Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-03-2022 Exécuté par enzod (23-03-2022 16:45:58) Exécuté depuis C:\Users\enzod\OneDrive\Bureau Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) (2021-04-23 16:36:01) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2718715299-2838987772-912226498-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2718715299-2838987772-912226498-503 - Limited - Disabled) enzod (S-1-5-21-2718715299-2838987772-912226498-1001 - Administrator - Enabled) => C:\Users\enzod Invité (S-1-5-21-2718715299-2838987772-912226498-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2718715299-2838987772-912226498-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Animate 2022 (HKLM-x32\...\FLPR_22_0_1) (Version: 22.0.1 - Adobe Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788 - Adobe Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{72ADA61A-C86E-4954-8B2B-1CDDC30D2F88}) (Version: 2.01.15.2138 - Advanced Micro Devices, Inc.) Hidden AMD_Chipset_Drivers (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.01.15.2138 - Advanced Micro Devices, Inc.) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.6.4 - Electronic Arts, Inc.) Assassin's Creed Chronicles India (HKLM-x32\...\Uplay Install 1847) (Version: - Ubisoft) BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.5.0.1083 - BlueStack Systems, Inc.) BlueStacks X (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\BlueStacks X) (Version: 0.13.1.6 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Canva (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.38.0 - Canva Pty Ltd) Cheat Engine 7.1 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine) Cheating-Death 4.33.4 (HKLM-x32\...\Cheating-Death) (Version: - ) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) Counter-Strike 1.6 (HKLM-x32\...\Counter-Strike 1.6_is1) (Version: Counter-Strike 1.6 No Steam - KingSOFT DVD) Discord (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{552310DB-28E3-4FD5-AF92-472667902DFA}) (Version: 1.1.291.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) Euro Truck Simulator 2 Road to the Black Sea (HKLM-x32\...\Euro Truck Simulator 2 Road to the Black Sea_is1) (Version: - ) FiveM (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Gang Beasts v24.10.2019 (HKLM-x32\...\tuttop.com Gang Beasts v24.10.2019_is1) (Version: 24.10.2019 - tuttop.Com) Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.4.1.0 - miHoYo Co.,Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 99.0.4844.82 - Google LLC) HuionTablet (HKLM-x32\...\HuionTablet) (Version: 15.4.1.354 - Shenzhen Huion Animation Technology Co.,LTD) IO Player Pro 1.9.3.4 (HKLM-x32\...\IO Player Pro_is1) (Version: 1.9.3.4 - iosoft Ltd.) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LDPlayer (HKLM-x32\...\LDPlayer4) (Version: 4.0.42 - XUANZHI INTERNATIONAL CO., LIMITED) LetsView V1.1.3.3 (HKLM-x32\...\{6AA74BE4-9506-4D81-A07C-A40F883C2EA7}_is1) (Version: 1.1.3.3 - LetsView LIMITED) LMMS 1.1.3 (HKLM-x32\...\LMMS) (Version: 1.1.3 - LMMS Developers) Logitech Capture (HKLM\...\Capture) (Version: 2.08.11 - Logitech) MaskVPN (HKLM-x32\...\{4A4ACF2E-4A98-4D18-80E3-5A5E5706F81E}_is1) (Version: 1.1.0.31 - Global Media (Thailand) Co., Ltd) Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - it-it (HKLM\...\O365HomePremRetail - it-it) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 99.0.1150.46 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 99.0.1150.46 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Project - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\Teams) (Version: 1.4.00.32771 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{5016990D-7F61-4A20-9451-A915D6616DD9}) (Version: 3.66.0.0 - Microsoft Corporation) Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Visio - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.14931.20132 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30135 (HKLM-x32\...\{fa7f6d52-f85e-48ef-8f56-a37268aa5772}) (Version: 14.29.30135.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Mozilla Firefox 84.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 84.0.1 (x64 fr)) (Version: 84.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 80.0.1 - Mozilla) MSI Afterburner 4.6.0 (HKLM-x32\...\Afterburner) (Version: 4.6.0 - MSI Co., LTD) Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.13.0.133 - Native Instruments) NoxPlayer (HKLM-x32\...\Nox) (Version: 7.0.1.8 - Duodian Technology Co. Ltd.) NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation) NVIDIA Pilote graphique 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation) NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.0 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20010 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14931.20094 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0410-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.14931.20072 - Microsoft Corporation) Hidden Opera GX Stable 84.0.4316.43 (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\Opera GX 84.0.4316.43) (Version: 84.0.4316.43 - Opera Software) Opera Stable 84.0.4316.42 (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\Opera 84.0.4316.42) (Version: 84.0.4316.42 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.111.50299 - Electronic Arts, Inc.) osu! (HKLM-x32\...\{bf3dbb48-ff10-44b1-b948-7b317398ce1b}) (Version: latest - ppy Pty Ltd) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 9.18.7.1508 - Razer Inc.) Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.1201.111814 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) Scratch 3 3.18.1 (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.18.1 - Scratch Foundation) Splinter Cell Chaos Theory (HKLM-x32\...\Uplay Install 95) (Version: - Ubisoft) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\TeamSpeak 3 Client) (Version: 3.5.5 - TeamSpeak Systems GmbH) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 85.0 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden VALORANT (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) VEGAS Pro 16.0 (HKLM\...