Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04-08-2022 Exécuté par WAR-machine (07-08-2022 19:59:30) Exécuté depuis C:\Users\WAR-machine\Downloads Microsoft Windows 10 Professionnel Version 21H1 19043.1826 (X64) (2020-09-07 15:12:12) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1838690694-512489730-1734529554-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1838690694-512489730-1734529554-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1838690694-512489730-1734529554-1002 - Limited - Enabled) Invité (S-1-5-21-1838690694-512489730-1734529554-501 - Limited - Disabled) WAR-machine (S-1-5-21-1838690694-512489730-1734529554-1000 - Administrator - Enabled) => C:\Users\WAR-machine WDAGUtilityAccount (S-1-5-21-1838690694-512489730-1734529554-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\uTorrent) (Version: 3.5.5.45776 - BitTorrent Inc.) 3DMark (HKLM\...\{139D7147-6175-4398-88D3-E8C3A4A13DFF}) (Version: 2.3.3732.0 - Futuremark) Hidden 3DMark (HKLM-x32\...\{3c2496ac-4fcf-49c9-aac4-7fc4b9cdbb71}) (Version: 2.3.3732.0 - Futuremark) 4K Video Downloader (HKLM\...\{75B43913-C09F-4E1D-8B48-0AE3F4115031}) (Version: 4.19.4.4720 - Open Media LLC) Hidden 4K Video Downloader (HKLM-x32\...\{1745d00a-e7cd-4baf-84d1-c7447e73b683}) (Version: 4.19.4.4720 - Open Media LLC) AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.9.3.0 - GIGABYTE Technology Co.,Inc.) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.9 - Electronic Arts, Inc.) APOInstallerMSISetup (HKLM\...\{804BB8D7-5971-46C0-849B-1F40D8545B0A}) (Version: 1.0.14 - Nahimic) Hidden Apple Mobile Device Support (HKLM\...\{2B3CA448-5266-480F-85FA-2FCCB3C8712C}) (Version: 15.6.0.32 - Apple Inc.) Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.) Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.9.191 - Autodesk) Applications recommandées Autodesk 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk) Assassin's Creed Origins (HKLM-x32\...\Uplay Install 3539) (Version: - Ubisoft) ASTRO Command Center (HKLM-x32\...\{98CD1701-EA8F-4B93-AD68-FC4F9C68FB11}) (Version: 1.0.225 - Astro Gaming) ASUS Xonar U7 Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F39206632A}) (Version: - ASUSTeK Computer Inc.) AudioDeviceFXPluginSampleUIMSISetup (HKLM\...\{4864889A-C092-451D-861C-9A334EBE1573}) (Version: 1.0.1401 - Nahimic) Hidden AutoCAD 2018 - Français (French) (HKLM\...\{28B89EEF-1001-040C-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk) Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk) Autodesk AutoCAD 2018 - Français (French) (HKLM\...\AutoCAD 2018 - Français (French)) (Version: 22.0.49.0 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk) Autodesk Fusion 360 (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.13377 - Autodesk, Inc.) Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version: - Blizzard Entertainment) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) Corsair LINK 4 (HKLM-x32\...\{33e05e67-89c3-4514-8bf0-17b6329a8855}) (Version: 4.9.4.28 - Corsair Components, Inc.) Corsair LINK 4 (HKLM-x32\...\{62BE14B0-C98C-47AC-8E02-E27402AADB82}) (Version: 4.9.4.28 - Corsair Components, Inc.) Hidden CPUID CPU-Z 2.01 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.01 - CPUID, Inc.) Creative ASIO (USB) (HKLM-x32\...\Creative_ASIO(USB)) (Version: 1.00 - Creative Technology Limited) Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited) CurseForge (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.202.1.4890 - Overwolf app) Dell Display Manager (HKLM-x32\...\{AC50C05D-9D57-40F5-B2EF-AC402F14312B}_is1) (Version: 1.55.2090 - EnTech Taiwan) Discord (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\Discord) (Version: 0.0.311 - Discord Inc.) Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited) Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc) EndpointMonitoring Install MSISetup (HKLM\...\{FBEFDD01-23EE-46E0-961F-F443341E305C}) (Version: 1.0.1401 - Nahimic) Hidden ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.9 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{8bcd6161-a822-4c5a-9711-472cb32c7adf}) (Version: 1.0.0.9 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{d8516682-de60-4332-ad6f-49373754b677}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{E74D2FD6-F22E-4010-93DF-DDC66DDA3E25}) (Version: 1.1.257.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Futuremark SystemInfo (HKLM-x32\...\{80DAA2DD-18D3-4C18-927E-8D150C112912}) (Version: 5.2.624.0 - Futuremark) G.SKILL (HKLM-x32\...\{7D0C0C2B-7660-4463-A29A-150C45CAA287}) (Version: 1.00.28 - G.SKILL International Enterprise) GeeGeeClient (HKLM-x32\...\{D10B7FBB-7C1A-4A4F-B765-8EA689E07732}) (Version: 1.1.23.0 - WonderPeople) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.79 - Google LLC) HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.610 - Huawei Technologies Co., Ltd.) Inkscape (HKLM-x32\...\Inkscape) (Version: 1.2.1- - Inkscape) Intel Driver && Support Assistant (HKLM-x32\...\{975595A4-33B3-40A7-9D08-27777A4C54DC}) (Version: 22.4.26.9 - Intel) Hidden Intel Extreme Tuning Utility (HKLM-x32\...\{7afa48c7-9901-40fa-8f9b-f0707e2bc5b6}) (Version: 6.2.0.24 - Intel Corporation) Intel(R) Chipset Device Software (HKLM\...\{81520FC5-3518-40E9-9803-70CE8A801D07}) (Version: 10.1.1.38 - Intel Corporation) Hidden Intel(R) Computing Improvement Program (HKLM\...\{D17293BC-1678-4281-B94E-DBCF66AE7611}) (Version: 2.4.08919 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1004 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{358ADC70-1DB8-44B6-9690-3AA974DE1599}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{5DBC25B8-EFAE-45F3-80B6-6176318D7508}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden Intel(R) Network Connections 21.1.30.0 (HKLM\...\{1E5EDF73-13EC-4211-820D-1900B8BD7951}) (Version: 21.1.30.0 - Intel) Hidden Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel) Intel(R) SUR QC Software Asset Manager (HKLM\...\{B3804557-9824-4918-AA88-0DFAC94CD3B5}) (Version: 3.5.5033 - Intel Corporation) Hidden Intel® Driver & Support Assistant (HKLM-x32\...\{ee77e23b-6afb-4277-9298-9576093d573f}) (Version: 22.4.26.9 - Intel) Intel® Trusted Connect Service Client (HKLM\...\{09170360-1540-4917-8D51-895EBA412DDC}) (Version: 1.44.401.1 - Intel Corporation) Hidden Ironsight version 1 (HKLM-x32\...\Ironsight_is1) (Version: 1 - Aeria Games) iTunes (HKLM\...\{8D0A23B8-334A-4890-8C2E-6505B2D79702}) (Version: 12.12.4.1 - Apple Inc.) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.7.290502 - Logitech) Logitech Gaming Software (HKLM\...