Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10-01-2022 01 Exécuté par parad (13-01-2022 10:48:49) Exécuté depuis C:\Users\parad\Downloads Microsoft Windows 10 Famille Version 20H2 19042.1415 (X64) (2021-04-06 15:08:37) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3800902818-4272631316-2900706822-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3800902818-4272631316-2900706822-503 - Limited - Disabled) Invité (S-1-5-21-3800902818-4272631316-2900706822-501 - Limited - Disabled) parad (S-1-5-21-3800902818-4272631316-2900706822-1001 - Administrator - Enabled) => C:\Users\parad WDAGUtilityAccount (S-1-5-21-3800902818-4272631316-2900706822-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team) AZ Launcher - Minecraft (HKLM\...\{55F7FCD3-A4D2-43E1-AF0A-079BEB2563F8}_is1) (Version: 3.2.0-win64 - AZ) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.170.10.1001 - BlueStack Systems, Inc.) Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - ) Discord (HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{FA10E700-F142-40B6-BB21-B93C55E0EA24}) (Version: 1.1.267.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{6D70A161-C29B-441B-9AA5-2ABBAB3B4B4D}) (Version: 1.1.1.0 - Epic Games, Inc.) Glorious Model O Software (HKLM-x32\...\{0969D386-B5B4-41BD-98E3-4A1A7D32CB97}_is1) (Version: 1.0.9 - Glorious PC Gaming Race LLC.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC) HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{3E1C36F0-C3A2-4137-9DA4-8580CF6191E1}) (Version: 19.0.324 - Intel Corporation) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1908.12.0.1231 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.0.1000 - Intel Corporation) Java 8 Update 241 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180241F0}) (Version: 8.0.2410.7 - Oracle Corporation) Java 8 Update 241 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180241F0}) (Version: 8.0.2410.7 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LibreOffice 6.4.2.2 (HKLM\...\{366B3DEE-791D-4044-AC14-4FE2265754BA}) (Version: 6.4.2.2 - The Document Foundation) Logiciel de base du périphérique HP Officejet 5740 series (HKLM\...\{23329E64-4157-425B-8A34-72CE61736EBA}) (Version: 40.13.1176.1978 - HP Inc.) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{70281077-96c3-4f75-938c-dc4746110c00}) (Version: 10.1.17903.8106 - Intel(R) Corporation) Lunar Client (HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 2.9.3 - Moonsworth, LLC) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Messenger 97.11.116 (HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 97.11.116 - Facebook, Inc.) Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14701.20262 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.55 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29910 (HKLM-x32\...\{53f1dc9d-ed94-4650-a079-129785ce7905}) (Version: 14.28.29910.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{F6678473-0198-46D0-A88F-2A247E6FA03C}) (Version: 1.0.0.0 - Mojang) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 96.0 (x64 fr)) (Version: 96.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 82.0.3 - Mozilla) NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation) NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation) NVIDIA Pilote graphique 466.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.27 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14701.20248 - Microsoft Corporation) Hidden Process Hacker 2.39 (r124) (HKLM\...\Process_Hacker2_is1) (Version: 2.39.0.124 - wj32) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.32.1206.2018 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8619 - Realtek Semiconductor Corp.) RLBotGUI (HKLM\...\{70BF5866-BD3F-4A5D-B57D-794768E6B8A7}) (Version: 1.0.0 - RLBot) Roblox Player for parad (HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\roblox-player) (Version: - Roblox Corporation) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) Shotcut (HKLM\...\Shotcut) (Version: 21.03.21 - Meltytech, LLC) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) VEGAS Pro 15.0 (HKLM\...\{E1892AB0-7FC4-11E7-9146-95BE57594EAC}) (Version: 15.0.177 - VEGAS) WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-07-17] (Microsoft Corporation) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation) HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2019-09-27] (HP Inc.) HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-06-25] (HP Inc.) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-15] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.12.43.0_x64__v10z8vjag6ke6 [2021-12-21] (HP Inc.) HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-06] (HP Inc.) Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-04-08] (INTEL CORP) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-06] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-06] (Microsoft Corporation) [MS Ad] Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.18.203.0_x64__8wekyb3d8bbwe [2021-12-10] (Microsoft Studios) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.) Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.508.184.0_x86__55nm5eh3cm0pr [2022-01-08] (ROBLOX Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0 [2022-01-08] (Spotify AB) [Startup Task] Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2020-04-09] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3800902818-4272631316-2900706822-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll -> Pas de fichier ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\parad\AppData\Local\MEGAsync\ShellExtX64.dll [2021-11-14] (Mega Limited -> ) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_de7232ad589fe991\nvshext.dll [2021-04-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.FICV] => C:\windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Fichier non signé] HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Fichier non signé] ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [2520] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-02-24] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-02-24] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-22] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-22] (Oracle America, Inc. -> Oracle Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-12-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 05:49 - 2020-10-22 16:57 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\parad\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\bg.png DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run: => "XMouseButtonControl" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Weather" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\StartupFolder: => "Microsoft Update Manager136637.exe" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\StartupFolder: => "Microsoft Update Manager823679.exe" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\StartupFolder: => "Microsoft Update Manager1483821.exe" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "QMxNetworkSync" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "BakkesMod" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Facebook.MessengerDesktop" HKU\S-1-5-21-3800902818-4272631316-2900706822-1001\...\StartupApproved\Run: => "Opera Browser Assistant" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{77D747F8-43AE-4BCF-B847-5E2ABD4B1E33}] => (Allow) C:\Users\parad\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{17503A8A-99B1-459D-994C-0949238798AD}] => (Allow) C:\Users\parad\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{C6B9BB5B-5BE5-430E-8770-0038C974587E}] => (Allow) C:\Users\parad\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier FirewallRules: [UDP Query User{484EE995-E46D-457B-9AA5-06B22C5585F3}C:\users\parad\appdata\local\programs\messenger\messenger.exe] => (Block) C:\users\parad\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.) FirewallRules: [TCP Query User{93EC2A37-7DAF-4844-89BD-056D17F43AED}C:\users\parad\appdata\local\programs\messenger\messenger.exe] => (Block) C:\users\parad\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.) FirewallRules: [UDP Query User{A4AD9730-7F4D-4CCE-AF61-BACC11E72C34}C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe] => (Allow) C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe () [Fichier non signé] FirewallRules: [TCP Query User{FE77FF59-E9E6-49F0-97E2-393CFBA12C9B}C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe] => (Allow) C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe () [Fichier non signé] FirewallRules: [UDP Query User{00F29C3C-BD69-470D-85C6-13DB8F496DC2}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_chromebrowser] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_chromebrowser => Pas de fichier FirewallRules: [TCP Query User{4E6E7DC9-4415-49B9-B880-4186C212AAD8}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_chromebrowser] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_chromebrowser => Pas de fichier FirewallRules: [UDP Query User{517FD325-376B-4F8B-B44F-4CED3207C7AC}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{9BBE8876-415F-4825-8CF8-CA9B4C2689E2}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{DD42A206-3E05-4F17-9364-EDFEFFE1B565}C:\program files (x86)\steam\steamapps\common\the escapitse\theescapists2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the escapitse\theescapists2.exe () [Fichier non signé] FirewallRules: [TCP Query User{F2CE5DEC-6A24-49B5-BE41-187B3EBF0DB0}C:\program files (x86)\steam\steamapps\common\the escapitse\theescapists2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the escapitse\theescapists2.exe () [Fichier non signé] FirewallRules: [UDP Query User{AB532786-DEC5-433F-B265-30571B8733BB}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{6ACD9AA1-7F88-43A4-8402-293876BE5DF1}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [{371DF7DF-7C18-4044-8817-76E1205BDD17}] => (Allow) LPort=57209 FirewallRules: [{1B4F20DA-EB60-4B6C-A49F-6B24BF53F3B6}] => (Allow) LPort=57209 FirewallRules: [UDP Query User{2D1AEC85-01D6-4A77-9FE5-D32FAE99B3B1}C:\users\parad\desktop\among.us.v2020.12.9s\among us\among us.exe] => (Allow) C:\users\parad\desktop\among.us.v2020.12.9s\among us\among us.exe => Pas de fichier FirewallRules: [TCP Query User{51B9B9A6-AFE9-4581-9530-B0F06DF45925}C:\users\parad\desktop\among.us.v2020.12.9s\among us\among us.exe] => (Allow) C:\users\parad\desktop\among.us.v2020.12.9s\among us\among us.exe => Pas de fichier FirewallRules: [UDP Query User{B5313523-BF67-4456-A2DF-793E34C905E2}C:\program files (x86)\steam\steamapps\common\among us\among us.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [TCP Query User{D199D5DD-9787-4043-900D-4A7C5546F756}C:\program files (x86)\steam\steamapps\common\among us\among us.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [UDP Query User{B8864B20-9A65-46D5-B808-2B591CA33E09}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{A19FBD3E-0DA8-4FF3-A0CA-6FC6E2D5CD05}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{203F7674-C3AE-48A3-B409-9D01B586E5DB}C:\program files (x86)\steam\steamapps\common\among us\among us.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [TCP Query User{FFB7F3A2-31B7-49DA-81AB-16FCB0BFD92D}C:\program files (x86)\steam\steamapps\common\among us\among us.