\{0A32E1A1-A098-11E8-973C-00155D6302F2}) (Version: 16.0.248 - VEGAS) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.10.0.0 - Voicemod S.L.) WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft) WhatsApp (HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\WhatsApp) (Version: 2.2049.10 - WhatsApp) Windows Driver Package - Zebra Technologies Inc. (WinUSB) WinUSB devices (03/31/2018 1.0.0.6) (HKLM\...\45BED3BBD4732BEB270707C3769191B9C55708E6) (Version: 03/31/2018 1.0.0.6 - Zebra Technologies Inc.) WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) Wondershare Filmora9(Build 9.5.2) (HKLM\...\Wondershare Filmora9_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Zebra CoreScanner Driver (64bit) (HKLM\...\{7D4D3B5A-E53F-4B75-84BF-1977077AEA3D}) (Version: 3.04.0011 - Zebra Technologies) Hidden Zebra CoreScanner Driver (64bit) (HKLM-x32\...\InstallShield_{7D4D3B5A-E53F-4B75-84BF-1977077AEA3D}) (Version: 3.04.0011 - Zebra Technologies) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-11-24] (Adobe Systems Incorporated) Amazon Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.93.0_x64__pwbj9vvecjh7j [2022-03-16] (Amazon Development Centre (London) Ltd) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-11-02] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_135.1.385.0_x64__v10z8vjag6ke6 [2022-03-22] (HP Inc.) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa [2022-03-11] (Apple Inc.) [Startup Task] Lively Wallpaper -> C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy [2022-03-20] (rocksdanister) [Startup Task] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-03-05] (Microsoft Studios) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-23] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2021-12-11] (Realtek Semiconductor Corp) Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.518.390.0_x86__55nm5eh3cm0pr [2022-03-19] (ROBLOX Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0 [2022-03-19] (Spotify AB) [Startup Task] TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj [2022-03-21] (Charles Milette) [Startup Task] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-14] (Twitter Inc.) WindowsAppRuntime.1.0 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.0_0.319.455.0_x86__8wekyb3d8bbwe [2022-03-08] (Microsoft Corporation) WindowsAppRuntime.1.0 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.0_1.440.209.0_x64__8wekyb3d8bbwe [2022-03-19] (Microsoft Corporation) WindowsAppRuntime.1.0 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.0_1.440.209.0_x86__8wekyb3d8bbwe [2022-03-19] (Microsoft Corporation) Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2020-09-25] (Microsoft Corporation) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\enzod\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21264.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\enzod\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20240.5\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2718715299-2838987772-912226498-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-09-15] (Adobe Inc. -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [475936 2007-05-11] (Logitech Inc -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [416544 2007-05-11] (Logitech Inc -> Logitech Inc.) ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2021-09-24 11:03 - 2021-09-24 11:03 - 001230336 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoFoundation.dll 2021-09-24 11:03 - 2021-09-24 11:03 - 000207872 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoJSON.dll 2021-09-24 11:03 - 2021-09-24 11:03 - 000810496 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNet.dll 2021-09-24 11:03 - 2021-09-24 11:03 - 000238592 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNetSSLWin.dll 2021-09-24 11:03 - 2021-09-24 11:03 - 000335360 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoUtil.dll 2021-09-24 11:03 - 2021-09-24 11:03 - 000455168 _____ (Applied Informatics Software Engineering GmbH) [Fichier non signé] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoXML.dll 2021-01-28 12:11 - 2021-01-28 12:17 - 000179712 _____ (Dominic Jonas) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\NLogViewer.dll 2021-03-03 13:34 - 2021-03-03 13:35 - 001004544 _____ (GitHub) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\Octokit.dll 2022-03-08 10:38 - 2022-03-08 10:38 - 000057344 _____ (Google) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\GrpcDotNetNamedPipes.dll 2021-06-07 08:13 - 2021-06-07 08:20 - 000056832 _____ (Linearstar) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\RawInput.Sharp.dll 2022-03-19 17:08 - 2022-03-19 17:08 - 000026112 _____ (Lively) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\fr\Lively.resources.dll 2022-03-19 17:08 - 2022-03-19 17:08 - 000417792 _____ (Lively) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\Lively.dll 2022-03-14 08:38 - 2022-03-14 08:38 - 000110592 _____ (Lively.Common) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\Lively.Common.dll 2022-03-08 10:38 - 2022-03-08 10:38 - 000152064 _____ (Lively.Grpc.Common) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\Lively.Grpc.Common.dll 2022-03-19 17:08 - 2022-03-19 17:08 - 000043008 _____ (Lively.Models) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\Lively.Models.dll 2021-01-28 12:11 - 2021-01-28 12:17 - 000005120 _____ (Matteo Pagani) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\DesktopBridge.Helpers.dll 2006-07-20 16:19 - 2006-07-20 16:19 - 000223744 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\xmllite.dll 2020-06-11 08:37 - 2020-06-11 08:37 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll 2020-06-11 08:37 - 2020-06-11 08:37 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll 2022-03-08 10:38 - 2022-03-08 10:38 - 000823296 _____ (NLog) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.106.0_x86__97hta09mmv6hy\Build\NLog.dll 2021-09-02 11:19 - 2021-09-02 11:19 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-09-02 11:19 - 2021-09-02 11:19 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2021-09-02 11:19 - 2021-09-02 11:19 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2022-03-05 