\{690285C2-2481-44FB-8402-162EA970A6DD}) (Version: 8.30.28 - Logitech Inc.) Hidden Malwarebytes version 4.5.12.204 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.12.204 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 104.0.1293.47 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 103.0.1264.77 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation) Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.15330.20264 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\OneDriveSetup.exe) (Version: 22.141.0703.0002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Hidden Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Hidden Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{65F1643E-2FCB-4DCA-8A08-2E7512B97863}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{96FB2FE1-B8AA-4E09-A2D7-84865C15DE0B}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) (HKLM\...\{90120064-0070-0000-0000-4000000FF1CE}) (Version: 7.1.00.00 - Microsoft Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) English (HKLM\...\{90F60409-7000-11D3-8CFE-0150048383C9}) (Version: 7.1.0.0 - Microsoft Corporation) Hidden Microsoft Visual Basic for Applications 7.1 (x64) French (HKLM\...\{90F6040C-7000-11D3-8CFE-0150048383C9}) (Version: 7.1.0.0 - Microsoft Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.30.30704 (HKLM-x32\...\{BF08E976-B92E-4336-B56F-2171179476C4}) (Version: 14.30.30704 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.30.30704 (HKLM-x32\...\{F6080405-9FA8-4CAA-9982-14E95D1A3DAC}) (Version: 14.30.30704 - Microsoft Corporation) Hidden Movavi Video Editor 14 (HKLM-x32\...\Movavi Video Editor 14) (Version: 14.0.0 - Movavi) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.1.02 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.42 - MSI) myCANAL (HKLM-x32\...\myCANAL) (Version: - UCAYA) myCANAL (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\4268220624.player.canalplus.fr) (Version: - player.canalplus.fr) Nahimic VR (HKLM-x32\...\{29dcab99-1f56-4497-aeb0-d8eeecf554e2}) (Version: 1.0.14 - Nahimic) NationsGlory 2.2.0 (HKLM\...\da60f423-202e-5908-a438-cd6fbbc819c8) (Version: 2.2.0 - WebNations) NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation) NVIDIA Pilote graphique 512.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.15 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20230 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20230 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden OpenVPN Connect (HKLM\...\{45C65CE3-C105-4C48-B334-3E22FDCF4AD0}) (Version: 3.3.6 - OpenVPN Technologies) Orange (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\164690e141a4c070916c946368bab253) (Version: 1.0 - Orange) Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.201.0.23 - Overwolf Ltd.) Package de pilotes Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC) Package de pilotes Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc)) Package de pilotes Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc)) Package de pilotes Windows - Corsair Components, Inc. (SIUSBXP) USB (07/14/2017 3.3) (HKLM\...\A2206C09905C467F30CB24DCBB49F056D7F0A290) (Version: 07/14/2017 3.3 - Corsair Components, Inc.) Package de pilotes Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32) Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory) ProductDaemon Install Setup (HKLM\...\{D5F66A96-C6BA-4E69-994D-EA858DD459F3}) (Version: 1.0.1401 - Nahimic) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8302 - Realtek Semiconductor Corp.) Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2) (Version: 1.0.1207.77 - Rockstar Games) Riing RGB Radiator Fan TT Premium Edition (HKLM-x32\...\Riing RGB Radiator Fan TT Premium Edition) (Version: 2.1.5 - Thermaltake, Inc.) Roblox Player for WAR-machine (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\roblox-player) (Version: - Roblox Corporation) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.15.182 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.3.7 - Rockstar Games) RogueKiller version 15.5.3.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 15.5.3.0 - Adlice Software) Sound Blaster Omni Surround 5.1 (HKLM-x32\...\{DD0AD523-C679-4844-A9E7-F446273C43D0}) (Version: 1.01.07 - Creative Technology Limited) Sound Blaster Omni Surround 5.1 Extras (HKLM-x32\...\{C9120656-8F23-409A-8B4D-278FEAA33856}) (Version: 1.0 - Creative Technology Limited) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) SSAudioDaemon Install MSISetup (HKLM\...\{1428858F-547B-408D-B25B-0A28540E496A}) (Version: 1.0.14 - Nahimic) Hidden SteelSeries GG 5.0.0 (HKLM\...\SteelSeries Engine 3) (Version: 5.0.0 - SteelSeries ApS) Streamlabs Desktop 1.7.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.7.1 - General Workings, Inc.) Twitch (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.) UCheck version 4.4.2.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 4.4.2.0 - Adlice Software) Ultimaker Cura 4.13.1 (HKLM-x32\...\Ultimaker Cura 4.13.1) (Version: 4.13.1 - Ultimaker B.V.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 41.0 - Ubisoft) Warzone companion (HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\Overwolf_kebklijbkhgjdbbhfcflbllhfhfopecbcegiocpa) (Version: 0.9.5 - Overwolf app) Watch_Dogs 2 (HKLM-x32\...\{B0E33297-78B1-4B37-B8C1-39150F2DEE43}_is1) (Version: - Ubisoft) WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft) XRELAIS 3.0 ( Complet ) (HKLM-x32\...\{EF5FAA0E-E272-408F-BA32-091F4782F2B4}) (Version: 3.00.0000 - Micrelec) XtremeTuner Plus (HKLM-x32\...\XtremeTuner Plus) (Version: - Galaxy Microsystems Ltd.) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.21.71.0_x64__kgqvnymyfvs32 [2022-07-26] (king.com) Can You Escape - Deluxe -> C:\Program Files\WindowsApps\Trapped.CanYouEscape-Deluxe_1.0.0.11_x86__bhn6e84ggqs1p [2020-02-07] (Trapped) Can You Escape -> C:\Program Files\WindowsApps\Trapped.CanYouEscape_1.1.0.0_x86__bhn6e84ggqs1p [2021-02-04] (Trapped) Can You Escape 2 -> C:\Program Files\WindowsApps\Trapped.CanYouEscape2_1.0.0.0_x86__bhn6e84ggqs1p [2021-01-05] (Trapped) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.223.300.0_x64__kgqvnymyfvs32 [2022-07-29] (king.com) Castle Breakout -> C:\Program Files\WindowsApps\46760RonPackardJr.CastleBreakout_1.0.38.0_x64__krmd1wfwtxee8 [2021-01-05] (Ron Packard Jr.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-16] (Microsoft Corporation) Doc Opener -> C:\Program Files\WindowsApps\BallardAppCraftery.CraftyDocViewer_1.2.43.0_x64__epyrqhfctk40t [2021-01-03] (Ballard App Craftery) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.14.67.0_x64__rz1tebttyb220 [2022-07-12] (Dolby Laboratories) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2022.3.2.0_x64__t5j2fzbtdg37r [2022-07-23] (DTS, Inc.) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation) Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-09-29] (Facebook Inc) Forza Motorsport 7 Demo -> C:\Program Files\WindowsApps\Microsoft.ForzaMotorsport7Demo_1.114.1881.2_x64__8wekyb3d8bbwe [2017-12-13] (Microsoft Studios) Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2021-01-05] (Keeper Security Inc) March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_6.5.1.0_x86__h6adky7gbf63m [2022-07-18] (Gameloft SE) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1560.21.216.0_x64__8xx8rvfyw5nnt [2022-07-23] (Meta) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-04] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-04] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-29] (Microsoft Studios) [MS Ad] Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.19.1101.0_x64__8wekyb3d8bbwe [2022-07-29] (Microsoft Studios) Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.1.21.0_x64__8wekyb3d8bbwe [2022-07-27] (Microsoft Studios) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-03-23] (NVIDIA Corp.) OCS -> C:\Program Files\WindowsApps\OCS.OCS_2.1.54.0_x64__f37pv2m276kkw [2021-09-04] (OCS) Smart Gateway -> C:\Program Files\WindowsApps\GEWISSSpA.HappyHome_1.8.0.0_x64__6xa2xn39k83fw [2021-02-04] (GEWISS SpA) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1838690694-512489730-1734529554-1000_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel) CustomCLSID: HKU\S-1-5-21-1838690694-512489730-1734529554-1000_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1838690694-512489730-1734529554-1000_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-1838690694-512489730-1734529554-1000_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\WAR-machine\AppData\Local\Autodesk\webdeploy\production\59c8a288d74003935db5128cd3acb5349f9d794a\NPreview10.dll (Autodesk, Inc. -> ) CustomCLSID: HKU\S-1-5-21-1838690694-512489730-1734529554-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\fr-FR\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2017-02-03] (Autodesk, Inc -> Autodesk, Inc.) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-03] (Autodesk, Inc -> Autodesk) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\nvshext.dll [2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\WAR-machine\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__okhmonaeigefaapdcpenmldpdddaomlh\Orange.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=okhmonaeigefaapdcpenmldpdddaomlh ShortcutWithArgument: C:\Users\WAR-machine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=okhmonaeigefaapdcpenmldpdddaomlh ==================== Modules chargés (Avec liste blanche) ============= 2022-07-28 13:24 - 2022-07-27 20:04 - 000151040 _____ () [Fichier non signé] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2020-10-04 12:50 - 2019-08-05 14:26 - 000025088 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\BSL430.dll 2020-10-04 12:50 - 2019-08-05 14:26 - 000225792 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvFireware.dll 2022-06-16 08:17 - 2022-06-16 08:17 - 005998080 _____ () [Fichier non signé] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module_win32.dll 2017-10-05 13:38 - 2017-08-02 15:48 - 000237568 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll 2017-11-24 12:19 - 2016-06-14 17:35 - 000187392 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll 2017-11-24 12:19 - 2016-06-14 17:35 - 000163328 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll 2017-11-24 12:20 - 2016-04-20 15:12 - 000772608 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\Lib\USB_DLL.dll 2016-10-19 05:45 - 2016-10-19 05:45 - 000014848 _____ () [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\hidapi.dll 2017-08-07 13:20 - 2017-08-07 13:20 - 000172544 _____ () [Fichier non signé] C:\Program Files\Nahimic\Nahimic VR\AnalogDriver\EndpointMonitoring.dll 2018-03-20 17:29 - 2013-11-05 11:22 - 000244736 ____N (C-MEDIA Electronics INC.) [Fichier non signé] C:\Program Files\ASUS Xonar U7 Audio\CPL\Driver\x64\vista\osConfLib.dll 2017-11-24 12:19 - 2015-06-23 17:41 - 000082432 _____ (Fintek) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll 2020-10-04 12:50 - 2020-11-09 16:55 - 001970176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GbtCpuLib.dll 2020-10-04 12:50 - 2019-02-16 00:07 - 000152576 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\yccV2.dll 2020-10-04 12:50 - 2019-12-09 18:27 - 000289792 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVBIOSLib.dll 2020-10-04 12:50 - 2019-08-05 14:26 - 000628736 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvComW.dll 2020-10-04 12:50 - 2019-08-05 14:26 - 000013312 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvCrypt.dll 2020-10-04 12:50 - 2020-11-11 15:42 - 000475136 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVDisplay.dll 2020-10-04 12:50 - 2019-08-05 14:26 - 000240640 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvIllumLib.dll 2020-10-04 12:50 - 2019-08-05 14:26 - 000218112 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvOrderLib.dll 2016-10-07 16:05 - 2016-10-07 16:05 - 000347648 _____ (Intel(R) Corporation) [Fichier non signé] C:\WINDOWS\system32\NCS2Setp.dll 2020-10-04 12:50 - 2019-08-05 14:27 - 001079808 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\MFC80U.DLL 2020-04-22 13:56 - 2020-04-22 13:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll 2020-04-22 13:56 - 2020-04-22 13:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll 2021-05-21 07:04 - 2021-05-21 07:04 - 000130048 _____ (Sam Grogan) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll 2022-05-05 17:44 - 2022-05-05 17:44 - 002122240 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll 2016-06-13 00:10 - 2016-06-13 00:10 - 001257984 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\LIBEAY32.dll 2016-06-13 00:10 - 2016-06-13 00:10 - 000291840 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\ssleay32.dll 2016-06-10 20:15 - 2016-06-10 20:15 - 000040960 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qdds.dll 2016-06-10 09:29 - 2016-06-10 09:29 - 000026112 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qgif.dll 2016-06-10 20:15 - 2016-06-10 20:15 - 000033280 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qicns.dll 2016-06-10 09:29 - 2016-06-10 09:29 - 000027648 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qico.dll 2016-06-10 09:29 - 2016-06-10 09:29 - 000245760 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qjpeg.dll 2016-06-10 19:47 - 2016-06-10 19:47 - 000021504 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qsvg.dll 2016-06-10 20:16 - 2016-06-10 20:16 - 000020992 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qtga.dll 2016-06-10 20:16 - 2016-06-10 20:16 - 000316416 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qtiff.dll 2016-06-10 20:16 - 2016-06-10 20:16 - 000019968 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qwbmp.dll 2016-06-10 20:17 - 2016-06-10 20:17 - 000370688 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\imageformats\qwebp.dll 2016-06-10 