDP Query User{7C4BECC5-0AC4-4517-9D93-A194E95BFD94}C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe] => (Allow) C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe (Microsoft Corporation -> Ensemble Studios) [Fichier non signé] FirewallRules: [TCP Query User{375FCBFB-E8FE-4EEA-9FE3-C27CEB1A2EC7}C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe] => (Allow) C:\program files (x86)\microsoft studios\age of empires iii - complete collection\bin\age3.exe (Microsoft Corporation -> Ensemble Studios) [Fichier non signé] FirewallRules: [UDP Query User{5F1B8516-90E8-401A-ABDE-105BA436DD29}C:\users\lucky\documents\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\documents\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{62B9AA0E-96CC-4369-9D8A-E36A5A431654}C:\users\lucky\documents\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\documents\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{EC65CB46-1E4C-41B6-910B-CA0B4E5E9F99}C:\users\lucky\desktop\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\desktop\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{98B270F8-8366-4B1F-9260-4AA2C8844804}C:\users\lucky\desktop\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\desktop\[game3rb.com]golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{BB7DF025-979D-4058-9DE5-5C2B207620F0}C:\users\lucky\documents\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\lucky\documents\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [TCP Query User{CC8FD5C3-4026-475D-B045-768D31F958B3}C:\users\lucky\documents\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\lucky\documents\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [UDP Query User{6DE3C3E9-12CD-4454-ABB0-77868E9C9B92}C:\users\lucky\documents\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\documents\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{D5C2C651-7509-4ABA-B33B-A431077473B2}C:\users\lucky\documents\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) C:\users\lucky\documents\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{9E14D694-F7EA-4456-B9CC-E76E746E0C83}C:\users\lucky\desktop\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Block) C:\users\lucky\desktop\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{A2A51F95-0FA5-4BB0-9153-53F9E4271C21}C:\users\lucky\desktop\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Block) C:\users\lucky\desktop\[game3rb.com] golf.it.update.07.07.2020\golf.it.update.07.07.2020\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{B0EDEA29-0D69-4361-90C4-290F25BC4685}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{16A4E725-D4E8-44FE-B7D3-77CCEAE9DCCD}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{E07E9B19-4BE8-48F3-9A31-D70CF1C83AED}C:\users\lucky\desktop\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\lucky\desktop\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [TCP Query User{955541C7-B0F9-4FFC-B3D8-647AA2AA4A72}C:\users\lucky\desktop\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\lucky\desktop\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [UDP Query User{9556008C-8223-45C3-A7EE-C6103CF188DD}C:\users\lucky\desktop\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe] => (Allow) C:\users\lucky\desktop\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe => Pas de fichier FirewallRules: [TCP Query User{BC1D73A9-AF32-4262-ABB5-F242B50C90BA}C:\users\lucky\desktop\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe] => (Allow) C:\users\lucky\desktop\[game3rb.com] gang beasts v1.15\[game3rb.com] gang beasts v1.15\gang beasts\gang beasts.exe => Pas de fichier FirewallRules: [{1A433E4B-9C69-4B27-8725-363907985D1E}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{60CA4D1E-FC3B-44EF-B7FB-439F0C81B05C}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{7E2205CD-946F-4638-A831-45FEC32CC185}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{E29D94E2-7E58-4579-8F58-49D211F2DEAC}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [UDP Query User{023F3A06-3BF9-4C97-AFF9-B6EA4CF56A12}C:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Block) C:\program files\epic games\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [TCP Query User{A9E7B1B0-DAFA-4FA0-A9B9-A4B862754412}C:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Block) C:\program files\epic games\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [UDP Query User{7278C715-EB45-4904-81B5-10CF98EE00FD}D:\call of duty modern warfare\modernwarfare.exe] => (Block) D:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{311AFF12-4C07-460D-A3EE-42E0E087E63E}D:\call of duty modern