14:50 - 2021-09-02 11:19 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll 2019-09-19 18:51 - 2019-09-19 18:51 - 000365056 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\BTTrans.dll 2019-09-23 08:53 - 2019-09-23 08:53 - 000078848 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\DriverADF.dll 2019-09-19 18:51 - 2019-09-19 18:51 - 000413696 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\IBMHIDTrans.dll 2019-09-19 18:51 - 2019-09-19 18:51 - 000309760 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\IBMHIDTTTrans.dll 2019-09-23 08:53 - 2019-09-23 08:53 - 000059392 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\NIXBTrans.dll 2019-09-23 08:55 - 2019-09-23 08:55 - 000156672 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\RSMDriverProvider.dll 2019-09-19 18:51 - 2019-09-19 18:51 - 000478208 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\SNAPITrans.dll 2019-09-19 18:52 - 2019-09-19 18:52 - 000486400 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\SSITrans.dll 2019-09-19 18:52 - 2019-09-19 18:52 - 000361472 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\symbscnr.dll 2019-09-19 18:51 - 2019-09-19 18:51 - 000265216 _____ (Zebra Technologies) [Fichier non signé] C:\Program Files\Zebra Technologies\Barcode Scanners\Common\USBHIDKBTrans.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log:F107EE40EF [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer1.log_backup1:2DD1EC5C91 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log:CCC93B07B0 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer10.log_backup1:AD433BF298 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log:72C8986B20 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer11.log_backup1:97A90964FA [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log:C40F6B9209 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer12.log_backup1:7CC29836A6 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log:AE3C879266 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer13.log_backup1:AF8AA3CDC1 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log:DE1448F4D7 [3770] AlternateDataStreams: C:\ProgramData\DisplaySessionContainer14.log_backup1:D61270D3FD [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Animate 2022.lnk:C1C5BE5DE8 [10] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk:7661CCE9BF [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BakkesMod.lnk:14E057C8D9 [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5 Multi-Instance Manager.lnk:35C0D57199 [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk:088221F38A [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3770] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk:980850BA8A [3770] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [492] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-2718715299-2838987772-912226498-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yandex.ru/?win=463&clid=2341035-18 HKU\S-1-5-21-2718715299-2838987772-912226498-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://OEM17win10.msn.com/?pc=NMTE SearchScopes: HKU\.DEFAULT -> DefaultScope {F9176637-CF6A-42D8-A12E-3C1A091A9598} URL = SearchScopes: HKU\.DEFAULT -> {F9176637-CF6A-42D8-A12E-3C1A091A9598} URL = SearchScopes: HKU\S-1-5-21-2718715299-2838987772-912226498-1001 -> ddf99458-26dc-11eb-8fff-2cf05d6c37a7 URL = hxxps://yandex.ru/search/?win=463&clid=2341036-18&text={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2021-06-15] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2021-06-15] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\sharepoint.com -> hxxps://ageabondyassomption-files.sharepoint.com IE trusted site: HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-2718715299-2838987772-912226498-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\enzod\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\161550669_2051460198327148_5229429224757030363_n.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "Riot Vanguard" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "RazerCortex" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "Voicemod" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "Synapse3" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "BakkesMod" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "Lync" HKU\S-1-5-21-2718715299-2838987772-912226498-1001\...\StartupApproved\Run: => "EADM" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{5BAF5272-2456-4BF6-A3C0-7E6C8F046649}] => (Allow) D:\Apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{D1AB2D83-5025-4301-B891-1B0BF7A5616D}] => (Allow) D:\Apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [UDP Query User{17A1C5B0-6D69-489E-BE20-F375C6B8FBB8}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.438\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.438\opera.exe => Pas de fichier FirewallRules: [TCP Query User{CFF9DF93-9692-4748-9A39-E573F6DA457E}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.438\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.438\opera.exe => Pas de fichier FirewallRules: [UDP Query User{FB7119C2-46E6-4D86-83AF-4F19850DB3DD}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.434\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.434\opera.exe => Pas de fichier FirewallRules: [TCP Query User{1A11FCE1-FE5B-4184-9EC4-367022DC10A0}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.434\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.434\opera.exe => Pas de fichier FirewallRules: [UDP Query User{7F200A96-A0B6-4DD7-B3BD-0037A55BE658}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{F570E995-40D3-4A6A-8C9F-DE050DD84A69}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{631F8726-1BDF-47AF-822E-0C949E535C70}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.427\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.427\opera.exe => Pas de fichier FirewallRules: [TCP Query User{E98CB7BC-B72D-427D-83EC-9E4C785AA9C4}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.427\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.427\opera.exe => Pas de fichier FirewallRules: [UDP Query