Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Exécuté par Yasou (07-11-2018 11:36:44)
Exécuté depuis C:\Users\ilyes\Desktop
Windows 10 Pro Version 1803 17134.345 (X64) (2018-05-18 18:07:59)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-796573951-621339227-138249331-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-796573951-621339227-138249331-503 - Limited - Disabled)
Invité (S-1-5-21-796573951-621339227-138249331-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-796573951-621339227-138249331-504 - Limited - Disabled)
Yasou (S-1-5-21-796573951-621339227-138249331-1001 - Administrator - Enabled) => C:\Users\ilyes

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-796573951-621339227-138249331-1001\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.0.7 - Mirillis)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Call of Duty Black Ops (HKLM-x32\...\Call of Duty Black Ops_is1) (Version: 1.0 - PLAZA)
Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version: - Blizzard Entertainment)
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version: - )
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - )
CORSAIR iCUE Software (HKLM-x32\...\{7538A2A3-EC6A-4D19-8343-F02159266822}) (Version: 3.8.91 - Corsair)
Cracked Steam Uninstall (HKLM-x32\...\Cracked Steam Uninstall) (Version: Stable build 2 - Random Alex)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0455 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-796573951-621339227-138249331-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden
Drakkar Valkyrie version 1.0 (HKLM-x32\...\{4C68C5CE-3BE7-495B-A8B5-755CB56E17A4}_is1) (Version: 1.0 - VALKYRIE)
Enregistrement utilisateur de Canon MG3500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3500 series) (Version: - ‭Canon Inc.)
Epic Games Launcher (HKLM-x32\...\{D55AA8F9-1DD5-4EFD-BBAA-7879A5C32ACC}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ-Builder (HKLM-x32\...\{024CB235-8120-45BF-95B4-F53B71807C24}) (Version: 18.05.01 - EZ-Robot Inc.) Hidden
EZ-Builder (HKLM-x32\...\EZ-Builder 18.05.01) (Version: 18.05.01 - EZ-Robot Inc.)
EZdok Camera Version 2 (HKLM-x32\...\EZdok Camera Version 2) (Version: - )
F.E.A.R. 3 (HKLM-x32\...\F.E.A.R. 3_is1) (Version: - )
FIFA 18 (HKLM-x32\...\{213CC10A-B8CB-4EBA-B277-6B08B7C22A65}) (Version: 1.0.57.57320 - Electronic Arts)
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.45233 - Electronic Arts)
FS2Crew: PMDG 737 NGX Reboot Edition (HKLM-x32\...\FS2Crew: PMDG 737 NGX Reboot Edition) (Version: - )
GIGABYTE FORCE Driver (HKLM-x32\...\GMouse) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 6.1.0.3 (HKLM-x32\...\{4D5D4345-00D4-4AC5-A548-0ED7491A3EA9}) (Version: 6.1.0.3 - The Document Foundation)
Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-796573951-621339227-138249331-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden
Molotov (HKU\S-1-5-21-796573951-621339227-138249331-1001\...\Molotov) (Version: 2.2.2 - Molotov)
MorphVOX Pro (HKLM-x32\...\{690937C2-57DA-43FC-86F7-6DFDDF43F795}) (Version: 4.4.75.34781 - Screaming Bee) Hidden
MorphVOX Pro (HKLM-x32\...\{a112eae5-60ef-426d-969d-06cefe898998}) (Version: 4.4.75.34781 - Screaming Bee)
Mozilla Firefox 63.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 63.0.1 (x64 fr)) (Version: 63.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - )
Navigraph Charts Desktop 6.0.20.0227 (HKLM-x32\...\{A2CFEB97-9771-4B47-9BDF-EC91D5351652}}_is1) (Version: 6.0.20.0227 - Navigraph)
Navigraph FMS Data Manager 1.7.3.1201 (HKLM-x32\...\{7E4D5716-374A-4DB6-90CF-D2AEB67362CE}_is1) (Version: 1.7.3.1201 - Navigraph)
Navigraph Simlink 1.0.19.1219 (HKLM-x32\...\{E5431A0D-8735-4E89-9E41-D820334B2909}}_is1) (Version: 1.0.19.1219 - Navigraph)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Pilote graphique 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.30.15625 - Electronic Arts, Inc.)
Panneau de configuration NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden
PMDG 737 8900 NGX Base Package FSX (HKLM-x32\...\{20708FD5-E94D-4097-A21E-E28564CDBC06}) (Version: 1.20.8885 - PMDG Simulations, LLC.)