warfare\modernwarfare.exe] => (Block) D:\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{FDF09B55-F21F-4C61-9751-5126C4305E63}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{A9DAC9BE-D557-47D3-93D7-3A418CC6D810}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{3CFD4ACD-F4FE-4857-9B04-A3E5974C3BED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020\fm.exe => Pas de fichier FirewallRules: [{47E64423-FD50-4F27-9028-59E027196D5D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020\fm.exe => Pas de fichier FirewallRules: [{7A8E63BC-DF70-41C8-8C5B-99DD873AB35A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Pas de fichier FirewallRules: [{6C5AAA7F-A708-420C-84E1-299049C7A23E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => Pas de fichier FirewallRules: [{DE3D0571-5468-4DD1-A6FD-393A2317AE4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020 Touch\fm.exe => Pas de fichier FirewallRules: [{1CD56038-C6AD-4450-B956-2E14FB79EAA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020 Touch\fm.exe => Pas de fichier FirewallRules: [UDP Query User{CBC95BDC-2E8C-4C0F-A31A-4B26B5836477}C:\users\lucky\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\lucky\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{3A5557B6-9BE1-43CD-AFA1-BC0048ECF5BC}C:\users\lucky\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\lucky\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe FirewallRules: [{4FF9B4F0-D7C7-4804-A315-C5417449EDB1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{134D9EA2-C61A-4DCE-B30E-657D1DC2CE1B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{5E212AAB-3042-47C0-99A9-4E17FCA01840}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier FirewallRules: [{27D25075-2444-4F13-B1A7-9F22BB1132CD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier FirewallRules: [{066E6AA0-6515-44B4-9834-BB88A3CADDBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BC0485F1-B55D-4FCA-BDCC-AC33AB8546D4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{65585F7F-A1BA-49A0-8BAE-7DA3D687781F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{779960D7-C492-4701-B2A1-ED4778FCF396}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0409C4EE-B156-4E9B-A601-82C20CD1C176}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1D5FB1AD-BB30-4D21-A417-393DB44D1E38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E25FFF02-106F-459E-B29C-62FCB8E4C210}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020 Editor\editor.exe => Pas de fichier FirewallRules: [{35466833-5218-4FAB-91FF-676CF08FDA49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020 Editor\editor.exe => Pas de fichier FirewallRules: [TCP Query User{1CFF8CD6-E195-4D6B-94B6-FA109C3FDCCC}C:\users\lucky\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) FirewallRules: [UDP Query User{FA2A3F33-09AF-4BD3-822D-57975A8C927A}C:\users\lucky\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\lucky\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) FirewallRules: [{5951B181-17B0-4445-80B6-1CCC3871460A}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Pas de fichier FirewallRules: [{5879C12B-B3F2-46E9-A70F-53C9E0B2CA1B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => Pas de fichier FirewallRules: [{38BBC582-4530-442C-87A5-DDA8AAF1A95B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => Pas de fichier FirewallRules: [TCP Query User{61E7D1DD-C75F-4D84-8957-4DD95436BC17}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{453A9472-5473-4647-BB62-C4B969513830}D:\riot games\riot client\riotclientservices.exe] => (Allow) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{F0657DF3-0340-4A3D-9984-E476529C6548}] => (Block) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{B9F9A96A-F10A-43E5-A044-FC0CABD844FF}] => (Block) D:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{782884CC-39E5-4F92-9147-C6C7781EE53E}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{7380B140-08D6-47BD-9DC6-98BADF1B6C58}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [{95EBE76A-5A4E-42CD-8975-806C6377845C}] => (Allow) D:\SteamLibrary\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [{4CE51F67-EF09-4C7E-AFB7-8926FFB7C5C7}] => (Allow) D:\SteamLibrary\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd) FirewallRules: [TCP Query User{994A51BA-EBD8-4738-A170-A9890755ACE1}D:\steamlibrary\steamapps\common\total war attila\attila.exe] => (Allow) D:\steamlibrary\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [UDP Query User{4065C5F2-8768-45FA-9D55-587E4149AB76}D:\steamlibrary\steamapps\common\total war attila\attila.exe] => (Allow) D:\steamlibrary\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [{6007FC8A-EFF0-4805-A763-149075945417}] => (Block) D:\steamlibrary\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [{C05FC548-9DB6-46B7-A44E-64D6C8AAFAFE}] => (Block) D:\steamlibrary\steamapps\common\total war attila\attila.exe (SEGA EUROPE LIMITED -> The Creative Assembly Ltd) FirewallRules: [{C6820384-AEC7-4390-ABA5-FAF1EBC49F39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => Pas de fichier FirewallRules: [{CE0D321C-1AAF-4313-AEC0-5D5B8334FBC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe => Pas de fichier FirewallRules: [{E3EAE693-A83D-4713-B84F-934F57100EEC}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => Pas de fichier FirewallRules: [{E471E544-DF5D-43B8-B1D9-010616AF8B19}] => (Allow) C:\Program Files\ASUS\ARMOURY CRATE Service\MobilePlugin\AutoConnectHelper.exe => Pas de fichier FirewallRules: [{FDBBA858-E535-4F84-872C-C9AFBE8F00B1}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{0CDE398C-5294-4745-9A67-03B88BF25695}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation) FirewallRules: [{A0A67C5E-13E5-4E43-93F0-FF8AC1CA909A}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{474C5C87-0D70-4007-8B55-13F5C642B904}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{C267B990-0124-4CA3-945A-0D0C8247A14C}] => (Allow) D:\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé] FirewallRules: [{D9ADAA69-709F-44BD-98C5-4313ABC4E00D}] => (Allow) D:\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé] FirewallRules: [TCP Query User{B77CC9D2-1D64-47C7-B6F4-A8474D5F84C3}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{E665078D-B3FB-4918-A91E-6BABA148C697}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{CF8862D6-EC12-4599-9DB5-3A73E39F8E00}D:\steam\steamapps\common\among us\among us.exe] => (Allow) D:\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [UDP Query User{552ADB40-327D-40AC-B1DE-C7D607B1D5A8}D:\steam\steamapps\common\among us\among us.exe] => (Allow) D:\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [{E6AF79DD-5B3D-4B71-AB65-EAEDD48809A5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{9CAAAA1F-B30F-433F-9FE9-A369689AF81D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{566CF070-9B52-408A-A338-95BBD3B016A2}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé] FirewallRules: [{7EB93AC4-4C72-4579-9A28-23E02FA260BA}] => (Allow) D:\Steam\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé] FirewallRules: [{CF122259-C943-43F9-AE00-F53A53DE0C76}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{FCE0D581-4969-4B1F-A0DE-02C3A7115FED}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{12E46C6B-B4F6-4846-9B94-672801F68CA1}] => (Allow) C:\Users\lucky\AppData\Local\Programs\Opera\79.0.4143.72\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{22B9A2D8-79EF-4626-9186-AB42F1002483}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D1EDF668-3279-4B9A-ADE8-640A6CEBF915}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{AFDA9C66-F71D-49C3-8B06-F9E4A43C4E67}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{99BDFE35-CFCD-41C0-BFE8-3AB018E4AFDA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{14E593E7-9385-49C0-9CB0-86A825526445}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DDD33632-DC1C-46D6-A9C1-AB722364AA21}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{56A4142A-B034-4D47-9B9D-6231497124BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6A8DDCB3-3297-4CAF-85DA-0986F4A8BE34}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BB14FDC6-D42D-4CFB-9110-D4A638CB931D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D5089CFB-6847-48E1-AEC4-4E7BD3DE89AE}] => (Allow) C:\Users\lucky\AppData\Local\Programs\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{56A06CED-63F2-4324-B5FC-8D4F8A8AACA1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3D0043F1-47EC-449D-83F8-0E8CE1A76101}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E7646813-82A4-4130-9C6B-98BB9C67849D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{813D31A1-691E-4B1B-8687-E5A2FC616070}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{37407367-F38F-4084-8147-D3CAC7172B0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4CFE5A15-0DEA-4E92-9F02-C4E6F4B1AF91}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{567058CE-7092-40F7-8ED9-08A8AC60746E}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{D64DC6EA-35AF-465F-8C7E-07C54EEFED3A}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{9D96B24F-A900-47A1-936B-069FF9EDB939}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{800FDE0A-CD0C-4973-9F0A-01D56D79EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{521C4EA2-18AB-48A9-A6F8-F4AFF6E77660}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{855B4429-FA5D-4684-9B85-42624A4CE781}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{66863546-3308-480E-A0ED-0488172D8494}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5270053D-D973-4060-97DE-98DA1DB25360}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DF3BA91A-E528-4382-8D27-5347377E9DE4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1B214E8B-9694-44C9-9755-5631698C8DDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1A8CBF22-E8FB-489B-8374-AB03F676D052}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8467AD4D-8460-4250-9550-ED76A6280D85}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkNear\AsusLinkNear.