09:30 - 2016-06-10 09:30 - 000990208 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\platforms\qwindows.dll 2016-10-19 07:07 - 2016-10-19 07:07 - 004626432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\Qt5Core.dll 2016-06-10 09:20 - 2016-06-10 09:20 - 004854784 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\Qt5Gui.dll 2016-06-10 09:17 - 2016-06-10 09:17 - 000847872 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\Qt5Network.dll 2016-06-10 19:46 - 2016-06-10 19:46 - 000255488 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\Qt5Svg.dll 2016-06-10 09:26 - 2016-06-10 09:26 - 004439552 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Tt\Riing RGB Radiator Fan TT Premium Edition\Qt5Widgets.dll 2020-10-04 12:50 - 2019-08-27 14:22 - 000224256 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvAutoUpdate.dll 2017-11-24 12:19 - 2016-10-03 14:43 - 000399872 _____ (TODO: <公司名稱>) [Fichier non signé] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\WINDOWS\tracing:? [16] AlternateDataStreams: C:\Users\Public\AppData:CSM [472] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482] AlternateDataStreams: C:\Users\WAR-machine\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\WAR-machine\Application Data:d988fd1ce0beed92b2bcb751f85f2bf5 [394] AlternateDataStreams: C:\Users\WAR-machine\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\WAR-machine\AppData\Roaming:d988fd1ce0beed92b2bcb751f85f2bf5 [394] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-1838690694-512489730-1734529554-1000\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer (Avec liste blanche) ========== BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-10-05 13:35 - 2017-10-05 13:34 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1838690694-512489730-1734529554-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\WAR-machine\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\cyberpunk-2077-judy-alvarez-uhdpaper.com-4K-3.2241.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1838690694-512489730-1734529554-1000\...\StartupApproved\Run: => "Discord" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{A230174F-5D07-4F05-86CD-AD07944C2699}F:\program files (x86)\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Block) F:\program files (x86)\farmingsimulator19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [TCP Query User{7E964281-3427-4933-91CA-4FBFBFE347F7}F:\program files (x86)\farmingsimulator19\x64\farmingsimulator2019game.exe] => (Block) F:\program files (x86)\farmingsimulator19\x64\farmingsimulator2019game.exe => Pas de fichier FirewallRules: [UDP Query User{C7F1696A-42DF-470F-88E5-55DFA81C696D}F:\call of duty black ops 4\blackops4.exe] => (Allow) F:\call of duty black ops 4\blackops4.exe => Pas de fichier FirewallRules: [TCP Query User{978C0403-5166-4D7E-9915-8CE9651C0270}F:\call of duty black ops 4\blackops4.exe] => (Allow) F:\call of duty black ops 4\blackops4.exe => Pas de fichier FirewallRules: [UDP Query User{025C2538-BD65-4EDF-885C-9DC7022EAA5F}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{2C615C3A-ECA6-474D-9162-CCA078C8A004}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{02975811-91DC-4653-9ABA-BBF527934A8B}C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe] => (Block) C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe () [Fichier non signé] FirewallRules: [TCP Query User{1F79ED6A-4FC2-4425-9E76-C6925A085385}C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe] => (Block) C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe () [Fichier non signé] FirewallRules: [UDP Query User{314706CC-9666-4A74-9823-5DBD89A8E12E}C:\program files\xtremetuner plus\xtremetuner plus.exe] => (Allow) C:\program files\xtremetuner plus\xtremetuner plus.exe (Galaxy Microsystems Ltd) [Fichier non signé] FirewallRules: [TCP Query User{337BAEF8-FE35-4C9D-8DCA-1FCF018A5014}C:\program files\xtremetuner plus\xtremetuner plus.exe] => (Allow) C:\program files\xtremetuner plus\xtremetuner plus.exe (Galaxy Microsystems Ltd) [Fichier non signé] FirewallRules: [UDP Query User{9A678D37-4578-4DB9-9F54-C0E199878BD1}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [TCP Query User{A49C95BA-C036-4DF2-956D-41D3A3C79EC2}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{4BCE3D7C-8D5E-4A39-AFDF-02C4DF2D3511}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{AFD979A4-856F-4F75-B102-F262D9CD123C}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{A05C7F85-C410-4381-AB2E-7D00BA2ADBCA}D:\red dead redemption 2\rdr2.exe] => (Allow) D:\red dead redemption 2\rdr2.exe => Pas de fichier FirewallRules: [TCP Query User{DF607714-35D9-4420-A716-BC41CD73E8AD}D:\red dead redemption 2\rdr2.exe] => (Allow) D:\red dead redemption 2\rdr2.exe => Pas de fichier FirewallRules: [{047AFCE2-443D-4CFC-844F-BAB78578DF2D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{FDAE0374-9D2B-48E6-965B-81F9BB0A3BF1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> ) FirewallRules: [{078C9569-9D6B-4B6C-918F-C3E3F98E66D0}] => (Allow) LPort=5000 FirewallRules: [{CAD3EDC0-D5B8-44E1-A7AC-87FC5284D91F}] => (Allow) LPort=64323 FirewallRules: [UDP Query User{B3DEF8B5-CA78-46C9-91AF-F8654CA7E25B}C:\users\war-machine\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\war-machine\appdata\local\akamai\netsession_win.exe => Pas de fichier FirewallRules: [TCP Query User{878C3514-7E83-4BE5-87ED-28DF404ADC9A}C:\users\war-machine\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\war-machine\appdata\local\akamai\netsession_win.exe => Pas de fichier FirewallRules: [UDP Query User{99837749-C94D-46C1-9056-F342E2FF34A8}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [TCP Query User{0211A916-8E83-4BA4-A10D-8395FDBB589F}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [{BF4BDA2B-BC69-4761-8784-4BD4E6CFEC55}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{DEF740CC-6A25-4A65-A7AE-CAF017C61986}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{39755327-A61B-45A5-AC27-41139EE1602D}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{BD57DAC0-3CE9-451B-8187-93165A006C4D}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{AB245774-9E6C-4AC9-ABEC-CACEE226BDD2}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{E31986B6-4A6D-427D-A972-52CEAFBFB637}] => (Allow) C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{898A4DFC-732D-4382-AC30-3C4E27DD5022}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{CC99EC01-74EE-4398-A22D-BEE106400A6F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{8EC47001-445B-4F78-AE6B-9A40D6540316}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [{4A1A21AA-3A75-4F70-BDCA-CC47814EAA46}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier FirewallRules: [TCP Query User{11A0C375-FAD9-4059-A7F3-C6BBF7B8B298}C:\program files\xtremetuner