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Skype version 8.28 (HKLM-x32\...\Skype_is1) (Version: 8.28 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.9.8 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.9.8 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
theHunter Call of the Wild (HKLM-x32\...\theHunter Call of the Wild_is1) (Version: - )
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.6 - Tunngle.net GmbH)
Twitch (HKU\S-1-5-21-796573951-621339227-138249331-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
Uplay (HKLM-x32\...\Uplay) (Version: 67.0 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
Wondershare Filmora(Build 8.5.5) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (Disc Soft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\ilyes\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {015AAB8B-B97D-4221-B1F1-8BFE5AE2D0BC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation)
Task: {020D6815-0552-4963-B66A-BFEBA9568019} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {02C12C10-3A6F-4B14-810C-B4F52D5E2514} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation)
Task: {0A695E7C-0C03-4F3F-A457-7B93DC5F9E03} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-10-29] (AVG Technologies CZ, s.r.o.)
Task: {125F75C8-1D5E-4B32-8AED-9F7987CC7B8E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {1CA52A85-C1CB-4CFE-980D-5C44A9D281BB} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {244A1AEB-CD32-4C79-AE1B-1A089B1714A8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-09-26] (Google Inc.)
Task: {27D8D8D6-D9A8-4DB7-99A7-C3083E1D3FF3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation)
Task: {4C69E72A-A293-4212-B725-91B5869DC764} - System32\Tasks\update-S-1-5-21-796573951-621339227-138249331-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {4F0CA116-86CA-4194-9509-AD42E47F3B2E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-09-26] (Google Inc.)
Task: {4FB05A38-FB6E-4FAB-93E1-AC30840ACC9C} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-GNRHOQC-Yasou => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {56BD8FD9-77F9-4B96-91CA-E9F94BCAC7EB} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {5EE8737E-AFC1-4A0A-AC9F-BC6EEE9235C6} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {68108F77-B4F8-416C-9C17-56BC94058A23} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
Task: {6AD75761-918A-4E17-B299-B7B95489B1FB} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {743F36B8-CE06-455B-A580-558BB7FD1B9D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-29] (AVAST Software)
Task: {87A28849-7311-40D6-90AC-544FCE6BD275} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation)
Task: {8F849CB8-2D78-4747-8FA2-1D63F6793989} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {95E4638D-435C-4388-A52C-F40854134A99} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {A770EB85-EB20-41F4-AED0-BAC00A34D824} - System32\Tasks\Action! => C:\Program Files (x86)\Mirillis\Action!\Action.vbs
Task: {C3A5D866-1670-4FC6-B122-A44FFE37B77A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C899A6D2-E040-46F6-976C-D4056F2960CC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation)
Task: {DADE6054-AAE9-4822-9AEC-4C21FC95D7CB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation)
Task: {F1B57A9F-04FD-43DD-AC04-3B29CAE04682} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation)
Task: {F2AA18D3-EB75-4F6E-A561-D08BB6544017} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {F744E0B0-0595-4341-8EB4-CBBDEE6044FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {FADA545E-A5F1-4592-ACBD-0B52885B0718} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\update-S-1-5-21-796573951-621339227-138249331-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


ShortcutWithArgument: C:\Users\ilyes\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) ==============

2018-07-31 09:36 - 2013-05-14 17:50 - 000140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2018-05-24 17:08 - 2018-10-10 21:04 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-11-06 20:04 - 2018-10-18 08:44 - 002695360 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-11-06 20:04 - 2018-10-18 08:44 - 002821952 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-10-10 14:13 - 2018-09-20 04:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-04 07:03 - 2018-10-04 07:03 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 18:28 - 2018-10-23 18:28 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 18:28 - 2018-10-23 18:28 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-10-23 18:28 - 2018-10-23 18:28 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-23 18:28 - 2018-10-23 18:28 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-23 18:28 - 2018-10-23 18:28 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-05-17 12:09 - 2018-05-17 12:10 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-23 18:28 - 2018-10-23 18:28 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-05-24 17:08 - 2018-10-10 21:03 - 101252136 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-05-24 17:08 - 2018-10-10 21:03 - 004619816 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-05-24 17:08 - 2018-10-10 21:03 - 000108584 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2018-10-30 14:30 - 2018-10-30 14:30 - 003859456 _____ () C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe
2018-05-17 11:48 - 2018-10-10 21:04 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-10-04 12:58 - 2018-10-04 12:58 - 000197120 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll
2018-10-04 12:55 - 2018-10-04 12:55 - 000044544 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\MacroRecording.dll
2018-10-04 12:55 - 2018-10-04 12:55 - 000097280 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\zlib.dll
2018-01-16 09:05 - 2018-01-16 09:05 - 000013312 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libEGL.DLL
2018-01-16 09:05 - 2018-01-16 09:05 - 001950720 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libGLESv2.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\WINDOWS\Temp:$DATA [16]
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [488]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-09-29 14:46 - 2018-11-06 20:08 - 000001363 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 176.31.241.10
127.0.0.1 54.148.249.18
127.0.0.1 54.68.188.84
127.0.0.1 54.221.244.28
127.0.0.1 40.77.226.250
127.0.0.1 54.187.37.182
127.0.0.1 serwer2.paka-service.com
127.0.0.1 thislineskipsanyemptylines
127.0.0.1 mirillis.com
127.0.0.1 ns386119.ovh.net
127.0.0.1 mirillis.pl
127.0.0.1 mirillis.eu
127.0.0.1 www.mirillis.com
127.0.0.1 updates.mirillis.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-796573951-621339227-138249331-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ilyes\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Navigraph FMS Data Manager"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "Speech Recognition"
HKU\S-1-5-21-796573951-621339227-138249331-1001\...\StartupApproved\Run: => "EADM"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{C51D4C27-B301-4C4C-8CF3-C94971EAF126}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{19CD8516-DD84-4FE7-974C-45F7E614D9A0}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{04EEDF8B-B90D-4D2B-9EA5-F169D1BE2701}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0167C169-31EB-40FC-82E9-F51675A78224}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2D7F4872-AA4F-4970-8AA3-F97D4C9BCBC3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B658F632-F74A-4BD4-8F20-7C2A72C5D26F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{73862C30-386A-413A-AD62-A882B7D32E79}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{AB55FABD-DC38-4481-9221-94DE2DDD14F2}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{BAB254F4-CB41-4EFA-B461-D63FB7B28044}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{5E4C6577-0F07-42A1-9BBB-37149218EB4D}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{5D3003EF-C59D-49C1-8C18-7BBFDC865629}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{E2C6EA20-4404-4120-A193-47F4D30F8F26}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{0C7617C6-9D81-48F9-8F4A-1A4CC0175CD8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{2C9BE077-4C21-4FC4-8D85-3B11FABAB315}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{F532FB55-DDAD-44BA-A732-C77AB5C02D8A}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
FirewallRules: [{48B670ED-740D-4A73-9EA7-CF62DA173A98}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
FirewallRules: [{9CEAB59F-0F4D-4B0F-86A1-D2B608B6E21B}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{B5996901-935E-4A33-A1D0-A75D867FECA4}] => (Allow) D:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{ECF213DE-C960-4DC2-BA9D-685B046F261C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{35635B3C-46BD-4E3D-84AA-089DE44143A4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [TCP Query User{C62B5272-BF69-4297-85B6-7FD47003BE8F}D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe
FirewallRules: [UDP Query User{3A9B9210-AE58-4E8E-9597-291DA525B2B6}D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win64\paladins.exe
FirewallRules: [{C1E11C4A-D718-48BE-9899-B6A60D7D6AD9}] => (Allow) D:\SteamLibrary\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe
FirewallRules: [{90DC7492-D1B4-44F5-8A4E-D22976E38861}] => (Allow) D:\SteamLibrary\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe
FirewallRules: [{BA73F3AB-D052-4FE3-A922-ACD96E3BB1DB}] => (Allow) D:\SteamLibrary\steamapps\common\FSX\fsx.exe
FirewallRules: [{42701BC0-AEBB-47E4-9DDA-8571604632A2}] => (Allow) D:\SteamLibrary\steamapps\common\FSX\fsx.exe
FirewallRules: [{019E28CD-5565-46CE-AF0B-31825EE87DBF}] => (Allow) LPort=445
FirewallRules: [{C0EB4FD1-AA2C-45A0-A4F8-98A23508F236}] => (Allow) LPort=19284
FirewallRules: [{0971C42A-CD05-4AA6-AED3-6DD01110825A}] => (Allow) LPort=19285
FirewallRules: [{3E79E215-DE0E-4A36-A273-DAF50C3AEB18}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{59A58475-947C-48DE-AB35-BFEBBE39E43E}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{B0432ACC-9EAB-44E1-9782-520146057C67}] => (Allow) C:\Program Files (x86)\Cracked Steam Nostalgia\Steam.exe
FirewallRules: [{D020B339-C04D-473A-AD86-4D8A31DA9366}] => (Allow) C:\Program Files (x86)\Cracked Steam Nostalgia\Steam.exe