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{24D207A8-B4AF-47F2-87B2-B48F50483D9C}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) FirewallRules: [{F45250AD-7B12-425D-BE7D-8C948F71692B}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_74be8ed024c977b8\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) FirewallRules: [{F4459C69-7CB9-4B59-8322-0296085E55E2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= 23-10-2021 19:56:33 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/31/2021 12:38:32 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-9B4NLV1$ via https://AMD-KeyId-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net/templates/Aik/scep : GetCACaps Méthode : GET(63ms) Étape : GetCACaps L’adresse ou le nom de serveur n’a pas pu être résolu 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (10/30/2021 01:10:11 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (10/30/2021 01:10:11 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (10/30/2021 01:10:11 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (10/30/2021 12:03:46 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-9B4NLV1$ via https://AMD-KeyId-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net/templates/Aik/scep : GetCACaps Méthode : GET(47ms) Étape : GetCACaps L’adresse ou le nom de serveur n’a pas pu être résolu 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (10/30/2021 01:21:01 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-9B4NLV1$ via https://AMD-KeyId-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net/templates/Aik/scep : GetCACaps Méthode : GET(110ms) Étape : GetCACaps L’adresse ou le nom de serveur n’a pas pu être résolu 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (10/30/2021 01:17:49 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-9B4NLV1$ via https://AMD-KeyId-8a0578cf56146fea399af903fb5b0ac36eb2786a.microsoftaik.azure.net/templates/Aik/scep : GetCACaps Méthode : GET(78ms) Étape : GetCACaps L’adresse ou le nom de serveur n’a pas pu être résolu 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED) Error: (10/30/2021 01:15:58 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Erreurs système: ============= Error: (10/31/2021 12:40:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Publication des ressources de découverte de fonctions s’est arrêté avec l’erreur : %%2147952449 = L’adresse demandée n’est pas valide dans son contexte. Error: (10/31/2021 12:38:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Epic Online Services s’est terminé de façon inattendue pour la 1ème fois. Error: (10/30/2021 12:14:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NCBCSZSJRSB-SpotifyAB.SpotifyMusic. Error: (10/30/2021 12:03:46 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Publication des ressources de découverte de fonctions s’est arrêté avec l’erreur : %%2147952449 = L’adresse demandée n’est pas valide dans son contexte. Error: (10/30/2021 12:03:33 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 02:20:49 le ‎30/‎10/‎2021 n’était pas prévu. Error: (10/30/2021 12:03:20 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (10/30/2021 01:20:16 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service BITS avec les arguments « Non disponible » pour exécuter le serveur : {4991D34B-80A1-4291-83B6-3328366B9097} Error: (10/30/2021 01:20:11 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service BITS avec les arguments « Non disponible » pour exécuter le serveur : {4991D34B-80A1-4291-83B6-3328366B9097} CodeIntegrity: =============== Date: 2021-10-31 12:41:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-10-31 12:41:20 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. GL10DH.301 10/01/2019 Carte mère: ASUSTeK COMPUTER INC. GL10DH Processeur: AMD Ryzen 5 3400G with Radeon Vega Graphics Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 16318.95 MB Mémoire physique - RAM - disponible: 9719.8 MB Mémoire virtuelle totale: 18750.95 MB Mémoire virtuelle disponible: 9198.16 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:237.23 GB) (Free:70.84 GB) NTFS Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:304.09 GB) NTFS \\?\Volume{599185e8-9516-4cf7-ac20-27e8983c9a03}\ (RECOVERY) (Fixed) (Total:0.98 GB) (Free:0.5 GB) NTFS \\?\Volume{f1daca27-a698-416b-b8b7-16b7a05f8d90}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 74AB7F85) Partition: GPT. ========================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: E3F768E5) Partition: GPT. ==================== Fin de Addition.txt =======================