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\among us\among us.exe () [Fichier non signé] FirewallRules: [{2A0C5816-E5AD-4846-90DF-673AA944F073}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{477EF2A7-3C8C-4C9C-9DCE-6510FD53A66A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{13E359FA-C25A-4A88-84BF-96460715BAF3}C:\users\parad\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe FirewallRules: [TCP Query User{523A1BA4-D220-4CC7-BF87-CE6CFBD53C32}C:\users\parad\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\offline\jre\jre1.8.0_131\bin\javaw.exe FirewallRules: [UDP Query User{7346DD41-01CD-4D6D-9494-576813F94E23}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe FirewallRules: [TCP Query User{DFEAB032-AC71-4C42-844B-B1AAC1A936D3}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe FirewallRules: [{1242D6E6-3FDB-40AB-ADC5-A7CB21215616}] => (Block) C:\users\parad\desktop\anydesk.exe => Pas de fichier FirewallRules: [{575E6132-143F-4C5A-AF92-C5894FB0F277}] => (Block) C:\users\parad\desktop\anydesk.exe => Pas de fichier FirewallRules: [UDP Query User{70F8B842-D682-4B46-8BEE-6388BCEF3222}C:\users\parad\desktop\anydesk.exe] => (Allow) C:\users\parad\desktop\anydesk.exe => Pas de fichier FirewallRules: [TCP Query User{F82B4E6C-38AA-4878-846B-172B35002090}C:\users\parad\desktop\anydesk.exe] => (Allow) C:\users\parad\desktop\anydesk.exe => Pas de fichier FirewallRules: [{17F25EB8-80B0-4F09-9993-92FC80B921C9}] => (Allow) C:\Users\parad\AppData\Local\Programs\Opera\72.0.3815.148\opera.exe => Pas de fichier FirewallRules: [{EC57C175-0D50-47C1-BD18-10C89A35032D}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Pas de fichier FirewallRules: [{ACC4C7EE-FA38-40BA-AEC7-5D42A2C05AA2}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Pas de fichier FirewallRules: [{7A8E4AED-C89A-4245-BFF2-A22CF6D635A2}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Pas de fichier FirewallRules: [UDP Query User{383DFE8D-B4A3-48BD-A2F4-DCE3849FF82E}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe () [Fichier non signé] FirewallRules: [TCP Query User{3BB9CE19-EAE9-4383-9AEA-22B07B3934EB}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe () [Fichier non signé] FirewallRules: [UDP Query User{A6CA3C12-765E-43C0-A53F-35DF6D445D6A}C:\users\parad\appdata\roaming\offline cheatbreaker\jre\bin\java.exe] => (Allow) C:\users\parad\appdata\roaming\offline cheatbreaker\jre\bin\java.exe => Pas de fichier FirewallRules: [TCP Query User{7BD9D364-DE0F-42B5-B2CB-4AF7C9C1BE9A}C:\users\parad\appdata\roaming\offline cheatbreaker\jre\bin\java.exe] => (Allow) C:\users\parad\appdata\roaming\offline cheatbreaker\jre\bin\java.exe => Pas de fichier FirewallRules: [UDP Query User{6637390B-49AB-4EEF-838B-06357C3676F7}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{DA99C139-ED72-497E-AB7D-9965F747CD06}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{1A89AF67-3236-457B-A217-7A56A8587116}C:\program files\vegas\vegas pro 14.0\vegas140.exe] => (Allow) C:\program files\vegas\vegas pro 14.0\vegas140.exe => Pas de fichier FirewallRules: [TCP Query User{BDDC7E0B-1767-4943-B25C-DA32AEE7DB8B}C:\program files\vegas\vegas pro 14.0\vegas140.exe] => (Allow) C:\program files\vegas\vegas pro 14.0\vegas140.exe => Pas de fichier FirewallRules: [UDP Query User{241D7D67-74C7-48AD-8084-CEA1D2FD38E0}C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe FirewallRules: [TCP Query User{A09FDFC3-110B-45C0-9B46-D02120F42BF4}C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe FirewallRules: [UDP Query User{1C023476-799A-4803-88FF-F9DEA9AAFC56}C:\users\parad\appdata\roaming\.skillpvp\cache\runtime\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.skillpvp\cache\runtime\jre1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{E9129065-3412-4AD5-90B2-C06782E4E097}C:\users\parad\appdata\roaming\.skillpvp\cache\runtime\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.skillpvp\cache\runtime\jre1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{DBAF8A3E-8673-4182-B451-EAABCE79B0C8}C:\alphaantileak\aal\bin\server\alphaantileak.exe] => (Allow) C:\alphaantileak\aal\bin\server\alphaantileak.exe (Constantin Schreiber -> ) FirewallRules: [TCP Query User{22DD2E03-340D-4E02-B80C-1652230B89B9}C:\alphaantileak\aal\bin\server\alphaantileak.exe] => (Allow) C:\alphaantileak\aal\bin\server\alphaantileak.exe (Constantin Schreiber -> ) FirewallRules: [UDP Query User{CF7A9DD6-7448-440F-A70D-0A53C3B57151}C:\users\parad\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\parad\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{DD0D2E72-A832-43AA-826C-6B7953C3A9D5}C:\users\parad\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\users\parad\twitch\minecraft\install\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{3AB54B47-4D2F-408F-B9CC-71EE998C87DD}C:\program files\dnplayerext2\ldboxheadless.exe] => (Allow) C:\program files\dnplayerext2\ldboxheadless.exe => Pas de fichier FirewallRules: [TCP Query User{87751E7D-7E54-4D7A-875E-ED2404E5AD3C}C:\program files\dnplayerext2\ldboxheadless.exe] => (Allow) C:\program files\dnplayerext2\ldboxheadless.exe => Pas de fichier FirewallRules: [UDP Query User{25BE9801-024B-4BCB-B2E9-E1EB264BD31E}C:\program files\vegas\vegas pro 15.0\vegas150.exe] => (Allow) C:\program files\vegas\vegas pro 15.0\vegas150.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.) [Fichier non signé] FirewallRules: [TCP Query User{8B131351-1E4E-4A7C-BAAD-90DF8C720CAF}C:\program files\vegas\vegas pro 15.0\vegas150.exe] => (Allow) C:\program files\vegas\vegas pro 15.0\vegas150.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.) [Fichier non signé] FirewallRules: [UDP Query User{DA91A501-8120-4CE7-A390-0CA6463348CE}C:\users\parad\desktop\bureau\jeux\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe (GIANTS Software GmbH) [Fichier non signé] FirewallRules: [TCP Query User{26D1A235-DAE5-4B06-BD44-9ED110509823}C:\users\parad\desktop\bureau\jeux\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe (GIANTS Software GmbH) [Fichier non signé] FirewallRules: [UDP Query User{1D5F1AC7-5108-43A8-BA84-299634367A9D}C:\users\parad\desktop\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [TCP Query User{A2E82A97-313E-4F46-87DC-FB38FD0B5241}C:\users\parad\desktop\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\farming simulator 19 by stg gege\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [UDP Query User{44323302-D4BE-46E3-A730-26B22089F7FE}C:\users\parad\desktop\torque drift\torquedrift.exe] => (Allow) C:\users\parad\desktop\torque drift\torquedrift.exe => Pas de fichier FirewallRules: [TCP Query User{B00FA704-9768-4A2B-AED8-DBF811C8C402}C:\users\parad\desktop\torque drift\torquedrift.exe] => (Allow) C:\users\parad\desktop\torque drift\torquedrift.exe => Pas de fichier FirewallRules: [UDP Query