plus\xtremetuner plus.exe] => (Allow) C:\program files\xtremetuner plus\xtremetuner plus.exe (Galaxy Microsystems Ltd) [Fichier non signé] FirewallRules: [UDP Query User{03BDD622-20D2-4BBC-9A10-05B108FBDDC8}C:\program files\xtremetuner plus\xtremetuner plus.exe] => (Allow) C:\program files\xtremetuner plus\xtremetuner plus.exe (Galaxy Microsystems Ltd) [Fichier non signé] FirewallRules: [{54D821B3-A6B2-42F4-AA1F-1D5F2FBA5959}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [{8F6E25D1-1A7F-4C83-B5D7-68066CC26EF2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [TCP Query User{77EF6039-6B5B-4D6E-9D23-AD2594E63D46}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [UDP Query User{4143D216-48DD-4CD7-A4AB-63E153F9AEA1}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.) FirewallRules: [TCP Query User{A0013FD0-30A1-4375-88B5-A2254011FB35}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Pas de fichier FirewallRules: [UDP Query User{E2B7AD78-5B4D-48B7-B006-ED308C2C2F03}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => Pas de fichier FirewallRules: [{D2CCF463-1C42-4BEE-B33C-143C84E59A10}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Project CARS 2\pCARS2.exe (Slightly Mad Studios Ltd) [Fichier non signé] FirewallRules: [{E1A6F3A0-3868-4B39-8904-236A53197D10}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Project CARS 2\pCARS2.exe (Slightly Mad Studios Ltd) [Fichier non signé] FirewallRules: [TCP Query User{E9F57453-B003-47AE-A1D0-BCC6D3B66267}C:\program files (x86)\corepack\tom clancy ghost recon wildlands\grw.exe] => (Allow) C:\program files (x86)\corepack\tom clancy ghost recon wildlands\grw.exe => Pas de fichier FirewallRules: [UDP Query User{8884D93D-E90C-4DF6-8FD4-F94933D07C14}C:\program files (x86)\corepack\tom clancy ghost recon wildlands\grw.exe] => (Allow) C:\program files (x86)\corepack\tom clancy ghost recon wildlands\grw.exe => Pas de fichier FirewallRules: [TCP Query User{19694658-502C-4790-A120-397C28BACDB9}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{E048FCA3-100B-4125-B834-04F198FA826B}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{E065526C-276D-4F05-9CC1-0D8D543110EB}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{A42C5E95-CAF6-48EE-B669-F9E5DD635280}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{2AC87491-3298-4255-A046-8F0D3393FBD9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{F7DE5EE4-050A-4952-BFA1-2172756B8A7C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [TCP Query User{91359F46-88D3-4B0E-9A06-BEB455AD7040}C:\program files (x86)\tt\riing plus rgb tt premium edition\tt riing plus rgb.exe] => (Allow) C:\program files (x86)\tt\riing plus rgb tt premium edition\tt riing plus rgb.exe => Pas de fichier FirewallRules: [UDP Query User{23EDF66F-A0B1-49C4-9D02-08BD575F9950}C:\program files (x86)\tt\riing plus rgb tt premium edition\tt riing plus rgb.exe] => (Allow) C:\program files (x86)\tt\riing plus rgb tt premium edition\tt riing plus rgb.exe => Pas de fichier FirewallRules: [TCP Query User{1FFC388F-6CE6-4BD3-8030-DE5CF90CA07B}C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe] => (Allow) C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe () [Fichier non signé] FirewallRules: [UDP Query User{80DFAB70-9B21-4341-8A86-AAF9087B8480}C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe] => (Allow) C:\program files (x86)\tt\riing rgb radiator fan tt premium edition\thermaltake rgb fan controller.exe () [Fichier non signé] FirewallRules: [{8174F842-FCDE-415A-A26F-1A6AAB94F1BE}] => (Allow) d:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Origins\ACOrigins.exe => Pas de fichier FirewallRules: [{BB047596-B39A-4970-9D21-D38DC93A8F77}] => (Allow) d:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Origins\ACOrigins.exe => Pas de fichier FirewallRules: [{FEC2031C-A987-4D64-90D4-C97FD9CB31BE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Fichier non signé] FirewallRules: [{BB940EA6-21F8-4B0F-99DF-E0B4893F6D9F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Fichier non signé] FirewallRules: [{E1377F5B-B81C-49B9-AA5B-483C47A5FEEF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé] FirewallRules: [{01D6B225-7F04-4DBF-B50C-FD63F9096E30}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé] FirewallRules: [{6F864AC9-65C3-4479-A8E2-D1ED29461AF9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\pCars\pCARS64.exe (Slightly Mad Studios Ltd) [Fichier non signé] FirewallRules: [{498D21BA-3A0B-4495-8CEC-0C74056043A9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\pCars\pCARS64.exe (Slightly Mad Studios Ltd) [Fichier non signé] FirewallRules: [TCP Query User{7790A5E6-D537-451D-8B8E-FB0315B3C6FC}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{1B6FEF53-3F3C-4108-8EE7-430125C884F0}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [{70230E96-2998-41DD-9A5F-1A0768BD4E81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{98EB2893-0B87-42E6-849D-D70803F7E3FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{11ACA734-A7AA-439B-9562-D7694606FB59}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{CD57222D-3235-42F7-A89A-1AA93A32B9C8}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A5A353AE-DF99-475F-86E9-DBD93E60FEC1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.) FirewallRules: [{E6817A0E-F6DE-47E8-932E-A8C9C8D25DE6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> KRAFTON, Inc.) FirewallRules: [TCP Query User{AA462A43-C06E-4ED0-971B-80B9F877CB50}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe => Pas de fichier FirewallRules: [UDP Query User{26F7A2B4-9DF3-4CB2-94DB-781C8D7FEE92}D:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) D:\program files (x86)\origin games\apex\r5apex.exe => Pas de fichier FirewallRules: [{AD30FE4B-7198-40B5-A3BF-A65007A43EC9}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe => Pas de fichier FirewallRules: [{A7AF3111-55CB-4451-80AD-0D7A5C4F8C22}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe => Pas de fichier FirewallRules: [{A153934C-9D2D-40E9-B9FE-84463C041475}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe => Pas de fichier FirewallRules: [{133A4ACC-1221-4461-BCC3-8309EFA5DE7F}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe => Pas de fichier FirewallRules: [{F442ECC1-F72C-40D4-B054-C73A6D97C156}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe => Pas de fichier FirewallRules: [{4BB40742-424F-4CA0-8163-885EE7C9AC8A}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe => Pas de fichier FirewallRules: [{7B0BCA36-BC6A-4F6D-95C2-499D28BC1B43}] => (Allow) LPort=26789 FirewallRules: [{F590F98D-ADCC-4E94-B277-85771B827C59}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [{DD3BB9DF-ED98-447B-BE17-554DB8DE7DBE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> ) FirewallRules: [TCP Query