User{A188B538-E3AF-4E87-86A7-979D8E95F609}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{845C3CEE-AEDA-4790-9BE1-C37806C1D481}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{FB8B1324-BA66-400A-8FAA-00C70024C2B8}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{9499F22E-9D73-4AFC-88BA-F0B5DE6707B0}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{18FD4716-0BA4-4073-8CD5-95025CBAA1F2}C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{EC8AE1DD-0991-4953-862B-B64131AA89C0}C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{60235FA3-686D-4DD5-AB22-D32D98E0CD06}] => (Allow) LPort=32682 FirewallRules: [{D6F735DC-71BD-4382-B3AD-84CAD5C0ACB6}] => (Allow) D:\Fortnite\FortniteGame\Binaries\Win64\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{0DF4801C-2ACD-405D-95E0-91DD23B2E998}] => (Allow) D:\Fortnite\FortniteGame\Binaries\Win64\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{0A01A5BE-1D42-4855-AB89-D24C520D672D}] => (Allow) D:\Fortnite\FortniteGame\Binaries\Win64\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [{88E0DC49-12EE-41F8-A16E-59CE398D5CB1}] => (Allow) D:\Fortnite\FortniteGame\Binaries\Win64\BattlEye\BEService_x64.exe (BattlEye Innovations e.K. -> ) FirewallRules: [UDP Query User{58DE74E7-3E11-48E5-A2AB-EC0B32C8D612}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.415\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.415\opera.exe => Pas de fichier FirewallRules: [TCP Query User{9A673D7E-62CC-44CE-AA04-F783AF3F9B03}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.415\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.415\opera.exe => Pas de fichier FirewallRules: [UDP Query User{130C51D9-1002-4DD2-8085-A4B7C4F58AE3}C:\users\enzod\onedrive\bureau\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\enzod\onedrive\bureau\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [TCP Query User{1DBE2BF0-9F1D-444C-A768-D441DFD95E96}C:\users\enzod\onedrive\bureau\among us 11.17.2020 by azmog\among us.exe] => (Allow) C:\users\enzod\onedrive\bureau\among us 11.17.2020 by azmog\among us.exe => Pas de fichier FirewallRules: [UDP Query User{D002FB5A-88F4-4BC5-A0A7-83DFF590A4BF}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.408\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.408\opera.exe => Pas de fichier FirewallRules: [TCP Query User{322079C9-EA41-40D0-B498-86F3C45F27EF}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.408\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.408\opera.exe => Pas de fichier FirewallRules: [UDP Query User{06B46668-B322-4B5E-9FD5-7FD794D0977F}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [TCP Query User{2E498628-3030-4951-977D-1389F8140E1A}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Pas de fichier FirewallRules: [UDP Query User{CA98A3ED-536D-42E8-B086-0848B932F3B0}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe => Pas de fichier FirewallRules: [TCP Query User{7AD73583-8DD1-4F61-A7E9-6CFAA94AB924}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe => Pas de fichier FirewallRules: [UDP Query User{62220BC4-3976-46F6-862A-2B878F25D8EB}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.400\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.400\opera.exe => Pas de fichier FirewallRules: [TCP Query User{D65E59E3-0AAD-42A1-BEE7-998C05E29B28}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.400\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.400\opera.exe => Pas de fichier FirewallRules: [UDP Query User{69A0B9C5-384B-4643-9FCE-F2C502D6E206}C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{AC92CEB7-DF59-4EDD-A3F6-EC1116D8A687}C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\enzod\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{09BC6987-324D-45BD-B8C1-FA733EBDEE9E}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.396\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.396\opera.exe => Pas de fichier FirewallRules: [TCP Query User{A95BB258-67FE-4303-9FC3-7E0464ACF4D8}C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.396\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\73.0.3856.396\opera.exe => Pas de fichier FirewallRules: [UDP Query User{B6607882-F4AE-41D1-A403-17578F36525C}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{7F25DD6D-AF45-4726-97D7-DDF44954A8E0}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{711C21DC-40E2-48C5-B7BF-FFE4226BCBAD}] => (Allow) D:\Star Wars II\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé] FirewallRules: [{FF2F50D9-C3DC-40D8-870B-B7052711021A}] => (Allow) D:\Star Wars II\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Fichier non signé] FirewallRules: [{97D02B1F-8B70-4A4C-BA40-C5EF99BB21DA}] => (Allow) D:\Star Wars II\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{DF8E0C3E-5427-468F-A257-EC5B61B4429D}] => (Allow) D:\Star Wars II\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{F32B11D3-2442-4120-9BFC-C8C2E3537988}] => (Allow) C:\Users\enzod\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [{7094F559-9428-4C36-8BAD-9D66BD21ADC6}] => (Allow) C:\Users\enzod\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier FirewallRules: [UDP Query User{41B14947-CDE7-4F35-9171-494F66DBFD3B}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{D259CF56-5DCC-4CFC-A7C9-B3C6EAB94384}D:\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{20183C55-1D9F-4EF0-A742-0EC3A27D08D2}D:\counter strike\counter-strike 1.6\hl.exe] => (Allow) D:\counter strike\counter-strike 1.6\hl.exe (Valve) [Fichier non signé] FirewallRules: [TCP Query User{4665D23F-9535-420D-8EEA-84209FDAF6CF}D:\counter strike\counter-strike 1.6\hl.exe] => (Allow) D:\counter strike\counter-strike 1.6\hl.exe (Valve) [Fichier non signé] FirewallRules: [UDP Query User{EE8640DD-A525-46D7-89FC-D1A1B8AE3AE6}C:\users\enzod\onedrive\bureau\among us\among us.exe] => (Allow) C:\users\enzod\onedrive\bureau\among us\among us.exe => Pas de fichier FirewallRules: [TCP Query User{3216555B-5F6A-4082-9827-4281F4A895B6}C:\users\enzod\onedrive\bureau\among us\among us.exe] => (Allow) C:\users\enzod\onedrive\bureau\among us\among us.exe => Pas de fichier FirewallRules: [UDP Query