Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-10-2023 Exécuté par caste (25-10-2023 19:50:57) Exécuté depuis C:\Users\caste\Downloads Microsoft Windows 11 Professionnel Version 22H2 22621.2428 (X64) (2023-07-04 18:20:15) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1006779153-787620276-1767269942-500 - Administrator - Disabled) => C:\Users\Administrateur caste (S-1-5-21-1006779153-787620276-1767269942-1001 - Administrator - Enabled) => C:\Users\caste DefaultAccount (S-1-5-21-1006779153-787620276-1767269942-503 - Limited - Disabled) Invité (S-1-5-21-1006779153-787620276-1767269942-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1006779153-787620276-1767269942-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\uTorrent) (Version: 3.6.0.46896 - BitTorrent Inc.) AIDA64 Extreme v6.85 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.85 - FinalWire Ltd.) Alienware CC Components for AWCC (1.1.40.0) (HKLM\...\Alienware CC Components for AWCC) (Version: 1.1.40.0 - Dell Inc) Hidden Alienware Command Center Package Manager (HKLM-x32\...\{D2DA930B-CB5D-4DD6-BF62-BE6C310A353D}) (Version: 5.5.52.0 - Dell Inc.) Alienware Command Center Suite (HKLM\...\{86BC6E12-D8A2-4335-B1D8-CAE05AED23B9}) (Version: 5.5.51.0 - Dell Inc.) Hidden Alienware Command Center Suite (HKLM-x32\...\InstallShield_{86BC6E12-D8A2-4335-B1D8-CAE05AED23B9}) (Version: 5.5.51.0 - Dell Inc.) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlestate Games Launcher 13.0.2.2031 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 13.0.2.2031 - Battlestate Games) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.17 - Piriform) Chrome Remote Desktop Host (HKLM-x32\...\{95051BCE-42C1-4BAA-96D1-77D97BD05AEC}) (Version: 119.0.6045.21 - Google LLC) Corsair iCUE5 Software (HKLM\...\{A9B0B2D7-8C59-4413-A2FB-99EDBE65A608}) (Version: 5.5.134 - Corsair) CPUID CPU-Z MSI 2.03 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 2.03 - CPUID, Inc.) CPUID HWMonitor 1.52 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.52 - CPUID, Inc.) Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 2.0 - GOG.com) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.2.0.2083 - Disc Soft Ltd) Dave the Diver version 11681370 (HKLM-x32\...\{1B908AE1-2975-4B10-B964-CFAE2C10976D}_is1) (Version: 11681370 - CHRONOS) Diablo IV (HKLM-x32\...\Diablo IV) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\Discord) (Version: 1.0.9013 - Discord Inc.) Documentation Manager (HKLM\...\{5D4B95B9-6199-4643-B41B-DEBD7048A263}) (Version: 22.160.0.3 - Intel Corporation) Hidden Dynamic Application Loader Host Interface Service (HKLM\...\{B31B8E7F-3C96-4A05-887F-78F3DB1E2FC0}) (Version: 1.0.0.0 - Intel Corporation) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{6b617af3-c8f4-45a8-bf47-b32ffb4da1cc}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden ENE_External_Device_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.11.1 - ENE Tech) Hidden ENE_External_Device_HAL (HKLM-x32\...\{bb9d349f-b87b-4026-b336-1604708bd09c}) (Version: 1.0.11.1 - ENE Tech) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{E8FDD9E1-BEB2-4E7F-A179-22962E4C377A}) (Version: 1.3.82.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.) Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.5.1.26215 - Battlestate Games) FIFA 23 (HKLM-x32\...\{D49D9A12-CE99-4264-B193-851094261169}_is1) (Version: 1.0.82.43747 - Electronic Arts) Firmware updater for DualSense™ wireless controller (HKLM\...\{9505317F-5C12-489D-8C97-88511D9985B6}) (Version: 1.5.0.2 - Nom de votre société) FiveM (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Forza Motorsport version v1.488.4138.0 (HKLM-x32\...\{DEF4BA05-C4D9-4B5A-8370-722E4B1C78F7}_is1) (Version: v1.488.4138.0 - CLC) Ghost Recon Breakpoint (HKLM-x32\...\Uplay Install 11903) (Version: - Ubisoft) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: 2.0.67.2 - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC) Google Drive (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\4db2a719a1ec924ce57ea6caabcc8040) (Version: 1.0 - Google\Chrome) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2944.0 - Rockstar Games) Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot) HidHide (HKLM\...\{27AF679E-48DB-4B49-A689-1D6A3A52C472}) (Version: 1.2.98 - Nefarius Software Solutions e.U.) Intel(R) Chipset Device Software (HKLM\...\{22987D97-5A46-4BD9-B1A5-2FFE44201081}) (Version: 10.1.19199.8340 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{e6ecf35a-b1bb-4e59-9d90-4c98fde2ffa8}) (Version: 10.1.19199.8340 - Intel(R) Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2239.3.33.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{6633DA0D-F56A-42E4-9599-D37A640CAF36}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{C71B56FC-8255-4226-B3E4-6B81288A6A0B}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME WMI Provider (HKLM\...\{64528C16-C80F-4935-AF3A-946B86EB3EEB}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000180-0220-1036-84C8-B8D95FA3C8C3}) (Version: 22.180.0.2 - Intel Corporation) Intel® Software Installer (HKLM-x32\...\{8fca270b-04dc-46cd-a7dc-bca0425f10c6}) (Version: 22.160.0.3 - Intel Corporation) Hidden IPv6 Forwarder for GameStream (HKLM-x32\...\{ABE6DCED-D292-4A86-ABE1-9B6188494F4B}) (Version: 2.6.0.0 - Moonlight Game Streaming Project) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\{B49685C9-32FA-4194-A43F-DAF6BD60F2EC}) (Version: 2.3.0.78 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.78 - LogMeIn, Inc.) Marvels Spider-Man Miles Morales (HKLM-x32\...