User{649CE157-CDED-4ECC-9C39-38A8F4C46BA7}F:\program files (x86)\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) F:\program files (x86)\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{C880126C-0E0B-41AA-91F9-21C00A258097}F:\program files (x86)\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) F:\program files (x86)\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{0B2AB358-40B6-4D9C-856A-28CE81B5CC37}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{E1320F0A-1848-4472-B4A9-1E85EA6B97A4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{6D8CCC85-C9BF-48D1-9D9C-5B883E754809}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{80FEF29C-40C2-4829-9146-F1689EF6D51F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{637BE8A5-CCAA-4AE3-B21B-E82E92FF1E1B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{11327B50-07B3-4127-B3C8-244E2E46AE35}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{CA1EA29C-CFC6-4849-A9AE-CB5ACC655046}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{160FA1BD-4CF1-452A-AA3D-6255FB680E8B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{199CA646-CABD-46EC-B7C0-561DB879E289}] => (Allow) F:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Sector3 Studios AB -> Simbin Studios AB) FirewallRules: [{0C14312E-EC23-41E7-82A5-0653F6553771}] => (Allow) F:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe (Sector3 Studios AB -> Simbin Studios AB) FirewallRules: [{BD251197-827F-4942-85B7-87E201A518BD}] => (Allow) F:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe (Sector3 Studios AB -> Simbin Studios AB) FirewallRules: [{4E550D8D-C09E-4C8B-8459-5F8D49D9DECE}] => (Allow) F:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe (Sector3 Studios AB -> Simbin Studios AB) FirewallRules: [{35C99DD8-D767-436B-B35B-88DEC120DFC0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D1A0C22D-5C8A-4317-9BCD-07D146DB1678}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{62C3A0F7-2922-4BD6-93E6-5F4017362587}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{818FABFE-84BD-46E0-9E62-AC522E569E9F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{05D09284-595A-4C2C-9975-F320E872D64A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [{FB05DEA6-7126-4701-B10D-314CDDA5EEC8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe (Crytek GmbH) [Fichier non signé] FirewallRules: [{34731AB1-7789-4FAA-B597-3357FB553CD9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bloodhunt\Tiger.exe (Sharkmob) [Fichier non signé] FirewallRules: [{24F018BF-37C3-419B-A0E3-B32E9D8F9A13}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bloodhunt\Tiger.exe (Sharkmob) [Fichier non signé] FirewallRules: [TCP Query User{98EC20AE-9133-4B63-A566-77715E3A7761}F:\call of duty modern warfare\modernwarfare.exe] => (Block) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{9E374221-D669-4D3B-BA0E-64D4121F062D}F:\call of duty modern warfare\modernwarfare.exe] => (Block) F:\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{51A4BA7B-B171-45ED-A36E-B761968A98D2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{3C194ECB-5DF2-4572-AE93-589219D8A061}F:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) F:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Pas de fichier FirewallRules: [UDP Query User{797F0F79-C1E9-4314-86B4-8C83C7AF28E6}F:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe] => (Allow) F:\steamlibrary\steamapps\common\super people playtest\bravohotelgame\binaries\win64\bravohotelclient-win64-shipping.protected.exe => Pas de fichier FirewallRules: [{D2170301-3764-413A-99E0-C95E26F18C53}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CROWZ Demo\CrowFPS\Binaries\Win64\CrowFPSClient-Win64-Shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{8128719E-E7AE-4DFE-9D4C-F1B30B516A52}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CROWZ Demo\CrowFPS\Binaries\Win64\CrowFPSClient-Win64-Shipping.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{29D612FA-71AA-40CD-8FFA-7C4931ADD716}C:\program files\ultimaker cura 4.13.1\cura.exe] => (Allow) C:\program files\ultimaker cura 4.13.1\cura.exe (Ultimaker B.V.) [Fichier non signé] FirewallRules: [UDP Query User{D2A6C64E-E066-420B-A1F4-C4504CD93E2C}C:\program files\ultimaker cura 4.13.1\cura.exe] => (Allow) C:\program files\ultimaker cura 4.13.1\cura.exe (Ultimaker B.V.) [Fichier non signé] FirewallRules: [TCP Query User{FFECCDBB-8EF7-4C18-B948-E8A3418B1F2C}C:\users\war-machine\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\war-machine\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{2920A94E-BE9F-4A14-8F12-F26A447A50EE}C:\users\war-machine\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\users\war-machine\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe FirewallRules: [TCP Query User{333BFE2F-1235-477E-9BA1-830B59C3871A}C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe FirewallRules: [UDP Query User{88918238-0087-4B98-A881-F6426314F4DC}C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe FirewallRules: [TCP Query User{C599412F-9972-4AC8-A819-837719B60A4E}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{EAEFA484-2EA0-437E-900B-71C4C6E513C6}D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{7B465023-6378-4877-83E6-FB472C29EF97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{45956FAD-1849-41BC-8926-D505888B4F50}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{FE5505A7-4C6C-4093-8092-160ABE572F00}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{7BB62E8C-AC5C-4B02-8BDE-099DE1B298F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{C5E43787-3088-408F-98C1-535FDC14C918}F:\program files (x86)\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) F:\program files (x86)\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{FB6DBE2F-A515-41BC-A971-4315342F1E37}F:\program files (x86)\fortnite\engine\binaries\win64\epicwebhelper.exe] => (Allow) F:\program files (x86)\fortnite\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{7358BE0A-90B6-4518-8FC7-2FF2765C6265}C:\users\war-machine\appdata\local\nationsglory\java\bin\java.exe] => (Block) C:\users\war-machine\appdata\local\nationsglory\java\bin\java.exe FirewallRules: [UDP Query User{D376777B-8460-43C2-8A77-87CB6F744D72}C:\users\war-machine\appdata\local\nationsglory\java\bin\java.exe] => (Block) C:\users\war-machine\appdata\local\nationsglory\java\bin\java.exe FirewallRules: [{F41F13B8-69C7-43FA-B64E-113403B83306}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E1B925AF-AC0A-40F1-AB30-A3E248F968BA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sea of Thieves\Athena\Binaries\Win64\SoTGame.