User{8534E8E9-B7AD-44AB-8358-582E19E016D1}C:\users\enzod\onedrive\bureau\mouve or die\move or die v13.0.10\love\win\love.exe] => (Allow) C:\users\enzod\onedrive\bureau\mouve or die\move or die v13.0.10\love\win\love.exe => Pas de fichier FirewallRules: [TCP Query User{AA7273E5-6B95-41CD-BD6F-BECC2F820581}C:\users\enzod\onedrive\bureau\mouve or die\move or die v13.0.10\love\win\love.exe] => (Allow) C:\users\enzod\onedrive\bureau\mouve or die\move or die v13.0.10\love\win\love.exe => Pas de fichier FirewallRules: [UDP Query User{84AA4310-EE90-4FFF-BB70-6BA73028A53A}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{029C0E33-7872-4FDF-AC73-A425EEA41187}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{FC7220AE-E96F-4097-B116-F8222C8BD727}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{9AD364A5-0C31-4D6F-B8D6-40FE1C7E15FD}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{0A1217AC-6ABF-49D3-9C92-EB95399C38CE}D:\hyperscape\hyperscape.exe] => (Allow) D:\hyperscape\hyperscape.exe => Pas de fichier FirewallRules: [TCP Query User{CFEA86C1-2AED-42AC-ADE6-C841E268A672}D:\hyperscape\hyperscape.exe] => (Allow) D:\hyperscape\hyperscape.exe => Pas de fichier FirewallRules: [UDP Query User{92EFCC83-8709-451F-A22E-DE2F93EE4E75}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation) FirewallRules: [TCP Query User{51598947-FD12-4558-856F-C749CE6BB063}C:\program files\ldplayerbox\ldvboxheadless.exe] => (Allow) C:\program files\ldplayerbox\ldvboxheadless.exe (Shanghai Changzhi Network Technology Co., Ltd. -> Oracle Corporation) FirewallRules: [{A4AEFFCB-E53B-4A63-9717-50D6623C9DFA}] => (Allow) D:\Paladin\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Pas de fichier FirewallRules: [{74F7332A-13AA-401C-BFBA-829FB243D8A7}] => (Allow) D:\Paladin\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Pas de fichier FirewallRules: [UDP Query User{806F1618-8602-4BFB-BC31-11456DB53DC1}D:\paladin\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\paladin\steamapps\common\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [TCP Query User{8EEF2C65-E2D9-48C5-B577-54B09B25BCEC}D:\paladin\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\paladin\steamapps\common\paladins\binaries\win64\paladins.exe => Pas de fichier FirewallRules: [UDP Query User{AD276943-5C1B-435C-AF84-E2747E63FACA}D:\elitedangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\elitedangerous\products\elite-dangerous-64\elitedangerous64.exe => Pas de fichier FirewallRules: [TCP Query User{08F1146F-1857-4D65-8BE5-000F181D3266}D:\elitedangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\elitedangerous\products\elite-dangerous-64\elitedangerous64.exe => Pas de fichier FirewallRules: [{D9C79BA5-70E1-4681-9E6E-B2B4C02B246A}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{0CDF26A2-0D0B-4445-B040-6781FBFD3CD2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\EAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{E18CC295-7817-4A55-9704-258932761B30}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{5B906E9E-2781-4173-A51D-545C9E923E68}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\bin_plus\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{0D603A8F-547F-4930-A6E1-DCAC99E6DBDC}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [{2358A1A6-B46B-4F2A-8295-1E5EC1770B30}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\WATCH_DOGS2\bin\WatchDogs2.exe (Blue Byte GmbH -> Ubisoft Entertainment) FirewallRules: [UDP Query User{41773F69-60F8-42BC-AFB4-89FAA4AE0340}C:\users\enzod\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\enzod\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Fichier non signé] FirewallRules: [TCP Query User{DB67F1FA-7451-4F8C-AE18-19288E0E3043}C:\users\enzod\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\enzod\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Fichier non signé] FirewallRules: [UDP Query User{9F099231-5B12-471D-932F-817AA6251C9C}C:\users\enzod\appdata\local\fivem\fivem.exe] => (Allow) C:\users\enzod\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re) FirewallRules: [TCP Query User{93AA7C28-DCA5-4AFB-A215-479CFEFDFBCD}C:\users\enzod\appdata\local\fivem\fivem.exe] => (Allow) C:\users\enzod\appdata\local\fivem\fivem.exe (Intricus Software Limited -> Cfx.re) FirewallRules: [{36893271-DD79-419A-BF15-25A66708A819}] => (Allow) C:\Program Files (x86)\MaskVPN\tunnle.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{AD558D54-BBAB-4047-86DB-0AE44026BFDC}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPNUpdate.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{A52743D1-FA09-426F-A2F0-69C891259A85}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPN.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{2662EE26-5B00-4BEC-84D5-192717C04C27}] => (Allow) C:\Program Files (x86)\MaskVPN\mask_svc.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [UDP Query User{86B9F6D2-621E-4A17-AAB8-E25C3F60E4E6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{61E56E12-7374-492E-B752-CBF2D33D1201}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{D35882C7-7ACE-46BC-87F2-0DE88649106A}C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe => Pas de fichier FirewallRules: [TCP Query User{F0063316-6390-45D2-9A24-81A2D2B6EDA0}C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\13_2000076\bin64release\game.exe => Pas de fichier FirewallRules: [UDP Query User{12EBB093-F2E0-4AFE-A44B-45F5DDCA362C}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [TCP Query User{2272C190-603F-4FD2-BD5F-E6C299B227C0}C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\warface\gamecenter\gamecenter.exe => Pas de fichier FirewallRules: [{12BF2504-58A7-49B5-B798-6D6CA6E8E176}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{C6037F6D-DFFA-4638-8E2E-B2E92849E386}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{655D68B1-E8A8-464B-B4DC-69D69CB23583}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{17422C47-788C-412C-8DED-83D33703A1A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [UDP Query User{B351966E-6B8E-455B-B37B-7C792F3E75CE}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{46110836-82AA-4899-BA29-8ACB0D6E1077}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{76113FDF-4B3E-4315-957E-832E15B09795}C:\program