\{2264C79C-56B4-4D42-BE12-57A70E160E9A}_is1) (Version: 1.1209.0.0 - PlayStation PC LLC) MasterPlus version 1.9.1 (HKLM-x32\...\{2C3A7142-9B45-4C95-993A-A767C2148583}_is1) (Version: 1.9.1 - ) Metal Slug (HKLM-x32\...\1136471182_is1) (Version: gog-3 - GOG.com) Metal Slug 2 (HKLM-x32\...\1241813850_is1) (Version: gog-3 - GOG.com) Metal Slug 3 (HKLM-x32\...\1370911530_is1) (Version: gog-5 - GOG.com) Metal Slug X (HKLM-x32\...\2046360890_is1) (Version: gog-6 - GOG.com) Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft .NET Host - 7.0.7 (x86) (HKLM-x32\...\{8C93FD6A-9535-483D-91D1-0B47CD0C7517}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 7.0.7 (x86) (HKLM-x32\...\{3D332594-2B70-4C75-8965-00D0F98838D7}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 7.0.7 (x86) (HKLM-x32\...\{9B1FD351-30AA-4521-A8F4-7F92ECCD8372}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft ASP.NET Core 7.0.7 - Shared Framework (x86) (HKLM-x32\...\{015ad689-01fc-4615-b069-a86d56d8aa44}) (Version: 7.0.7.23274 - Microsoft Corporation) Microsoft ASP.NET Core 7.0.7 Shared Framework (x86) (HKLM-x32\...\{A6899E25-54DD-31F6-A243-B8CFC3E1ECC3}) (Version: 7.0.7.23274 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.61 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.61 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\OneDriveSetup.exe) (Version: 22.012.0117.0003 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{AF47B488-9780-4AB5-A97E-762E28013CA6}) (Version: 5.71.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 7.0.7 (x86) (HKLM-x32\...\{0EEC265D-6126-433C-B735-1A821A0C0A3E}) (Version: 56.31.61651 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 7.0.7 (x86) (HKLM-x32\...\{929eedf8-8704-4e0a-9b54-c9e6db21a6e4}) (Version: 7.0.7.32525 - Microsoft Corporation) Moonlight Internet Hosting Tool (HKLM-x32\...\{23CC640E-9CCB-4B70-A6B4-5FD2A6398F40}) (Version: 5.6.1.0 - Moonlight Game Streaming Project) Hidden Moonlight Internet Hosting Tool (HKLM-x32\...\{ac61df64-d443-4a89-8c0b-4147c28750f4}) (Version: 5.6.1.0 - Moonlight Game Streaming Project) MSI Center SDK (HKLM-x32\...\{15289038-41BE-48F8-B8B9-0B1021D3089E}}_is1) (Version: 3.2023.0919.01 - MSI) NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.0.132 - Nord Security) NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.13.5.0 - Nord Security) NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN) NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation) NVIDIA Pilote graphique 545.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 545.84 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project) Octopath Traveler II version Build 10440977 (HKLM-x32\...\{3E7779A9-D8FB-435F-B52C-CEB57D8FC7D6}_is1) (Version: Build 10440977 - CLC) OpenIV (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\OpenIV) (Version: 4.1.1502 - .black/OpenIV Team) Parsec (HKLM-x32\...\Parsec) (Version: 150-90d - Parsec Cloud Inc.) Parsec Virtual Display Driver (HKLM-x32\...\ParsecVDD) (Version: 0.41.0.0 - Parsec Cloud Inc.) Parsec Virtual USB Adapter Driver (HKLM\...\ParsecVUD) (Version: 0.2.5.0 - Parsec Cloud Inc.) Ratchet and Clank Rift Apart (HKLM-x32\...\FLT_Ratchet_&_Clank_-_Rift_Apart) (Version: - ) Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.2353 - Realtek Semiconductor Corp.) Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2) (Version: 1.0.1491.18 - Rockstar Games) reWASD (HKLM\...\reWASD) (Version: 6.7.1.8191 - Disc Soft Ltd) RIDE 5 (HKLM-x32\...\RIDE 5_is1) (Version: - ) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.78.1620 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.0.6 - Rockstar Games) RSI Launcher 1.6.8 (HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23) (Version: 1.6.8 - Cloud Imperium Games) Sea of Stars version 12035774 (HKLM-x32\...\{15C12342-FF53-4138-BD39-DE7D881751A4}_is1) (Version: 12035774 - CHRONOS) SIFU (HKLM-x32\...\{A6D9E9FF-5475-4DF0-84FE-4744A3C625BB}_is1) (Version: 1.24.0.0 - Sloclap) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Teenage Mutant Ninja Turtles Shredders Revenge (HKLM-x32\...\{CE270B15-BD69-45DC-A1B1-54535E169BE5}_is1) (Version: 1.0.0.311 - Tribute Games) The Crew Motorfest (HKLM-x32\...\Uplay Install 16732) (Version: - Ubisoft) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 144.0.10906 - Ubisoft) Verbatim_SureFireGaming_Product (HKLM\...\{35CB65C6-A7E3-4EE7-AD40-738D70A72164}) (Version: 1.0.3.11 - Verbatim) Hidden Verbatim_SureFireGaming_Product (HKLM-x32\...\{d601832a-0d94-46ce-9b19-78e8a5887313}) (Version: 1.0.3.11 - Verbatim) Hidden ViGEm Bus Driver (HKLM\...\{9C581C76-2D68-40F8-AA6F-94D3C5215C05}) (Version: 1.21.442 - Nefarius Software Solutions e.U.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH) Worms W.M.D (HKLM\...\{ADC0217E-DEF2-4353-9CDF-39CDEFBAFF02}) (Version: 1.0.0.0 - Worms W.M.D) Hidden Worms W.M.D (HKLM\...\Worms W.M.D 1.0.0.0) (Version: 1.0.0.0 - Worms W.M.D) XIVLauncher (HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\XIVLauncher) (Version: 6.3.6 - goaaats) Packages: ========= Accessoires Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_2209.2209.14005.0_x64__8wekyb3d8bbwe [2023-10-14] (Microsoft Corporation) Alienware Command Center -> C:\Program Files\WindowsApps\DellInc.AlienwareCommandCenter_5.5.51.0_x64__htrsf667h5kn2 [2023-09-20] (Dell Inc) Alienware Control Center -> C:\Program Files\WindowsApps\DellInc.6066037A8FCF7_1.1.35.0_x64__htrsf667h5kn2 [2023-09-20] (Dell Inc) AppUp.ThunderboltControlCenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-10-14] (INTEL CORP) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation) HP Reverb G2 VR Headset Setup -> C:\Program Files\WindowsApps\AD2F1837.HPReverbG2VRHeadsetSetup_1.0.8.0_x64__v10z8vjag6ke6 [2023-09-17] (HP Inc.) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-10-13] (Microsoft Corporation) MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.26.0_x64__kzh8wxbdkxb8p [2023-10-22] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task] NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.964.0_x64__56jybvy8sckqj [2023-10-22] (NVIDIA Corp.) Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_10.0.7829.0_x64__8wekyb3d8bbwe [2023-10-24] (Microsoft Corporation) [Startup Task] Power Automate -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.600.285.0_x64__8wekyb3d8bbwe [2023-10-22] (Microsoft Corporation) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.44.302.0_x64__dt26b99r8h8gj [2023-09-14] (Realtek Semiconductor Corp) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-22] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0 [2023-10-13] (Spotify AB) [Startup Task] Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-10-13] (Microsoft Corporation) WinRAR -> C:\Program Files\WinRAR [2023-07-05] (win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1006779153-787620276-1767269942-1001_Classes\CLSID\{32ea896a-26d3-ffbc-ea5f-63478dfc1ae4}\localserver32 -> E:\SteamLibrary\steamapps\common\DSX\Main\DSX.exe (Mohammed Sharawi -> Paliverse) CustomCLSID: HKU\S-1-5-21-1006779153-787620276-1767269942-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> TEFINCOM S.A.) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-07-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-07-08] (AVB Disc Soft, SIA -> Disc Soft FZE LLC) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_63ae10366dad791f\nvshext.dll [2023-10-12] (NVIDIA Corporation -> NVIDIA Corporation) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\caste\AppData\Roaming\Microsoft\Windows\Menu Démarrer\Programs\Playnite\Safe Mode.lnk -> C:\Users\caste\AppData\Local\Playnite\Safe Mode.bat () ShortcutWithArgument: C:\Users\caste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --load-extension="C:\Users\caste\AppData\Local\Default" ShortcutWithArgument: C:\Users\caste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Epic Games Launcher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.) -> --load-extension="C:\Users\caste\AppData\Local\Default" ShortcutWithArgument: C:\Users\caste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --load-extension="C:\Users\caste\AppData\Local\Default" ShortcutWithArgument: C:\Users\caste\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\26c8e4b9a90483d\Rockstar Games Launcher.lnk -> C:\Program Files\Rockstar Games\Launcher\Launcher.exe (Rockstar Games) -> --load-extension="C:\Users\caste\AppData\Local\Default" ==================== Modules chargés (Avec liste blanche) ============= 0000-00-00 00:00 - 0000-00-00 00:00 - 000000000 _____ () [Accès refusé] C:\ProgramData\LegacyLine\PrinterGlobat\QIPSlfcydement.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 000295424 _____ () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\cm-core-temp.dll 2023-08-25 18:13 - 2023-05-19 17:07 - 000011264 _____ () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\cm-hook.dll 2023-08-25 18:13 - 2023-08-18 15:05 - 006040064 _____ () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\CMUOT.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 000014336 _____ () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\hidapi.dll 2023-08-25 18:12 - 2023-08-18 16:16 - 000190976 _____ () [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\OledDataConvert.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 000060416 _____ (Chicony Electronics Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\audiobox.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 002028032 _____ (CPUID) [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\cpuidsdk.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 000097792 _____ (Google, inc) [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\adb\AdbWinApi.dll 2023-08-25 18:13 - 2023-05-19 17:06 - 000062976 _____ (Google, inc) [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\adb\AdbWinUsbApi.dll 2023-08-25 18:13 - 2023-08-14 15:34 - 000046080 _____ (OpenLibSys.org) [Fichier non signé] C:\Program Files (x86)\CoolerMaster\MasterPlus\WinRing0.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\caste\AppData\Local\Temp:$DATA​ [16] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2022-05-07 07:24 - 2023-10-08 13:49 - 000002840 _____ C:\WINDOWS\system32\drivers\etc\hosts 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repacks-site.org # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks-site.org # Fake FitGirl site 109.94.209.70 fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 fitgirl-repack.com # Fake FitGirl site 109.94.209.70 fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repack.net # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site 109.94.209.70 fitgirlpack.site # Fake FitGirl site 109.94.209.70 www.fitgirlpack.site # Fake FitGirl site 109.94.209.70 fitgirl-repack.org # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.org # Fake FitGirl site 109.94.209.70 fitgirlrepacks.pro # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.pro # Fake FitGirl site 109.94.209.70 fitgirlrepack.games # Fake FitGirl site 109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1006779153-787620276-1767269942-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\caste\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\2023-09-15 23_25_08-Greenshot.jpg HKU\S-1-5-21-1006779153-787620276-1767269942-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. Network Binding: ============= Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet 3: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet 4: NordVPN LightWeight Firewall -> NordLwf (enabled) Hamachi: NordVPN LightWeight Firewall -> NordLwf (enabled) Ethernet 5: NordVPN LightWeight Firewall -> NordLwf (enabled) ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "GogGalaxy" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_7E8C207B7224041D9290B1D02142F82B" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "NordVPN" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "DSX" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "Synapse3" HKU\S-1-5-21-1006779153-787620276-1767269942-1001\...\StartupApproved\Run: => "reWASD Engine" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{FEF2DCA3-AECC-4661-AD8E-904B2F7B298C}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23119.304.2165.4533_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9F01FDAC-D7FF-43A0-AAB1-BC23AF65390A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23119.304.2165.4533_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D30471CE-C96B-4214-916A-ADFE77C66A4F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{EDFB02A4-9F32-419C-9E3D-41DEFBB09559}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{EF149911-7CC2-473B-BA70-5B3179500295}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{C95EAA86-F29B-4BE4-AF34-A74D571C86AA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{54B57B4D-5C24-4D53-B2FA-DA7CCF8FF57F}] => (Allow) E:\SteamLibrary\steamapps\common\MX Bikes\mxbikes.exe () [Fichier non signé] FirewallRules: [{DE74A673-5F90-41DA-96AC-1AE2137335E7}] => (Allow) E:\SteamLibrary\steamapps\common\MX Bikes\mxbikes.exe () [Fichier non signé] FirewallRules: [{4736A166-784D-459E-8BF2-69B678AE1567}] => (Allow) E:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Fichier non signé] FirewallRules: [{78B518DD-CB02-48A5-A2ED-2F53B8769B77}] => (Allow) E:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Fichier non signé] FirewallRules: [{E6CF5CA9-589A-4E36-9571-4283B94F3225}] => (Allow) E:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com) FirewallRules: [{1780B480-C6DC-4556-B1A3-6128096648DA}] => (Allow) E:\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com) FirewallRules: [{A6750BDC-5A0B-4E7E-8C6E-BC19C46C6B6C}] => (Allow) E:\SteamLibrary\steamapps\common\Yakuza Like a Dragon\runtime\media\startup.exe (SEGA Games Co., Ltd. -> ) FirewallRules: [{718C1F97-52F0-40AD-A088-8AF6EDCE6434}] => (Allow) E:\SteamLibrary\steamapps\common\Yakuza Like a Dragon\runtime\media\startup.exe (SEGA Games Co., Ltd. -> ) FirewallRules: [{D8E3C30D-2BB4-433A-9128-2A0395E89D37}] => (Allow) E:\SteamLibrary\steamapps\common\Tales of Arise\Arise\Binaries\Win64\Tales of Arise.exe (BANDAI NAMCO Entertainment Inc.) [Fichier non signé] FirewallRules: [{E94BEE11-38BF-40EA-8325-F62DB982DCA6}] => (Allow) E:\SteamLibrary\steamapps\common\Tales of Arise\Arise\Binaries\Win64\Tales of Arise.exe (BANDAI NAMCO Entertainment Inc.) [Fichier non signé] FirewallRules: [{A231CBB8-6253-462C-A4DD-74F555939622}] => (Allow) E:\SteamLibrary\steamapps\common\Session\SessionGame.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{313C7EB0-805A-45B1-91DE-5EEE410D1BBA}] => (Allow) E:\SteamLibrary\steamapps\common\Session\SessionGame.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{D8781419-8099-4AAF-BDE7-B5F9F772BC2F}] => (Allow) E:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [Fichier non signé] FirewallRules: [{1D3518DA-AE51-4FCB-8ABA-7121E57EEE24}] => (Allow) E:\SteamLibrary\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [Fichier non signé] FirewallRules: [{375DC621-7048-4CD3-886A-51422B8A83EE}] => (Allow) E:\SteamLibrary\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> ) FirewallRules: [{D45C7F57-29F6-4B60-99D4-01AB31B43F1E}] => (Allow) E:\SteamLibrary\steamapps\common\HITMAN 3\Launcher.exe (IO INTERACTIVE A/S -> ) FirewallRules: [{B72D3BF3-B94F-4012-AF56-4770CF95EFA6}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.) FirewallRules: [{1D70B163-8D37-4315-9BCE-B2D13E9D27B6}] => (Allow) E:\SteamLibrary\steamapps\common\ELDEN RING\Game\start_protected_game.exe (EasyAntiCheat Oy -> Epic Games, Inc.) FirewallRules: [{96D5FF8C-5BD0-4601-AD82-E26FDEA28987}] => (Allow) E:\SteamLibrary\steamapps\common\DRAGON QUEST XI S\Game\Binaries\Win64\DRAGON QUEST XI S.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{B743D9B1-7801-4A38-BB96-2F5368F0BECC}] => (Allow) E:\SteamLibrary\steamapps\common\DRAGON QUEST XI S\Game\Binaries\Win64\DRAGON QUEST XI S.