User{2F5BA364-F79C-4CDE-80F4-9A6764CA5F91}C:\users\parad\desktop\bureau\jeux\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [TCP Query User{B07F1BB4-940C-4BA4-9856-9C094F2EA4E2}C:\users\parad\desktop\bureau\jeux\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [UDP Query User{19058FB3-04BB-41E3-940C-7BE36D2EEF45}C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{A99E5490-F27B-4F92-A764-C544DF58FCFF}C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{D9C24497-8A13-409E-B013-9D36D8D01BE2}C:\users\parad\desktop\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [TCP Query User{13C780D0-349D-4A09-9419-64BE1E708CA5}C:\users\parad\desktop\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) C:\users\parad\desktop\[game3rb.com] farming.simulator.19.v1.6.0.0\farming simulator 19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [UDP Query User{9EBC9887-AF8B-4D19-91AB-A636B2722D3F}C:\users\parad\desktop\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{00433B2D-6F7A-4DD7-80D8-463700A83451}C:\users\parad\desktop\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{FB094FC5-D0A4-43EC-A0D5-1D55F558093E}C:\users\parad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\parad\appdata\roaming\spotify\spotify.exe => Pas de fichier FirewallRules: [TCP Query User{8EC51B1C-2245-4E62-8FF7-809C9DD2EDD3}C:\users\parad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\parad\appdata\roaming\spotify\spotify.exe => Pas de fichier FirewallRules: [UDP Query User{A1CA35DB-319B-44A7-B8CA-768C70E4D768}C:\users\parad\appdata\local\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\users\parad\appdata\local\teamspeak 3 client\ts3client_win64.exe => Pas de fichier FirewallRules: [TCP Query User{0C2F1328-4A16-4390-B9D4-A926B75445F5}C:\users\parad\appdata\local\teamspeak 3 client\ts3client_win64.exe] => (Allow) C:\users\parad\appdata\local\teamspeak 3 client\ts3client_win64.exe => Pas de fichier FirewallRules: [UDP Query User{ED0CB967-60FC-4DF1-812C-AF505CCC1BB1}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_chromebrowser => Pas de fichier FirewallRules: [TCP Query User{2CBF3930-1827-481F-B6B3-CEB0C14F9421}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_chromebrowser => Pas de fichier FirewallRules: [UDP Query User{504B5265-CE4A-48B4-B5E6-C0B841B001F3}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe () [Fichier non signé] FirewallRules: [TCP Query User{56DF4852-4A39-4B10-8BA8-3AE30C92ED96}C:\program files\az-launcher\az-launcher.exe] => (Allow) C:\program files\az-launcher\az-launcher.exe () [Fichier non signé] FirewallRules: [UDP Query User{80E7E628-406E-4C9B-AEE5-3981433AA2D0}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{FD06C1F4-41CF-446E-8042-45DA61CAE96D}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{9F99B758-B70C-459B-A1BB-3563F7016D89}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe => Pas de fichier FirewallRules: [TCP Query User{2AF4A1E4-6665-444D-A639-7445823A074F}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gameprocess.exe => Pas de fichier FirewallRules: [UDP Query User{BC8DB840-FE68-4967-AE4F-1803C9770AF8}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{6E64BCE7-EF55-4597-B8B6-85161FBA424B}C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{F9271F71-1802-41A4-94B4-F23B51D7FD21}C:\users\parad\appdata\local\fivem\fivem.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.exe => Pas de fichier FirewallRules: [TCP Query User{69E8DE18-4E14-4264-B7B2-7E9DE06CDDC5}C:\users\parad\appdata\local\fivem\fivem.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.exe => Pas de fichier FirewallRules: [UDP Query User{93926523-594F-4FC3-A763-924E4D1710A3}C:\users\parad\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{41B421DE-8F2A-42EC-86AB-AD084197F3D3}C:\users\parad\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.paladium\runtime\x64\jre1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{5FC7AE1C-BC81-46AF-95E8-D2D0E41E9ED7}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{468861C9-170E-48EF-8BAB-04F23A92BBFB}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{B7D63C0E-5DC1-4B3F-8935-DEB3D983A913}C:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files\epic games\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [TCP Query User{7AABAA6C-8F93-41A3-9173-46324C1A26D5}C:\program files\epic games\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files\epic games\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [UDP Query User{A1A4C8B1-8563-4907-AB08-9C8C59BAD98B}C:\program files\pactify launcher\pactify.exe] => (Allow) C:\program files\pactify launcher\pactify.exe => Pas de fichier FirewallRules: [TCP Query User{083B543F-937E-482D-ABE4-C4BA4BF2CF4B}C:\program files\pactify launcher\pactify.exe] => (Allow) C:\program files\pactify launcher\pactify.exe => Pas de fichier FirewallRules: [UDP Query User{8C348244-728B-4A8B-88CF-4FB48935A2E1}C:\program files\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\java.exe FirewallRules: [TCP Query User{1C1E80C2-B6F7-4595-9EA0-5C548922552F}C:\program files\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\java.exe FirewallRules: [UDP Query User{69C27C26-8C16-496F-B7B2-FFF8A14070EA}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{2671317C-1003-4B8F-873E-6ED7B8023704}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [UDP Query User{B389FB47-453E-4A55-83C7-899EDDBA3B2D}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{5387DB4F-2A31-4EED-B664-7A60FA59CA35}C:\programdata\badlionclient\jre\bin\javaw.exe] => (Allow) C:\programdata\badlionclient\jre\bin\javaw.exe => Pas de fichier FirewallRules: [{48A8C31E-5CA6-4384-BF54-77F6CCC92B74}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\Bin\HPNetworkCommunicatorCom.exe => Pas de fichier FirewallRules: [{D85E149D-8A24-41FB-8CB1-F2213DFA3783}] => (Allow) LPort=5357 FirewallRules: [{009BF2C5-5F02-4D46-AE1A-36C1083A2E90}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\Bin\DeviceSetup.exe => Pas de fichier FirewallRules: [{3B31A09E-96AC-409F-B4BB-3E2B7F2DFE87}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\bin\FaxPrinterUtility.exe => Pas de fichier FirewallRules: [{2E7CF563-0EC6-4F9B-A351-34705CE36DF1}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\bin\SendAFax.exe => Pas de fichier FirewallRules: [{D1F959FF-198C-47DC-AD91-1EE68C0E2BE1}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\bin\DigitalWizards.exe => Pas de fichier FirewallRules: [{EC51A86B-53D7-42B7-A8F1-35C12EFE67DA}] => (Allow) C:\Program Files\HP\HP Officejet 5740 series\bin\FaxApplications.exe => Pas de fichier FirewallRules: [{E9391ABB-D1ED-4BD2-844D-7CD06CD51D1B}] => (Allow) C:\Users\parad\AppData\Local\Temp\7zS6A68\HP.EasyStart.exe => Pas de fichier FirewallRules: [{79A3C0BD-2FFA-4C6E-86AD-1EA17F993FB5}] => (Allow) C:\Users\parad\AppData\Local\Temp\7zS5E8B\HP.EasyStart.exe => Pas de fichier FirewallRules: [UDP Query User{128A4A84-D119-470B-B8E0-14DCE7999930}C:\program files (x86)\steam\steamapps\common\hitbox\hitbox\binaries\win64\boxmanbegins-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hitbox\hitbox\binaries\win64\boxmanbegins-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{B7628F96-10A8-4D03-8A06-878006EE7DB1}C:\program files (x86)\steam\steamapps\common\hitbox\hitbox\binaries\win64\boxmanbegins-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hitbox\hitbox\binaries\win64\boxmanbegins-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{1A30734A-5C20-45FA-9742-11ED8B0E2F08}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe FirewallRules: [TCP Query User{BB2934CD-4CAF-4896-AA72-C69D9D8DED5D}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe FirewallRules: [UDP Query User{58A9221A-3413-4CCA-9601-14D5D550C348}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [TCP Query User{2DAF3B33-FEBD-4680-B23E-9332C5E2063D}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe FirewallRules: [{EFE37894-4B2A-4B72-A0BC-DAF4BDDE65D5}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [UDP Query User{C4D64DFA-8C94-4CA5-84B8-0D24637124A4}C:\program files\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\java.exe FirewallRules: [TCP Query User{DDC2E32C-8435-43E4-8C6B-222668CF10EA}C:\program files\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\java.exe FirewallRules: [UDP Query User{CA7A7512-C443-4A86-A01F-6A60AF685967}C:\program files (x86)\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\java.exe FirewallRules: [TCP Query User{5DF56DC7-8E11-4B5C-9E91-519552264ADA}C:\program files (x86)\java\jre1.8.0_241\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_241\bin\java.exe FirewallRules: [UDP Query User{A9B49284-422A-4179-8DED-7D5BCFE36C41}C:\users\parad\appdata\roaming\.kfaction\cache\runtime\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.kfaction\cache\runtime\bin\javaw.exe FirewallRules: [TCP Query User{2AC573D7-DEA2-4494-9143-B2CE0DFD2F90}C:\users\parad\appdata\roaming\.kfaction\cache\runtime\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.kfaction\cache\runtime\bin\javaw.exe FirewallRules: [{4EDB94DF-8A27-45D8-957D-AF214FD22E8E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{6C3F1746-E861-413D-9D9A-EA6A3DDEBEB6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{EA3409CD-C81C-4C95-A669-8A564CD64A81}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BLOCKPOST\BLOCKPOST.exe () [Fichier non signé] FirewallRules: [{352A92AA-E557-4257-B9FB-1EE675DBA275}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BLOCKPOST\BLOCKPOST.exe () [Fichier non signé] FirewallRules: [{BF8BAED8-AF74-4210-853C-FD1197576BB6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{E6339555-D351-499A-B526-540FEA64364B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{314A6B6B-61FB-408E-8035-7A1D88418CA7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{6188AA7B-E345-4B9F-B028-E4914B48F1F5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{BA5F5420-A973-403A-BE8E-F862C00B810E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{389F5039-51CC-49DF-8727-6A51133A4975}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{9B066264-D2F3-4711-9965-3D477CCD0E46}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{8F5E3EDB-9568-4DCA-9145-7A69E4F813A1}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{8E97183D-1B18-4932-8C76-5E0AC992A9AD}C:\salwyrr\jre\bin\java.exe] => (Allow) C:\salwyrr\jre\bin\java.exe => Pas de fichier FirewallRules: [UDP Query User{4BAD31A5-4E68-47A1-BCD4-954919974411}C:\salwyrr\jre\bin\java.exe] => (Allow) C:\salwyrr\jre\bin\java.exe => Pas de fichier FirewallRules: [TCP Query User{FAB9CFD6-DAFA-415D-90C9-8F504951140B}C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{CC5F7D32-AF92-4C1F-B464-170C885A0619}C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{006D7D2B-88C6-4C7C-A416-674D018FC3F5}C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{651F2720-DB02-4F3C-A523-AAC0B11AACEA}C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe] => (Allow) C:\users\parad\desktop\bureau\jeux\bigfootcontent\bigfoot\binaries\win64\bigfoot-win64-shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{2972B96F-3B07-4C41-8959-18F335E34736}C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe] => (Allow) C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe () [Fichier non signé] FirewallRules: [UDP Query User{69BEBF64-6A91-41F6-93DB-8C3FB3AFEEF7}C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe] => (Allow) C:\users\parad\appdata\local\rlbotguix\venv\lib\site-packages\rlbot\dll\rlbot.exe () [Fichier non signé] FirewallRules: [TCP Query