files (x86)\ubisoft\demo\tom clancy's splinter cell double agent demo\scda-offline\system\splintercell4.exe] => (Allow) C:\program files (x86)\ubisoft\demo\tom clancy's splinter cell double agent demo\scda-offline\system\splintercell4.exe => Pas de fichier FirewallRules: [TCP Query User{8361DE44-4B94-42E0-954B-2A3FB0220975}C:\program files (x86)\ubisoft\demo\tom clancy's splinter cell double agent demo\scda-offline\system\splintercell4.exe] => (Allow) C:\program files (x86)\ubisoft\demo\tom clancy's splinter cell double agent demo\scda-offline\system\splintercell4.exe => Pas de fichier FirewallRules: [{3B9D917F-BE2A-429C-BA8D-1DEDFF00B42D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{40B6D6F2-18C1-4B0D-96CD-1D84DF54B332}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{A76C4197-66F6-43F0-9FBF-92F3E83D7435}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{778CA2FB-4C0D-4B02-8757-FBBD9C297F8A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A340B2E1-3B6A-46E6-8830-B2D41FEF2387}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6097B9DE-4035-4F37-AA63-4E1205502914}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{E18D48B8-8531-4789-8CB4-26DD1C76D74F}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.231\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.231\opera.exe => Pas de fichier FirewallRules: [UDP Query User{DCD14F0C-4158-49A9-A1E3-66A6ADE2AB00}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.231\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.231\opera.exe => Pas de fichier FirewallRules: [TCP Query User{6A5513C1-F42F-4315-B2E3-5A88E681C7D9}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.244\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.244\opera.exe => Pas de fichier FirewallRules: [UDP Query User{946C4BFA-6761-48A6-9A80-FC2CD5FE5661}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.244\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.244\opera.exe => Pas de fichier FirewallRules: [TCP Query User{C8523F73-4D28-4B1A-9757-D2EB4A918D04}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.259\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.259\opera.exe => Pas de fichier FirewallRules: [UDP Query User{24BF3D90-90B9-4AAA-B599-FB09104E374D}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.259\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.259\opera.exe => Pas de fichier FirewallRules: [{65B3B045-6F30-4CAC-97F5-EEE5BE7CDA44}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9A77B5A4-9BC4-4F39-8A75-5700D08F8ACB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{368E092C-646F-47F8-906B-62687A14673A}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.267\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.267\opera.exe => Pas de fichier FirewallRules: [UDP Query User{40A690C7-3A1D-4FE3-97B6-1AFB2A794B75}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.267\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.267\opera.exe => Pas de fichier FirewallRules: [TCP Query User{CA54E50C-0A71-498E-A741-938BAE1DF798}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.279\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.279\opera.exe => Pas de fichier FirewallRules: [UDP Query User{DE6E9FE9-89BC-43BC-B649-6B1260176773}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.279\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.279\opera.exe => Pas de fichier FirewallRules: [TCP Query User{AA721D71-8A35-47C7-A5BF-2DBAC78D8D67}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.282\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.282\opera.exe => Pas de fichier FirewallRules: [UDP Query User{0A5EC123-54F0-416C-8CCF-0762DE39BFE0}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.282\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.282\opera.exe => Pas de fichier FirewallRules: [TCP Query User{D4C9A826-13BE-4E0D-AB1A-5DD2B234DA7D}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.285\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.285\opera.exe => Pas de fichier FirewallRules: [UDP Query User{E758F852-1EA6-43E0-94C1-B120BC2BD7D7}C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.285\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\75.0.3969.285\opera.exe => Pas de fichier FirewallRules: [TCP Query User{CC156F6D-EE9B-42D8-BEE7-3ECBBBEF92DF}C:\users\enzod\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\enzod\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{99B32B32-4700-4877-9A2D-B068FB8C9ABF}C:\users\enzod\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\enzod\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [TCP Query User{94742B35-2732-4065-A5FF-F95279928E72}C:\users\enzod\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\enzod\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [UDP Query User{9BAE314F-238B-49D8-B793-A81C26E99BB0}C:\users\enzod\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\enzod\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe FirewallRules: [TCP Query User{C23051F3-58FB-4057-92D3-6688337A2B56}C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.205\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.205\opera.exe => Pas de fichier FirewallRules: [UDP Query User{77E2F472-11EA-46DE-8A79-9606191FD285}C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.205\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.205\opera.exe => Pas de fichier FirewallRules: [TCP Query User{AD26A59B-E269-4807-9253-230D94677F7A}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{27668084-9C91-464C-8E11-3AC8825F7693}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{83CF19C9-6980-498B-A7AC-38DF25DDDC71}C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.208\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.208\opera.exe => Pas de fichier FirewallRules: [UDP Query User{455C0BBD-E0ED-460E-93E2-B227FC8903ED}C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.208\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\76.0.4017.208\opera.exe => Pas de fichier FirewallRules: [TCP Query