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.) FirewallRules: [{FC6D4684-9C81-43AB-82B7-013C5AD5E373}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light 2\ph\work\bin\x64\DyingLightGame_x64_rwdi.exe (Techland S.A. -> Techland) FirewallRules: [{9F7A9909-56F5-4A79-A911-772EC95CE2B7}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light 2\ph\work\bin\x64\DyingLightGame_x64_rwdi.exe (Techland S.A. -> Techland) FirewallRules: [{D97B89CC-C2DD-4575-8994-9E814A6E0EDF}] => (Allow) E:\SteamLibrary\steamapps\common\DSX\DSX.exe (Mohammed Sharawi -> ) FirewallRules: [{5FEC7744-041F-48CD-B9EC-A33CE1C84517}] => (Allow) E:\SteamLibrary\steamapps\common\DSX\DSX.exe (Mohammed Sharawi -> ) FirewallRules: [{B09F5AD6-7E9B-4A9E-BC32-F576ED26EFC7}] => (Allow) E:\SteamLibrary\steamapps\common\DSX\Main\DSX.exe (Mohammed Sharawi -> Paliverse) FirewallRules: [{F3191828-7B95-4548-B5F5-118354CAFBDD}] => (Allow) E:\SteamLibrary\steamapps\common\DSX\Main\DSX.exe (Mohammed Sharawi -> Paliverse) FirewallRules: [TCP Query User{2E38A413-866E-47E2-A6DE-6793D2E0293A}E:\games\resident evil 4\re4.exe] => (Allow) E:\games\resident evil 4\re4.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [UDP Query User{0233DFC8-E5D3-4439-9633-C2189333240F}E:\games\resident evil 4\re4.exe] => (Allow) E:\games\resident evil 4\re4.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.) FirewallRules: [TCP Query User{3ABEA519-ACB3-4CC1-B751-D8909B15A74D}E:\games\diablo iv\diablo iv.exe] => (Allow) E:\games\diablo iv\diablo iv.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{709A5F8B-DD80-4D9D-B1A6-312E8B96C5FE}E:\games\diablo iv\diablo iv.exe] => (Allow) E:\games\diablo iv\diablo iv.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{16F513B4-CAD2-4097-822E-2CC84F27EDD0}E:\games\red dead redemption 2\rdr2.exe] => (Allow) E:\games\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{E9996AB0-C9B7-4CC6-B8C2-6A5E50B3BE6E}E:\games\red dead redemption 2\rdr2.exe] => (Allow) E:\games\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{CF46E740-2C16-41CF-9319-0773B56C46D2}] => (Allow) D:\SteamLibrary\steamapps\common\Nioh2\nioh2.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.) FirewallRules: [{06859F5B-501B-41E4-832C-C5C17EF2EA98}] => (Allow) D:\SteamLibrary\steamapps\common\Nioh2\nioh2.exe (KOEI TECMO GAMES CO., LTD. -> KOEI TECMO GAMES CO., LTD.) FirewallRules: [TCP Query User{0362AA07-9995-4109-A55A-ED12C947D35C}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{772980B6-360D-431B-9A2B-C4319F6359CB}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{51FB8920-7DD0-4904-B3B1-218E01CB229F}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC) FirewallRules: [{E5283D38-C281-4E81-B469-F511E71189EB}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft FZE LLC) FirewallRules: [TCP Query User{2D7D6B67-F08E-45F4-AB85-2037995C5A09}E:\games\dave the diver\davethediver.exe] => (Allow) E:\games\dave the diver\davethediver.exe (NEXON Korea Corporation. -> ) FirewallRules: [UDP Query User{503495F3-8A36-46D3-ADAF-BF30FFB20079}E:\games\dave the diver\davethediver.exe] => (Allow) E:\games\dave the diver\davethediver.exe (NEXON Korea Corporation. -> ) FirewallRules: [{0F866BB6-21FE-4511-892B-882D40D877B5}] => (Allow) C:\Program Files\Parsec\parsecd.exe (Parsec Cloud, Inc. -> Parsec) FirewallRules: [TCP Query User{8882152B-031B-411A-8131-3D9487851AE1}E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3.exe] => (Allow) E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3.exe (Larian Studios Games Ltd. -> ) FirewallRules: [UDP Query User{6BFCD61C-1F23-4F45-96A5-2337597EBB0B}E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3.exe] => (Allow) E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3.exe (Larian Studios Games Ltd. -> ) FirewallRules: [{EABF9191-4BDA-4717-BC69-342D3EA30A06}] => (Allow) E:\SteamLibrary\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher) FirewallRules: [{2BD46D6D-7DBA-4C9B-8C3B-FF85C0428BD6}] => (Allow) E:\SteamLibrary\steamapps\common\Baldurs Gate 3\Launcher\LariLauncher.exe (Larian Studios Games Ltd. -> LariLauncher) FirewallRules: [TCP Query User{A40FCDC6-E870-4681-8B56-7352A7EF8424}E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> ) FirewallRules: [UDP Query User{5713E5EF-4D22-4580-95CD-7A75DE64C463}E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) E:\steamlibrary\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe (Larian Studios Games Ltd. -> ) FirewallRules: [{AC0DC229-EAA3-4532-80F9-82C4C1E2FFCB}] => (Allow) E:\Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) FirewallRules: [{40F713CA-1C29-4A9E-ACDC-757BE9BE589F}] => (Allow) E:\Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) FirewallRules: [{87FEADD3-2AF9-49E5-BAE9-8102E0909C4D}] => (Allow) E:\SteamLibrary\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> ) FirewallRules: [{C45CEDFA-53E7-416C-AAF1-3320E122E8D0}] => (Allow) E:\SteamLibrary\steamapps\common\Call of Duty HQ\bootstrapper.exe (Activision Publishing Inc -> ) FirewallRules: [{C44CBB56-9DC9-4288-8B84-8897193CC7EC}] => (Allow) E:\SteamLibrary\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{66FBEB7D-6F46-4B0A-9D79-EA9108B78579}] => (Allow) E:\SteamLibrary\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{57AC024A-2EE0-4811-876F-410A100B9596}] => (Allow) E:\Games\Ghost Recon Breakpoint\GRB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{236A62F9-11FA-4E33-9534-F36E7B9CE46A}] => (Allow) E:\Games\Ghost Recon Breakpoint\GRB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [TCP Query User{2386ED9F-9DE9-4297-A6A9-344A750E40EA}E:\games\sea of stars\seaofstars.exe] => (Allow) E:\games\sea of stars\seaofstars.exe () [Fichier non signé] FirewallRules: [UDP Query User{FEBE137B-491C-421A-8B03-93F3FCBFE717}E:\games\sea of stars\seaofstars.exe] => (Allow) E:\games\sea of stars\seaofstars.exe () [Fichier non signé] FirewallRules: [{82F2729F-B802-4052-94C5-F9597443D2D5}] => (Allow) E:\SteamLibrary\steamapps\common\Starfield\Starfield.exe (Bethesda Softworks LLC -> Bethesda Softworks) FirewallRules: [{B6CCEFC0-A3CD-48AA-9574-3302B7B76975}] => (Allow) E:\SteamLibrary\steamapps\common\Starfield\Starfield.exe (Bethesda Softworks LLC -> Bethesda Softworks) FirewallRules: [TCP Query User{4C49D627-481B-495F-9F92-186C3B3F8C3B}E:\games\starcitizen\live\bin64\starcitizen.exe] => (Allow) E:\games\starcitizen\live\bin64\starcitizen.exe (Cloud Imperium Games Corp.) [Fichier non signé] FirewallRules: [UDP Query User{DE23D3B5-45C3-4D47-9F63-2824943C24A6}E:\games\starcitizen\live\bin64\starcitizen.exe] => (Allow) E:\games\starcitizen\live\bin64\starcitizen.exe (Cloud Imperium Games Corp.) [Fichier non signé] FirewallRules: [TCP Query User{B381C639-F4B1-4A91-A275-F1F4B3F95EDA}E:\jeuxswitch\bobykityuzu\yuzuwindowsmsvcearlyaccess\yuzu.exe] => (Allow) E:\jeuxswitch\bobykityuzu\yuzuwindowsmsvcearlyaccess\yuzu.exe () [Fichier non signé] FirewallRules: [UDP Query User{39711E1A-E2B3-4277-B5ED-6B8201C235AB}E:\jeuxswitch\bobykityuzu\yuzuwindowsmsvcearlyaccess\yuzu.exe] => (Allow) E:\jeuxswitch\bobykityuzu\yuzuwindowsmsvcearlyaccess\yuzu.exe () [Fichier non signé] FirewallRules: [{4722FD69-CDF9-4FCD-BAB4-3C2A8994319A}] => (Allow) D:\SteamLibrary\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [Fichier non signé] FirewallRules: [{3F90A818-BCF9-4869-B6C1-35A34EB2DAE8}] => (Allow) D:\SteamLibrary\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe () [Fichier non signé] FirewallRules: [{10F9F368-CA21-442B-A7E2-47119917DD45}] => (Allow) D:\SteamLibrary\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe (WB Games, Inc.) [Fichier non signé] FirewallRules: [{3AB4AAC0-AD13-40FB-9622-5DB82F85CBF5}] => (Allow) D:\SteamLibrary\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11.exe (WB Games, Inc.) [Fichier non signé] FirewallRules: [{A1447596-B028-41FC-9B80-CB7A225B948E}] => (Allow) D:\SteamLibrary\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11_DX12.exe (WB Games, Inc.) [Fichier non signé] FirewallRules: [{D0B15506-037B-42A2-AF3A-94F7D42C7D8F}] => (Allow) D:\SteamLibrary\steamapps\common\Mortal Kombat 11\Binaries\Retail\MK11_DX12.exe (WB Games, Inc.) [Fichier non signé] FirewallRules: [{19651B5B-262C-478F-AC12-D8C162610AE0}] => (Allow) C:\Program Files (x86)\Moonlight Internet Hosting Tool\miss.exe (Cameron Gutman -> Moonlight Game Streaming Project) FirewallRules: [{499E1C94-6D0C-42FC-BC93-93EE7162DDFE}] => (Allow) C:\Program Files (x86)\Moonlight Internet Hosting Tool\mist.exe (Cameron Gutman -> Moonlight Game Streaming Project) FirewallRules: [{36C26766-4E01-4B70-ACC6-7EDB5FE327AF}] => (Allow) LPort=47984 FirewallRules: [{8D0C5F10-801E-410C-95D3-242656C74FDA}] => (Allow) LPort=47989 FirewallRules: [{ADDFBFCE-FA68-4EBA-8DFA-CD0E0133E674}] => (Allow) LPort=48010 FirewallRules: [{D63832BE-8E88-4C64-9058-104217D814BD}] => (Allow) LPort=47998 FirewallRules: [{C7F1C718-F0EA-4373-AA15-CAD58D38C560}] => (Allow) LPort=47999 FirewallRules: [{AE282994-AAD5-41C4-9776-67E4FF5919F7}] => (Allow) LPort=48000 FirewallRules: [{59DBAFBD-A4A5-4F20-BF75-21EC3449F8C6}] => (Allow) LPort=48010 FirewallRules: [{47480E46-F4D7-4889-AFE9-9BF71383BDC5}] => (Allow) LPort=5353 FirewallRules: [{11551079-10CD-4908-935E-16844782B79F}] => (Allow) C:\Program Files (x86)\Moonlight Internet Hosting Tool\GSv6Fwd.exe (Cameron Gutman -> Moonlight Game Streaming Project) FirewallRules: [{D836944D-D3AF-43F9-B447-A069930B296C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{A6C673AD-2C05-4FFC-99CB-1C842AD2F75D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{694B0326-8A25-4491-9A8E-DDC71E068871}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{C39BBBDF-FAFE-4282-B53C-D943110DCB3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{CFAA9F37-DFF9-4CB7-BC3E-8492CC24F899}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{85C54D61-3980-4E61-881B-CE1B87C9E79A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{C5691C1B-7C60-4D3D-BDDC-8952382BF29B}] => (Allow) E:\Games\The Crew Motorfest\TheCrewMotorfest.exe (UBISOFT ENTERTAINMENT INC. -> UbiSoft) FirewallRules: [{A841E77C-08C5-43E1-975A-3FAB43F485F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DeoVR Video Player\DeoVR.exe (INFOMEDIJI d.o.o. -> ) FirewallRules: [{96939AD5-0741-49F7-BD7A-3A2F6372FE38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DeoVR Video Player\DeoVR.exe (INFOMEDIJI d.o.o. -> ) FirewallRules: [{0F1F0934-C933-49DB-924C-770FE6D4B947}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MixedRealityVRDriver\bin\win64\Launch.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5155AE02-5868-46DE-B4C3-34B67FA0E34C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MixedRealityVRDriver\bin\win64\Launch.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A6D6D876-7A16-4A81-ACE3-25C8EFF563B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{6D16C99A-6CD6-46D5-A3A5-F7EB42BF3B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{343477F5-F6B0-465C-AF20-B099FDA47E34}C:\users\caste\appdata\local\fivem\fivem.exe] => (Allow) C:\users\caste\appdata\local\fivem\fivem.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [UDP Query User{EEC0015D-4217-49EE-AF60-9DCC69EDDFC0}C:\users\caste\appdata\local\fivem\fivem.exe] => (Allow) C:\users\caste\appdata\local\fivem\fivem.