User{DFCF9FC6-CED0-448B-BAE8-8A1D42268233}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Block) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{CA236531-5118-454E-AC16-E84127E67713}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Block) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{28EBAB5E-A7D2-43AF-BFC0-DD09536DDB23}C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{3E8F36FB-55AE-4312-8EFE-8D46CE01DC70}C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu8.52.0.23-ca-fx-jre8.0.282-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{57600A65-9DD7-4851-B970-C2C8CC47F028}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{0AEDEAE5-7886-4A13-82C5-5E95F221B177}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [{4E5A7D99-E54D-4355-9AC6-94B1B3AE8C77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7599F822-F9A5-4A63-B14B-D14F40D27D08}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A8142297-A24D-44E2-8005-1BD3A4B34B33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1EF78895-4790-4BF5-81D6-1D56ABFE6137}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{E4F04726-2968-4275-8603-CC5A8264619F}C:\users\parad\appdata\roaming\.vanadia\win64\jre\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.vanadia\win64\jre\bin\javaw.exe FirewallRules: [UDP Query User{176B4091-F063-4897-BAAD-21B6B3C98EAE}C:\users\parad\appdata\roaming\.vanadia\win64\jre\bin\javaw.exe] => (Allow) C:\users\parad\appdata\roaming\.vanadia\win64\jre\bin\javaw.exe FirewallRules: [TCP Query User{8830C949-9EAD-4C4E-BF3E-B1701A5E6A39}C:\users\parad\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{03141561-A9CC-4861-91AA-5ACF746C9428}C:\users\parad\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [{EA00EBEF-0252-4A5D-B097-AFAB22F6AEF0}] => (Allow) C:\Users\parad\AppData\Roaming\BitTorrent\BitTorrent.exe => Pas de fichier FirewallRules: [{D4CABA48-5B45-4FCC-9C2B-844C1C390F90}] => (Allow) C:\Users\parad\AppData\Roaming\BitTorrent\BitTorrent.exe => Pas de fichier FirewallRules: [{A36206C7-8CA7-42E4-97A6-8AC4B29072B6}] => (Allow) C:\Users\parad\AppData\Local\Programs\Opera\77.0.4054.172\opera.exe => Pas de fichier FirewallRules: [TCP Query User{59E1C1EA-D309-4A71-B259-9CD88AFE4D53}C:\users\parad\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\parad\appdata\roaming\bittorrent\btfs\btfs.exe => Pas de fichier FirewallRules: [UDP Query User{2BFC4A03-A3DA-4792-95AD-86DBABCA51D4}C:\users\parad\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\parad\appdata\roaming\bittorrent\btfs\btfs.exe => Pas de fichier FirewallRules: [TCP Query User{57F5598D-98F7-4879-AF58-D145ED27E6EE}C:\program files (x86)\dodi-repacks\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\dodi-repacks\grand theft auto v\gta5.exe => Pas de fichier FirewallRules: [UDP Query User{D02141FD-1C17-42DF-B099-DA09FCD6C849}C:\program files (x86)\dodi-repacks\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\dodi-repacks\grand theft auto v\gta5.exe => Pas de fichier FirewallRules: [TCP Query User{7668A45C-E10D-4F18-8263-18D59D0D5B13}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{97E4095B-B46C-4AFC-B377-7FEAC1237221}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{94E830B5-CF95-41BA-8BD8-A10A4B068C37}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{95198307-68DD-449E-AFE8-2BFED9B94CFE}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Pas de fichier FirewallRules: [TCP Query User{B7C6A6E7-A7CE-447B-90A6-5ED56BAD67F0}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe => Pas de fichier FirewallRules: [UDP Query User{1E1DD465-42DB-4B99-AB04-C836B9B4287C}C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\parad\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe => Pas de fichier FirewallRules: [{B8FE943E-D861-40E4-868D-40D86F3C3824}] => (Allow) C:\Users\parad\AppData\Local\Programs\Opera\77.0.4054.203\opera.exe => Pas de fichier FirewallRules: [TCP Query User{59A5E39E-1C35-45D6-BA0E-D3FD536E28DA}C:\users\parad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\parad\appdata\roaming\spotify\spotify.exe => Pas de fichier FirewallRules: [UDP Query User{D1464A4A-7C3E-4A5F-AEDA-F392BF90A950}C:\users\parad\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\parad\appdata\roaming\spotify\spotify.exe => Pas de fichier FirewallRules: [TCP Query User{A9856DEB-D6A9-4B8D-BC83-8159F03298EA}C:\program files\vegas\vegas pro 15.0\vegas150.exe] => (Allow) C:\program files\vegas\vegas pro 15.0\vegas150.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.) [Fichier non signé] FirewallRules: [UDP Query User{2DBA1C24-88D4-4E10-A03F-E65291FD9D7D}C:\program files\vegas\vegas pro 15.0\vegas150.exe] => (Allow) C:\program files\vegas\vegas pro 15.0\vegas150.exe (MAGIX Software GmbH -> MAGIX Computer Products Intl. Co.) [Fichier non signé] FirewallRules: [TCP Query User{7A426D82-CF22-4572-AF31-A7611546CF5A}C:\program files\maxon cinema 4d r24\cinema 4d.exe] => (Allow) C:\program files\maxon cinema 4d r24\cinema 4d.exe => Pas de fichier FirewallRules: [UDP Query User{458EAF9D-DB00-4EDD-AAA5-AB86D3A4E0C1}C:\program files\maxon cinema 4d r24\cinema 4d.exe] => (Allow) C:\program files\maxon cinema 4d r24\cinema 4d.exe => Pas de fichier FirewallRules: [{E482BDB0-B04B-4DA5-B5DF-504595CAB3B4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{A87940C1-9BF8-48EB-8A2C-AC3506AF1662}C:\users\parad\.lunarclient\jre\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe FirewallRules: [UDP Query User{F41E4F7B-A23F-4796-916E-DA4D206C102C}C:\users\parad\.lunarclient\jre\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe FirewallRules: [{74DA2732-415B-475B-82D3-84B220C79021}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe => Pas de fichier FirewallRules: [{683F5ED0-ADA3-401E-A121-D826B6E0D391}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe => Pas de fichier FirewallRules: [{5B5F94D1-271E-49A5-9E3E-8601DC573C1D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5D577022-BC8F-4D86-80B2-2A75BC6086D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{EA96E418-FF17-4380-8713-D10D2AD7B904}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{306EFC54-4C9F-4BC7-9A9C-AD6CD5F3066C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{845D19C8-BFE0-468D-8F08-8F65558AF294}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe FirewallRules: [UDP Query User{4AA00247-13DF-4AAF-9601-A6158A97F604}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe FirewallRules: [TCP Query