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A93294D5-3FF2-40A2-8D36-6A46B8603C03}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> ) FirewallRules: [{4F42ABC9-351E-4E80-A786-C7F13A92ABD6}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> ) FirewallRules: [{F742D248-773D-46FA-AB2A-8EF8052C0599}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> ) FirewallRules: [{E319EEB6-1A48-433F-B0EF-7A4E2802754B}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> ) FirewallRules: [{E7A0E8C8-2CCD-42EE-8236-4E8C0E523DF6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{876F620C-E4AA-4287-9885-A31BE1342E86}] => (Allow) C:\Program Files (x86)\iMobie\DroidKit\xldownload\download\MiniThunderPlatform.exe => Pas de fichier FirewallRules: [{C7CBE72B-35CB-432E-9C9F-E6806838C1BE}] => (Allow) C:\Program Files (x86)\iMobie\DroidKit\xldownload\download\MiniThunderPlatform.exe => Pas de fichier FirewallRules: [TCP Query User{B3FD61A2-4AE0-4247-B766-E5EFAEE09822}C:\users\war-machine\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\war-machine\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [UDP Query User{1A4D7DBE-FB7C-44C5-B3B3-D0B5FF725FFC}C:\users\war-machine\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\war-machine\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [TCP Query User{3A73F03E-73EA-4BFB-8CBC-22ABE80E750F}C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [UDP Query User{1B44C4BD-29EB-44DF-B11B-F31E452CA218}C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [{646B5D2B-7FEF-4BC8-A6EC-3EC6FBDC6011}] => (Block) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [{E743EEC9-67E0-4AAA-96A0-470D05F34ECB}] => (Block) C:\users\war-machine\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [{3C40F2A1-9E31-4EF7-BCD2-B07959E87C93}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{58A7B64D-A55B-4E0A-A5F5-9287AE4C0021}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9E24DABB-0927-4B99-A2E2-CD222A50C874}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{80122A3E-9611-4C26-B491-42AACE2CB1D4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{29434AAD-D127-495D-B129-4EEB48AAF0C2}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{AB7B84FE-4E48-4CA3-BB15-E4AFDBE4BF5C}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{827F960A-766B-479C-926A-4CFA7638EFA0}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{2EB6CF23-F7BB-4FC1-98FC-4A572584092B}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{D8228A43-8873-4CBA-87BE-8BA25C23092F}] => (Allow) C:\Program Files (x86)\Overwolf\0.201.0.23\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{C8AC4438-6865-4FFB-9431-B27CA11D29C0}] => (Allow) C:\Program Files (x86)\Overwolf\0.201.0.23\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{CB21E04D-A267-44C5-B538-452CAEA257DA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stray\Stray.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{0DBD7605-62F0-41E6-9EE8-DCE2706DF995}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Stray\Stray.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{F9EAC274-5D6D-4786-A554-12782E5C4D85}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{583DE15A-E120-4C0F-9B33-744D74A507FC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\103.0.1264.77\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Clavier standard PS/2 Description: Clavier standard PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Claviers standard) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Souris Microsoft PS/2 Description: Souris Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (08/07/2022 07:26:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Nom du module défaillant : OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00098210 ID du processus défaillant : 0x135c Heure de début de l’application défaillante : 0x01d8aa82dd687fdd Chemin d’accès de l’application défaillante : D:\Program Files (x86)\Origin\OriginWebHelperService.exe Chemin d’accès du module défaillant: D:\Program Files (x86)\Origin\OriginWebHelperService.exe ID de rapport : b12ab831-abf0-4769-b4f6-9903c273d400 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/07/2022 06:56:42 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: AUTORITE NT) Description: Impossible de fermer l’application ou le service « Malwarebytes Service ». Error: (08/07/2022 06:56:42 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: AUTORITE NT) Description: Impossible de fermer l’application ou le service « Malwarebytes Service ». Error: (07/29/2022 08:32:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Nom du module défaillant : OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00098210 ID du processus défaillant : 0xbb4 Heure de début de l’application défaillante : 0x01d8a3798d89f815 Chemin d’accès de l’application défaillante : D:\Program Files (x86)\Origin\OriginWebHelperService.exe Chemin d’accès du module défaillant: D:\Program Files (x86)\Origin\OriginWebHelperService.exe ID de rapport : aa182c5d-5419-4dd1-8745-3330325aa4a9 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/29/2022 07:36:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Nom du module défaillant : OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00098210 ID du processus défaillant : 0x1458 Heure de début de l’application défaillante : 0x01d8a371b3277455 Chemin d’accès de l’application défaillante : D:\Program Files (x86)\Origin\OriginWebHelperService.exe Chemin d’accès du module défaillant: D:\Program Files (x86)\Origin\OriginWebHelperService.exe ID de rapport : c523a351-cf92-4568-95c3-5d1fe1acf0f6 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/27/2022 08:03:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Nom du module défaillant : OriginWebHelperService.exe, version : 10.5.56.33908, horodatage : 0x5dd474e2 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00098210 ID du processus défaillant : 0x10a4 Heure de début de l’application défaillante : 0x01d8a1e31f67a89e Chemin d’accès de l’application défaillante : D:\Program Files (x86)\Origin\OriginWebHelperService.exe Chemin d’accès du module défaillant: D:\Program Files (x86)\Origin\OriginWebHelperService.exe ID de rapport : cc67f00e-661f-4d84-90ba-661bc68773ef Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/27/2022 10:44:22 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSI_LED.exe, version : 6.2.0.40, horodatage : 0x59f7f0b4 Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1826, horodatage : 0x617d5271 Code d’exception : 0xe0434352 Décalage d’erreur : 0x0012ca42 ID du processus défaillant : 0x1727c Heure de début de l’application défaillante : 0x01d8a101e6b86876 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : a8af97f2-c3c5-4dee-b06d-e5d73f9a9387 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/27/2022 10:44:21 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : MSI_LED.