User{50204B6E-135D-4908-BB78-D0A8EA8B0597}C:\users\enzod\appdata\local\programs\opera gx\77.0.4054.298\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\77.0.4054.298\opera.exe => Pas de fichier FirewallRules: [UDP Query User{62374220-BB6A-4915-9BDF-5BAF84AEE24D}C:\users\enzod\appdata\local\programs\opera gx\77.0.4054.298\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\77.0.4054.298\opera.exe => Pas de fichier FirewallRules: [TCP Query User{418242DF-A41D-4520-B2F0-DC550970ED9A}C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Pas de fichier FirewallRules: [UDP Query User{BD9A8A79-72D8-4BCA-8092-8A30A2B913BE}C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.186\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.186\opera.exe => Pas de fichier FirewallRules: [TCP Query User{DA805224-E520-4B49-9FB3-D8A48B02D6A8}C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Pas de fichier FirewallRules: [UDP Query User{D8085332-9290-464E-AE05-CE3B69EB3EB8}C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.214\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\78.0.4093.214\opera.exe => Pas de fichier FirewallRules: [TCP Query User{CC1EA0EE-8C1A-4807-BD84-FCC7D3ACEE84}C:\users\enzod\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\enzod\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{584F892D-C556-43F5-B3BC-C789518940E6}C:\users\enzod\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\enzod\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{A85CDD26-3843-4126-A691-5CC0D6CF9172}C:\users\enzod\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{AE67D89E-A2A3-4BC6-9A58-44FF19E9C825}C:\users\enzod\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\enzod\appdata\local\programs\opera gx\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{1E7F46D1-2D3F-4E6D-8A87-C5074A05491E}] => (Allow) D:\Paladin\steamapps\common\Crab Game\Crab Game.exe () [Fichier non signé] FirewallRules: [{CAE4B57E-DC99-40A3-9EB8-08D1CA510CF7}] => (Allow) D:\Paladin\steamapps\common\Crab Game\Crab Game.exe () [Fichier non signé] FirewallRules: [{E7BEEF83-688D-4162-8CCC-A50C22A6E209}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.) FirewallRules: [{6CD83A71-53A1-4722-A36D-F844BA5EB986}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> Nox Limited Corporation) FirewallRules: [{74C5784A-2BF6-4399-B06E-8B4D780301C0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B089A287-5E56-49B5-9BD3-12A298F10E0A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0A504815-EBB4-4734-B876-986C301A24C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F625497F-AEAC-4348-9FDA-0C1CCC0BBCFA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{F6FE7298-D358-4622-9CB5-9ABEA57C0076}C:\program files (x86)\apowersoft\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\apowersoft\letsview\wxmcast.exe (Apowersoft Ltd -> LetsView) FirewallRules: [UDP Query User{D5C181CB-D0DA-46F8-A966-D12AE717CE34}C:\program files (x86)\apowersoft\letsview\wxmcast.exe] => (Allow) C:\program files (x86)\apowersoft\letsview\wxmcast.exe (Apowersoft Ltd -> LetsView) FirewallRules: [{158B7972-43C5-40F8-B973-B8AEE1047F7D}] => (Allow) D:\Paladin\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{2CACA458-F501-4ADF-A728-78FA1C7DCB3F}] => (Allow) D:\Paladin\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{79E63249-A7B7-451D-A320-3AFE2585A80F}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Bluestack Systems, Inc -> Bluestack Systems, Inc.) FirewallRules: [{E402A016-F670-4D2B-9FCE-9F4774471824}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (Bluestack Systems, Inc -> Bluestack Systems, Inc.) FirewallRules: [{6819B656-0128-4C4D-B21E-47A34873AE32}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Bluestack Systems, Inc -> BlueStack Systems) FirewallRules: [TCP Query User{9BD98077-AFC7-4D4C-8EF8-F68409A40710}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{E04279CB-1557-4CC7-B961-8987D458E579}D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{EFB0A67D-CBE6-4AB1-AA1D-0978F01C8C31}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{0DCBE48D-DC86-4073-B152-0AE1B399512C}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{7481D0E4-8BB4-4CBD-ACBB-9E270711480B}] => (Allow) D:\Paladin\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{4B5B6DC0-117A-4641-A021-26999BB52998}] => (Allow) D:\Paladin\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{6B991356-21D4-414C-99CC-3D30AF6990C7}] => (Allow) C:\Program Files (x86)\Apowersoft\LetsView\LetsView.exe (Apowersoft Ltd -> LetsView) FirewallRules: [{29EF3475-CAEB-49CF-8F1A-F7492FBE2D98}] => (Allow) C:\Program Files (x86)\Apowersoft\LetsView\LetsView.exe (Apowersoft Ltd -> LetsView) FirewallRules: [{E574A2D7-63E8-4DC8-ADDB-BE51FAD78318}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DAFF3E50-8568-4B96-A0B4-3C11F84B9350}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2B8BA2F1-0382-4708-9821-07C7C9206D72}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{7ECD6D8E-01F2-46B8-B4B0-5F92320F499E}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{F9FD0475-337B-4558-92D3-74C6D110E0CC}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{478C07AB-690C-4737-B486-8FF9C2C1A284}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{F579C536-426E-4424-866B-EF56E02FA3ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{6E172451-D9A5-4BBF-917B-AC7151F60D11}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{7C718326-441C-4F21-B1D7-81A5BD64ADC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{9F7BEE99-B531-4510-A833-D0198F3930B4}] => (Allow) C:\Users\enzod\AppData\Local\Programs\Opera\84.0.4316.31\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{C4E5910D-BD59-4041-89ED-E8A5AA43A1E7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7AEAE7CB-975D-4EB4-8406-CC95351CC92D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{6AD8DF1A-9C4C-4145-A541-9322706266AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{37B9B02B-CA41-4952-A318-3A94D29E421A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{EC23B811-C052-4C40-9286-C7CC2BF36EB9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3CD6B5F4-77BD-44AE-88FF-532D33DF341A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B2B73D15-691A-469E-95CC-9486A1C9CFA9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{ECCDA56B-B80E-486D-A740-C7DD3505E832}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A002527B-3397-4003-8273-9D0DD5A8C9C5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\99.0.1150.