User{12426B46-6542-446E-98B7-D8B1B074F96D}C:\users\parad\.lunarclient\jre\1.8\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\1.8\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{C7004639-11F2-4B75-8FD7-B47D715943A2}C:\users\parad\.lunarclient\jre\1.8\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\1.8\zulu17.30.15-ca-fx-jre17.0.1-win_x64\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{5039D20C-3E1B-4E21-92DB-F9C4FD0016B3}C:\users\parad\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe FirewallRules: [UDP Query User{01A209A6-7197-4001-826E-6DFC45F83DD2}C:\users\parad\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe] => (Allow) C:\users\parad\.lunarclient\jre\1.8\zulu16.30.15-ca-fx-jre16.0.1-win_x64\bin\javaw.exe FirewallRules: [{17192FF2-083A-4AD4-87F2-61BB96DFB1DE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3F2B0D84-6985-4F0E-A356-FB575CDAB7A8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{029DDAFE-0143-48CE-BD0E-462535856DCE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4C1DF86C-6D17-4C32-BF22-3C72B2A90824}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7C2429E8-A4E0-4752-B4BA-046624ECF9B5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EDF69684-242C-4467-A02C-A86DC5FB707D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DF9B7848-41DA-40F3-B03B-2417ADF9BE8C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{215BE6E0-E78E-45F3-AF47-7857BAFF76F1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.176.447.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{D9DC10A4-C717-4EC1-BBF0-A14340BD739F}C:\users\parad\desktop\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe] => (Allow) C:\users\parad\desktop\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe () [Fichier non signé] FirewallRules: [UDP Query User{F1838202-5F97-4983-9259-614E15D00717}C:\users\parad\desktop\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe] => (Allow) C:\users\parad\desktop\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe () [Fichier non signé] FirewallRules: [TCP Query User{D24B72B4-B366-4E69-93FE-361DE2A3E25C}C:\users\parad\appdata\local\temp\rar$exa17152.42138\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe] => (Allow) C:\users\parad\appdata\local\temp\rar$exa17152.42138\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe => Pas de fichier FirewallRules: [UDP Query User{202A04C3-1878-444E-8680-31ADA6FBB2E0}C:\users\parad\appdata\local\temp\rar$exa17152.42138\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe] => (Allow) C:\users\parad\appdata\local\temp\rar$exa17152.42138\among.us.v2021.12.16s\among.us.v2021.12.16s\among us.exe => Pas de fichier FirewallRules: [TCP Query User{7DA09785-9721-4264-BDBE-30DE7244E1A2}C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.v0.5.1.0\phasmophobia.exe] => (Allow) C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.v0.5.1.0\phasmophobia.exe => Pas de fichier FirewallRules: [UDP Query User{71AA4B0E-C8C1-4469-937A-06FA3A556327}C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.v0.5.1.0\phasmophobia.exe] => (Allow) C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.v0.5.1.0\phasmophobia.exe => Pas de fichier FirewallRules: [TCP Query User{BA05C662-DADA-4218-873B-2B0E7587897F}C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe FirewallRules: [UDP Query User{EC8BDFDA-9963-4513-9D47-96AB62B66B9C}C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_3289046\java.exe FirewallRules: [{A8C92904-980C-473D-8D62-3EFE892B0261}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{45E32FF1-0454-4D43-A56D-9C2C5903CFDE}C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.exe] => (Allow) C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.exe () [Fichier non signé] FirewallRules: [UDP Query User{809EE097-CBA4-42C7-8AC0-0233905241B5}C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.exe] => (Allow) C:\users\parad\desktop\phas\phasmophobia.v0.5.1.0\phasmophobia.exe () [Fichier non signé] ==================== Points de restauration ========================= 29-12-2021 12:36:49 Point de contrôle planifié 05-01-2022 19:34:01 Point de contrôle planifié 11-01-2022 13:07:08 AdwCleaner_BeforeCleaning_11/01/2022_13:07:08 11-01-2022 13:12:37 Removed Adobe Acrobat Reader DC - Français. 11-01-2022 13:19:22 Removed HP Officejet 5740 series Aide 11-01-2022 13:19:40 Removed HP Google Drive Plugin 11-01-2022 13:19:51 Removed HP Dropbox Plugin 11-01-2022 13:20:07 Removed I.R.I.S. OCR 11-01-2022 13:25:32 Removed Contrôle d’intégrité du PC Windows 11-01-2022 14:00:21 IIF_MSI 11-01-2022 14:01:00 Removed Étude pour l'amélioration du produit HP Officejet 5740 series ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/13/2022 10:24:03 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Phasmophobia.exe version 2019.4.31.23231 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 2b08 Heure de début : 01d8085f2d0b0cba Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Users\parad\Desktop\phas\Phasmophobia.v0.5.1.0\Phasmophobia.exe ID de rapport : 3a79ae55-86b4-48e0-a564-77692e3734c7 Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (01/12/2022 09:32:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x619d66f5 Nom du module défaillant : EOSSDK-Win64-Shipping.dll, version : 1.13.0.0, horodatage : 0x616a18ef Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000040677f ID du processus défaillant : 0x275c Heure de début de l’application défaillante : 0x01d807f20c121d4e Chemin d’accès de l’application défaillante : C:\Program Files\Epic Games\rocketleague\Binaries\Win64\RocketLeague.exe Chemin d’accès du module défaillant: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\EOSSDK-Win64-Shipping.dll ID de rapport : 12c5ca3b-8138-43a1-8086-e21f90efe066 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2022 03:28:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RAVBg64.exe, version : 1.0.0.295, horodatage : 0x5bc04e16 Nom du module défaillant : AudioSes.dll, version : 10.0.19041.1023, horodatage : 0x1a824d91 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000100530 ID du processus défaillant : 0xc04 Heure de début de l’application défaillante : 