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [TCP Query User{65B280AA-00C3-4987-AAD9-18118283CF1C}E:\games\forza motorsport\forza motorsport\forza_steamworks_release_final.exe] => (Allow) E:\games\forza motorsport\forza motorsport\forza_steamworks_release_final.exe (Microsoft Corporation -> Microsoft Studios) FirewallRules: [UDP Query User{9CAFCCA6-45A9-4F1A-A2F0-98A5D2AAB4B6}E:\games\forza motorsport\forza motorsport\forza_steamworks_release_final.exe] => (Allow) E:\games\forza motorsport\forza motorsport\forza_steamworks_release_final.exe (Microsoft Corporation -> Microsoft Studios) FirewallRules: [TCP Query User{909BA23C-641E-46E4-A3C6-04935ED212AB}E:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) E:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Fichier non signé] FirewallRules: [UDP Query User{B1980098-0DB6-4F34-8385-1132F0EEEF58}E:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) E:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Fichier non signé] FirewallRules: [{F6E79261-C99F-4D6C-B69C-752103FA6856}] => (Allow) E:\SteamLibrary\steamapps\common\WayOfTheHunter\WayOfTheHunter.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [{25F2A733-633B-471A-AB23-CA246CF32C42}] => (Allow) E:\SteamLibrary\steamapps\common\WayOfTheHunter\WayOfTheHunter.exe (Epic Games, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{6F0D2B43-E6C8-45BB-A085-77F584FFF21D}E:\steamlibrary\steamapps\common\wayofthehunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\wayofthehunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe (THQ Nordic) [Fichier non signé] FirewallRules: [UDP Query User{52D201B1-D107-458D-B0BF-23D18432A17F}E:\steamlibrary\steamapps\common\wayofthehunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\wayofthehunter\wayofthehunter\binaries\win64\wayofthehunter-win64-shipping.exe (THQ Nordic) [Fichier non signé] FirewallRules: [TCP Query User{11EAAD29-4D7E-4A8D-BC0B-FAD8B8A77EBA}C:\users\caste\onedrive\bureau\windows\server-manager.exe] => (Allow) C:\users\caste\onedrive\bureau\windows\server-manager.exe () [Fichier non signé] FirewallRules: [UDP Query User{72F05395-91E5-4EBE-A4CE-DBD24EC151E7}C:\users\caste\onedrive\bureau\windows\server-manager.exe] => (Allow) C:\users\caste\onedrive\bureau\windows\server-manager.exe () [Fichier non signé] FirewallRules: [{207770A9-7C94-4FCA-8424-4F58DD06098C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{54662BB3-606F-4D0F-90AA-CDC1BCE4958C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{29ECB2DF-8076-44CA-A3B2-0321BCB8D72F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A48BBD3E-5907-40EE-80E1-DB1C17797E05}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{BF0D466A-443E-49E6-A62C-898E04EE2DD6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{30724CEA-1D77-443A-9D74-B205B4B97501}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{AF81D6B4-3C26-4122-8A93-B5FA938FBCDE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{3B3FD9C4-0BD4-4D59-B486-17DA7BCE03C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{1D4AAE64-9692-42DC-BF50-3828171C1565}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{8AB764E6-F5CD-4074-888B-20FAEEC9C32A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{5E4B7B79-3AE7-47DA-BC89-502457B52326}] => (Allow) C:\Program Files\reWASD\reWASDEngine.exe (SIA AVB Disc Soft -> Disc Soft FZE LLC) FirewallRules: [{846E3676-7F22-4C39-A756-F03451F126D5}] => (Allow) C:\Program Files\reWASD\reWASDEngine.exe (SIA AVB Disc Soft -> Disc Soft FZE LLC) FirewallRules: [{1E639EDC-5CAF-4822-937D-97256D9C9563}] => (Allow) C:\Program Files\reWASD\reWASD.exe (SIA AVB Disc Soft -> Disc Soft FZE LLC) FirewallRules: [{8E90AC85-3698-4AFC-920A-B4CE14BDFB80}] => (Allow) C:\Program Files\reWASD\reWASD.exe (SIA AVB Disc Soft -> Disc Soft FZE LLC) FirewallRules: [{600E8F17-F3A1-4D00-9F18-1A8C15B60B7E}] => (Allow) LPort=35474 FirewallRules: [{6D91A2EA-E4F8-4E0A-9DBF-8997F5189F05}] => (Allow) LPort=35475 FirewallRules: [{10B41BB0-24F8-4648-9C14-9FE2FCC0FC85}] => (Allow) LPort=35476 FirewallRules: [{C5B63FC3-4B9F-4608-93AA-FEB9543D5D2B}] => (Allow) LPort=36474 FirewallRules: [{EE31C78E-1755-49D0-A4D5-06F6432A1D7C}] => (Allow) C:\Program Files\Elgato\4KCaptureUtility\4KCaptureUtility.exe => Pas de fichier FirewallRules: [{A95305DE-1DEC-4623-9D1F-26FB2B372791}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9E7ADD64-D9E9-4AFF-B501-5E8A306396B1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{DA31002D-6288-4DEB-8997-AE765CC2954B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D0E0EAF7-7E64-4B72-BDC6-4A9AE4009696}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{FC8489CA-7239-4E19-886A-E0EBDA62DDAE}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{FEE5D6D7-FA8D-457C-9B45-416E00C79935}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.61\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B2A73F37-B6C5-4645-833A-AA896AC789D7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\119.0.6045.21\remoting_host.exe (Google LLC -> Google LLC) FirewallRules: [{8C15707B-5491-421E-8D4E-84D6567B5953}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Fichier non signé] FirewallRules: [{41F00612-40C9-413A-A0B9-86458BB5F772}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [Fichier non signé] FirewallRules: [{C2910BB1-C631-4214-B9B3-BF68EF26439D}] => (Allow) C:\Users\caste\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{B345FE7C-C454-42A9-BC4A-2C8A81B8E85F}] => (Allow) C:\Users\caste\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.) FirewallRules: [{622DCED5-CB27-483A-A95D-B917FBF376D5}] => (Allow) C:\Program Files\NordVPN\nordvpn-service.exe (nordvpn s.a. -> TEFINCOM S.A.) FirewallRules: [{F0B5B1DF-2218-4CE9-B1E1-8ED6F4519848}] => (Allow) C:\Program Files\NordVPN\nordvpn-service.exe (nordvpn s.a. -> TEFINCOM S.A.) FirewallRules: [{66A6D3B4-7E6A-4D34-9FDB-B6C02A2952C9}] => (Allow) LPort=32683 FirewallRules: [{44A7511F-700A-4060-813F-F5501C7B5A4E}] => (Allow) LPort=26822 ==================== Points de restauration ========================= 19-10-2023 20:03:28 Installed Elgato 4K Capture Utility 22-10-2023 20:34:25 Removed Elgato 4K Capture Utility 22-10-2023 20:34:55 Removed HidHide 25-10-2023 18:20:21 Installed HidHide ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Thomas.local already in use; will try Thomas-2.local instead Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Thomas.local. Addr 192.168.1.158 Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.158:5353 16 Thomas.local. AAAA 2001:0861:51C1:52F0:EBEE:6295:ADE9:1650 Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 Thomas.local. AAAA FE80:0000:0000:0000:C38D:C18C:F2B8:3D47 Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.158:5353 16 Thomas.local. AAAA 2001:0861:51C1:52F0:EBEE:6295:ADE9:1650 Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 4 Thomas.local. Addr 192.168.1.158 Error: (10/25/2023 06:24:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.158:5353 16 Thomas.local. AAAA 2001:0861:51C1:52F0:EBEE:6295:ADE9:1650 Error: (10/25/2023 06:20:53 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Erreurs système: ============= Error: (10/25/2023 06:20:35 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 06:20:35 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 06:20:35 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 06:20:35 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 06:16:14 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 02:39:51 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/25/2023 10:53:23 AM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/24/2023 01:32:57 PM) (Source: DCOM) (EventID: 10010) (User: THOMAS) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2023-10-24 20:44:22 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {CF4FDFEB-D869-44DB-8286-50D294D8923B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-10-22 22:55:29 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {55D5A5E7-2E64-4856-B8F7-39C8DD6FD078} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse complète Utilisateur : Thomas\caste Date: 2023-10-12 20:03:11 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/ScarletFlash.A&threatid=2147722029&enterprise=0 Nom : Trojan:Win32/ScarletFlash.A ID : 2147722029 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\ProgramData\presepuesto\BLVYL.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : Thomas\caste Nom du processus : C:\Users\caste\AppData\Local\Temp\cwgerujspd.exe Version de la veille de sécurité : AV: 1.399.487.0, AS: 1.399.487.0, NIS: 1.399.487.0 Version du moteur : AM: 1.1.23090.2007, NIS: 1.1.23090.2007 Date: 2023-10-12 20:02:44 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Nom : Trojan:Win32/Wacatac.H!ml ID : 2147814523 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\ProgramData\Afc\iiqyyq.iiu Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : Thomas\caste Nom du processus : C:\Windows\System32\rundll32.exe Version de la veille de sécurité : AV: 1.399.487.0, AS: 1.399.487.0, NIS: 1.399.487.0 Version du moteur : AM: 1.1.23090.2007, NIS: 1.1.23090.2007 Date: 2023-10-05 20:00:04 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {0853E12E-AEA0-475B-9A85-C9B04DA888E3} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0] Date: 2023-10-22 14:22:42 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.399.1119.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.23090.2007 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2023-09-13 16:51:15 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.397.883.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.23080.2005 Code d’erreur : 0x8024001e Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2023-08-09 18:35:04 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente. Veille de sécurité tentée : Actuelle Code d’erreur : 0x80501102 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Version de la veille de sécurité : 1.395.43.0;1.395.43.0 Version du moteur : 1.1.23070.1005 Date: 2023-07-14 14:35:21 Description: La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. Date: 2023-07-14 13:54:15 Description: La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. CodeIntegrity: =============== Date: 2023-10-25 19:46:43 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2023-10-25 19:36:39 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. 1.40 05/22/2023 Carte mère: Micro-Star International Co., Ltd. MEG Z790 ACE (MS-7D86) Processeur: 13th Gen Intel(R) Core(TM) i9-13900KF Pourcentage de mémoire utilisée: 20% Mémoire physique - RAM - totale: 32604.2 MB Mémoire physique - RAM - disponible: 25963.29 MB Mémoire virtuelle totale: 81820.2 MB Mémoire virtuelle disponible: 72408.37 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:953.13 GB) (Free:787.1 GB) (Model: XPG GAMMIX S70 BLADE) NTFS Drive d: (jeux2) (Fixed) (Total:1863 GB) (Free:1170.25 GB) (Model: CT2000MX500SSD1) NTFS Drive e: (Jeux) (Fixed) (Total:3726.01 GB) (Free:459.29 GB) (Model: CT4000P3SSD8) NTFS \\?\Volume{04bdc4d7-9b13-43d5-a2e1-650991d22ffc}\ () (Fixed) (Total:0 GB) (Free:0 GB) \\?\Volume{123ea520-c840-4d44-b3ec-f5363d1be4ef}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================