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.BadImageFormatException à MSI_LED.Razer.MSI_RZ_UnInitial() à MSI_LED.App.CloseAPP() à MSI_LED.App.Application_Startup(System.Object, System.Windows.StartupEventArgs) à System.Windows.Application.OnStartup(System.Windows.StartupEventArgs) à System.Windows.Application.<.ctor>b__1_0(System.Object) à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) à System.Windows.Threading.DispatcherOperation.InvokeImpl() à System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) à MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) à System.Windows.Threading.DispatcherOperation.Invoke() à System.Windows.Threading.Dispatcher.ProcessQueue() à System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) à MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) à MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) à System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) à System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) à System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) à MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) à MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) à System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) à System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) à System.Windows.Application.RunDispatcher(System.Object) à System.Windows.Application.RunInternal(System.Windows.Window) à System.Windows.Application.Run(System.Windows.Window) à MSI_LED.App.Main() Erreurs système: ============= Error: (08/07/2022 07:27:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Origin Web Helper Service s’est terminé de façon inattendue pour la 1ème fois. Error: (08/07/2022 07:26:37 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 7 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 5 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 3 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 1 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 6 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 4 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Error: (08/07/2022 07:26:36 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives aux performances sur le processeur logique Hyper-V 2 sont désactivées en raison d’un problème de microprogramme. Vérifiez auprès du fabricant de l’ordinateur si une mise à jour du microprogramme est disponible. Windows Defender: ================ Date: 2022-08-07 19:21:26 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nom : PUABundler:Win32/uTorrent_BundleInstaller ID : 311958 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD4D81.tmp.1659892882_permissionsCopy\uTorrent.exe; file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD9E1.tmp.1659892864_permissionsCopy\uTorrent.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : WAR-machine-PC\WAR-machine Nom du processus : C:\Windows\System32\svchost.exe Version de la veille de sécurité : AV: 1.371.1610.0, AS: 1.371.1610.0, NIS: 1.371.1610.0 Version du moteur : AM: 1.1.19400.3, NIS: 1.1.19400.3 Date: 2022-08-07 19:21:25 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nom : PUABundler:Win32/uTorrent_BundleInstaller ID : 311958 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD4D81.tmp.1659892882_permissionsCopy\uTorrent.exe; file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD9E1.tmp.1659892864_permissionsCopy\uTorrent.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : WAR-machine-PC\WAR-machine Nom du processus : C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe Version de la veille de sécurité : AV: 1.371.1610.0, AS: 1.371.1610.0, NIS: 1.371.1610.0 Version du moteur : AM: 1.1.19400.3, NIS: 1.1.19400.3 Date: 2022-08-07 19:21:22 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Vigua.A&threatid=232714&enterprise=0 Nom : PUA:Win32/Vigua.A ID : 232714 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD4D81.tmp.1659892882\HTA\install.1659892882.zip; file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD9E1.tmp.1659892864\HTA\install.1659892864.zip Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : WAR-machine-PC\WAR-machine Nom du processus : C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe Version de la veille de sécurité : AV: 1.371.1610.0, AS: 1.371.1610.0, NIS: 1.371.1610.0 Version du moteur : AM: 1.1.19400.3, NIS: 1.1.19400.3 Date: 2022-08-07 19:21:10 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nom : PUABundler:Win32/uTorrent_BundleInstaller ID : 311958 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD9E1.tmp.1659892864_permissionsCopy\uTorrent.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : WAR-machine-PC\WAR-machine Nom du processus : C:\Windows\System32\svchost.exe Version de la veille de sécurité : AV: 1.371.1610.0, AS: 1.371.1610.0, NIS: 1.371.1610.0 Version du moteur : AM: 1.1.19400.3, NIS: 1.1.19400.3 Date: 2022-08-07 19:21:09 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0 Nom : PUABundler:Win32/uTorrent_BundleInstaller ID : 311958 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\WAR-machine\AppData\Local\Temp\HYD9E1.tmp.1659892864_permissionsCopy\uTorrent.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : WAR-machine-PC\WAR-machine Nom du processus : C:\Users\WAR-machine\AppData\Roaming\uTorrent\uTorrent.exe Version de la veille de sécurité : AV: 1.371.1610.0, AS: 1.371.1610.0, NIS: 1.371.1610.0 Version du moteur : AM: 1.1.19400.3, NIS: 1.1.19400.3  CodeIntegrity: =============== Date: 2022-08-07 19:59:39 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2022-08-07 19:58:51 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1.50 06/27/2017 Carte mère: MSI Z270 GAMING PRO CARBON (MS-7A63) Processeur: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz Pourcentage de mémoire utilisée: 22% Mémoire physique - RAM - totale: 32727.14 MB Mémoire physique - RAM - disponible: 25433.59 MB Mémoire virtuelle totale: 34775.14 MB Mémoire virtuelle disponible: 25274.26 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:442.66 GB) (Free:109.79 GB) (Model: SanDisk Ultra II 480GB) NTFS Drive d: (jeux) (Fixed) (Total:447.13 GB) (Free:24.91 GB) (Model: KINGSTON SV300S37A480G) NTFS Drive e: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) (Model: WDC WD10EZEX-00RKKA0) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive f: () (Fixed) (Total:931.41 GB) (Free:317.39 GB) (Model: WDC WD10EZEX-00RKKA0) NTFS Drive g: (Nouveau nom) (Fixed) (Total:1.78 GB) (Free:1.75 GB) (Model: SanDisk Ultra II 480GB) NTFS \\?\Volume{87966019-0000-0000-0000-100000000000}\ (Data) (Fixed) (Total:2.69 GB) (Free:1.7 GB) NTFS \\?\Volume{19c0c6cf-4c0d-97a3-0d37-e79c8c13d025}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS ==================== MBR & Table des partitions ==================== Attempted reading MBR returned 0 bytes. Could not read MBR for disk 7. ==================== Fin de Addition.txt =======================