0x01d806f3a9087c5c Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe Chemin d’accès du module défaillant: C:\Windows\System32\AudioSes.dll ID de rapport : ba2180f2-2e9d-422a-bb6c-818e63006571 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2022 02:59:03 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (01/11/2022 02:13:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RocketLeague.exe, version : 1.0.10897.0, horodatage : 0x619d66f5 Nom du module défaillant : EOSSDK-Win64-Shipping.dll, version : 1.13.0.0, horodatage : 0x616a18ef Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000040677f ID du processus défaillant : 0xdec Heure de début de l’application défaillante : 0x01d806e86c74f220 Chemin d’accès de l’application défaillante : C:\Program Files\Epic Games\rocketleague\Binaries\Win64\RocketLeague.exe Chemin d’accès du module défaillant: C:\Program Files\Epic Games\rocketleague\Binaries\Win64\EOSSDK-Win64-Shipping.dll ID de rapport : 977b4bc7-9603-4568-b826-5f99726f656a Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2022 01:16:43 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (01/11/2022 01:16:43 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (01/11/2022 01:16:43 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Erreurs système: ============= Error: (01/13/2022 08:54:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service HP Comm Recovery n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/13/2022 08:52:41 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 22:21:02 le ‎12/‎01/‎2022 n’était pas prévu. Error: (01/12/2022 08:07:50 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (01/11/2022 03:02:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service HP Comm Recovery n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/11/2022 02:59:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\Rtlihvs.dll Error: (01/11/2022 02:59:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\Rtlihvs.dll Error: (01/11/2022 02:59:31 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\WINDOWS\system32\Rtlihvs.dll Error: (01/11/2022 02:59:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Windows Defender: ================ Date: 2022-01-13 08:55:24 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Choziosi.A&threatid=2147809954&enterprise=0 Nom : Trojan:Win32/Choziosi.A ID : 2147809954 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\parad\AppData\Local\chrome\conf.js Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-HSBT3V32\parad Nom du processus : C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Version de la veille de sécurité : AV: 1.355.1825.0, AS: 1.355.1825.0, NIS: 0.0.0.0 Version du moteur : AM: 1.1.18800.4, NIS: 0.0.0.0 Date: 2022-01-11 12:45:58 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Vigorf.A&threatid=2147714384&enterprise=0 Nom : Trojan:Win32/Vigorf.A ID : 2147714384 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Program Files\Strogino CS Portal\Garrys Mod\Garrys_Mod.exe.lzma Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-HSBT3V32\parad Nom du processus : C:\Program Files\Strogino CS Portal\Garrys Mod\Gmod_Updater.exe Version de la veille de sécurité : AV: 1.355.1729.0, AS: 1.355.1729.0, NIS: 1.355.1729.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-11 12:45:46 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Vigorf.A&threatid=2147714384&enterprise=0 Nom : Trojan:Win32/Vigorf.A ID : 2147714384 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Program Files\Strogino CS Portal\Garrys Mod\Garrys_Mod.exe.lzma Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-HSBT3V32\parad Nom du processus : C:\Program Files\Strogino CS Portal\Garrys Mod\Gmod_Updater.exe Version de la veille de sécurité : AV: 1.355.1729.0, AS: 1.355.1729.0, NIS: 1.355.1729.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-11 12:45:39 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Vigorf.A&threatid=2147714384&enterprise=0 Nom : Trojan:Win32/Vigorf.A ID : 2147714384 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Program Files\Strogino CS Portal\Garrys Mod\Garrys_Mod.exe.lzma Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-HSBT3V32\parad Nom du processus : C:\Program Files\Strogino CS Portal\Garrys Mod\Gmod_Updater.exe Version de la veille de sécurité : AV: 1.355.1729.0, AS: 1.355.1729.0, NIS: 1.355.1729.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4 Date: 2022-01-09 15:04:47 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Vigorf.A&threatid=2147714384&enterprise=0 Nom : Trojan:Win32/Vigorf.A ID : 2147714384 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Program Files\Strogino CS Portal\Garrys Mod\Garrys_Mod.exe.lzma Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-HSBT3V32\parad Nom du processus : C:\Program Files\Strogino CS Portal\Garrys Mod\Gmod_Updater.exe Version de la veille de sécurité : AV: 1.355.1644.0, AS: 1.355.1644.0, NIS: 1.355.1644.0 Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4  CodeIntegrity: =============== Date: 2022-01-11 13:11:49 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2021-08-07 09:19:47 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== BIOS: Insyde F.22 04/21/2020 Carte mère: HP 8478 Processeur: Intel(R) Core(TM) i5-8300H CPU @ 2.30GHz Pourcentage de mémoire utilisée: 54% Mémoire physique - RAM - totale: 8081.24 MB Mémoire physique - RAM - disponible: 3704.14 MB Mémoire virtuelle totale: 16273.24 MB Mémoire virtuelle disponible: 10001.53 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:465.89 GB) (Free:107.13 GB) NTFS Drive r: ({VRAM}) (Fixed) (Total:9.77 GB) (Free:9.73 GB) NTFS \\?\Volume{10659227-877b-4811-9fd8-35e55e26b9ff}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS \\?\Volume{dbccebe6-8289-4129-90c1-7b294f717a3f}\ (Windows RE tools) (Fixed) (Total:0.48 GB) (Free:0.46 GB) NTFS \\?\Volume{7b104009-bad1-44a7-bf24-fbfc2bab5cf5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 476.9 GB) (Disk ID: 691F4D13) Partition: GPT. ==================== Fin de Addition.txt =======================