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1E964355-8D50-40D0-BA6D-74089F4449BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{99FECBFC-DE6A-446F-95A8-AC68E6A429C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6932A920-BD9B-4064-B8F6-9ED4F607C67F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{70E8572A-7C33-472B-AEFD-D25C116E8859}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{313FCF53-4563-4631-8FE6-D52745BBD67E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B2C5C74A-7F34-4A4E-A932-70FBE2FA53A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B2F8DAD1-27E4-4A83-8462-5AC658641BF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9C17AC08-4FDA-4F6A-8706-B19F018C0C36}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.181.604.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{025DA123-9A22-4C74-94DB-51C96B9297E9}] => (Allow) C:\Users\enzod\AppData\Local\Programs\Opera\84.0.4316.42\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{2632EB7C-B40E-4B6F-A1FE-E9A6DE98F304}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{BCB6274A-35D5-439E-A983-031242713467}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{CB704C2A-B761-4D1E-8825-E833D3ED1875}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5BE43A2E-6638-42AC-83FA-591B504F4CA5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{62FF225C-838F-40DB-8D01-7EE06E258234}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Points de restauration ========================= 22-03-2022 19:22:46 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (03/20/2022 04:08:51 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur HDD (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname DESKTOP-H3R3QO2.local already in use; will try DESKTOP-H3R3QO2-2.local instead Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 DESKTOP-H3R3QO2.local. Addr 192.168.1.21 Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 16 DESKTOP-H3R3QO2.local. AAAA 2A01:CB08:0ACE:7E00:C4FE:D534:E114:E61B Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 DESKTOP-H3R3QO2.local. AAAA FE80:0000:0000:0000:C032:A0D2:4868:F222 Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 16 DESKTOP-H3R3QO2.local. AAAA 2A01:CB08:0ACE:7E00:C4FE:D534:E114:E61B Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 DESKTOP-H3R3QO2.local. AAAA 2A01:CB08:0ACE:7E00:C928:BC6E:D3EC:7224 Error: (03/18/2022 01:17:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 16 DESKTOP-H3R3QO2.local. AAAA 2A01:CB08:0ACE:7E00:C4FE:D534:E114:E61B Erreurs système: ============= Error: (03/19/2022 09:45:17 PM) (Source: volsnap) (EventID: 36) (User: ) Description: Les clichés instantanés du volume C: ont été annulés car le stockage du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur. Error: (03/19/2022 05:08:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone. Error: (03/19/2022 05:08:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NTM2QC6QWS7-12030rocksdanister.LivelyWallpaper. Error: (03/18/2022 10:37:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (03/18/2022 10:37:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service. Error: (03/17/2022 06:29:37 PM) (Source: volsnap) (EventID: 36) (User: ) Description: Les clichés instantanés du volume C: ont été annulés car le stockage du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur. Error: (03/17/2022 06:05:03 PM) (Source: nvlddmkm) (EventID: 14) (User: ) Description: Event-ID 14 Error: (03/17/2022 01:24:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H3R3QO2) Description: Le serveur Microsoft.YourPhone_1.22012.167.0_x64__8wekyb3d8bbwe!App.AppXvctmff39365zg14pgmystcwtys462fpa.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2022-03-23 16:45:44 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/FusionCore&threatid=311944&enterprise=0 Nom : PUABundler:Win32/FusionCore ID : 311944 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\enzod\Downloads\CheatEngine71.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-H3R3QO2\enzod Nom du processus : C:\Users\enzod\OneDrive\Bureau\FRST64 (1).exe Version de la veille de sécurité : AV: 1.361.548.0, AS: 1.361.548.0, NIS: 1.361.548.0 Version du moteur : AM: 1.1.19000.8, NIS: 1.1.19000.8 Date: 2022-03-23 14:53:37 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {ADE3EB57-B86B-4380-86DB-271BB8474A3A} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-03-22 14:27:21 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {81DE11CB-F648-4594-8A19-F2459D9B02BB} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-03-21 18:42:53 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {A06CEDED-D03B-4B89-9BBF-EFF517C08B55} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-03-20 16:02:51 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {4B1DE63C-B1A4-4A85-BD63-2942DF1D2F88} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2022-03-23 16:42:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2022-03-23 16:42:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1.30 11/08/2019 Carte mère: Micro-Star International Co., Ltd. A320M-A PRO (MS-7C51) Processeur: AMD Ryzen 5 2600 Six-Core Processor Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 16333.66 MB Mémoire physique - RAM - disponible: 9727.16 MB Mémoire virtuelle totale: 18765.66 MB Mémoire virtuelle disponible: 9107.48 MB ==================== Lecteurs ================================ Drive c: (SSD) (Fixed) (Total:222.58 GB) (Free:9.79 GB) NTFS Drive d: (HDD) (Fixed) (Total:931.5 GB) (Free:269.03 GB) NTFS \\?\Volume{ce22627b-64ea-4842-9a00-3969e2dc6ae7}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.42 GB) NTFS \\?\Volume{7cac8766-d917-40ca-95a7-ca4e2df3a469}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 223.6 GB) (Disk ID: FDBFAACB) Partition: GPT. ==================== Fin de Addition.txt =======================