FirewallRules: [{D124FC39-3CC5-4576-9F20-AED597601DFE}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{10339E77-3C41-426A-B083-D4154D769D47}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{FF75951F-548D-4B3C-A124-8DA5ADE8C03E}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [TCP Query User{83123E46-E1BD-4941-8B87-C5B5906B31C2}D:\hifi\as16_fsx\as16.exe] => (Allow) D:\hifi\as16_fsx\as16.exe
FirewallRules: [UDP Query User{C7C84986-093A-4D5E-96EE-D934D101839C}D:\hifi\as16_fsx\as16.exe] => (Allow) D:\hifi\as16_fsx\as16.exe
FirewallRules: [{2AEE5F4D-DC3B-4D68-B8F5-89B7E3285BB8}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{7392F3E1-EE33-4A5A-AEC9-BBBAD8F199FF}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [TCP Query User{857A4A64-7BAB-4197-99D1-066B91077C87}D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{1BE8B9ED-A91A-4668-9D3F-BD3495E32CEC}D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [{0EFB72CA-8BED-4702-9D8B-647890E0D057}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe
FirewallRules: [{E6CE3FC0-054E-46D0-9116-3A937BCF6313}] => (Allow) C:\Users\ilyes\AppData\Local\Weliq.exe
FirewallRules: [{FCC312DF-DF87-4E94-AB8E-7A207CC1428C}] => (Allow) C:\Program Files (x86)\EuiaECiBbvxA.exe
FirewallRules: [{2ABEDBE3-C572-4045-B523-6872DED497DA}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{9479D6FE-EE94-48DB-B6C5-547CDEC2CE0F}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{2EA24109-1752-4094-A864-1EB70A3FA60D}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{8FF3AD93-AFE0-4D57-816D-10113BAF7CB4}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{AA19ED86-BB58-47C2-9398-852245908C6F}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{E70A7B60-5699-4F12-B152-1CF60ECED2CD}] => (Allow) D:\GTA V\GTA5.exe
FirewallRules: [{B87C94F4-9289-4CD9-83AF-BC00A110D81D}] => (Allow) D:\GTA V\GTA5.exe
FirewallRules: [TCP Query User{6970C702-6268-47D0-B2B2-B39008C1079D}C:\users\ilyes\desktop\fivem\fivem.exe] => (Allow) C:\users\ilyes\desktop\fivem\fivem.exe
FirewallRules: [UDP Query User{2D1A49B9-E2D3-4491-90B3-993C71D728F8}C:\users\ilyes\desktop\fivem\fivem.exe] => (Allow) C:\users\ilyes\desktop\fivem\fivem.exe
FirewallRules: [{52653E7D-605A-4EFD-9F18-ED79C67CCE2B}] => (Block) C:\users\ilyes\desktop\fivem\fivem.exe
FirewallRules: [{CBB0B659-8AA0-42DF-BAE4-E7F5931720C4}] => (Block) C:\users\ilyes\desktop\fivem\fivem.exe
FirewallRules: [{16B470D7-1F2A-4253-8DCE-4A387731E4FD}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{740365A2-B38A-4D48-BD48-5544E49E1F4F}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{87AED3B0-64F2-4B99-BD6F-CB0C0C18A92E}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{3B2756C3-5013-4045-97CA-4D6F6651E610}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{1038B27C-7D3F-421E-B190-64B92B5A974C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{36CF45CA-003E-4442-8879-CD15B260B2DE}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{F7E3F23B-3A5E-422B-986E-3C34BF81DD43}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{96D38BAA-A013-45A2-9137-640400A2C211}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{9D0C0E20-D45D-4BA8-902C-FD8163C0D372}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{A2BDC73C-F0DA-41C0-9178-307024A116A7}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{D8D659E8-926A-49B4-A2F3-016AED63CA43}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{328AEF96-E341-41AB-A7DD-3A751BEE2999}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{74B784F6-7CF4-43A9-96DD-941D3E45CE23}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{28D83DCC-C85F-4CCB-8DCD-409924414D2B}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{26633A5C-22E0-44DE-9DCF-5CB6D8AECCC1}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{D2E64EC9-1B58-403B-9ED0-025FE69D6104}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{2E9BDA5B-0123-459E-B2A2-0D6DE5C02625}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{24D01596-2568-4336-BD92-0EC4ED5E8B2F}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{D7212739-DE8C-4879-BCC1-6EF177C33C15}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{3F73FF5C-09A2-4081-989F-9F9DFC5ACB45}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{E9A78CBB-A944-44F2-80F9-5EE2AF91F2D8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{9BE980D9-0721-4C8F-ADA2-773893C8A0F9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{7FD8FDB7-9225-4FE6-9C59-68845578DC2F}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{854128C6-BA89-477A-9CC5-FE39C21B9989}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{3E0AEDC0-E637-4464-93F1-DEE62DAA8DC8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{821B5241-0F13-4076-9476-FC189930060F}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{7D107F09-EF55-4AFF-9F22-C11AB7FD81C0}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{FCB9BF46-ACC4-4F1F-80D9-A5F72D56E253}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{96550E08-E697-4093-A38D-66BF74554390}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{5C27394F-2151-49A8-9527-F6B5EE4516A1}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{B821B4D2-24E3-434F-8D13-16C890D20753}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{A21F038C-F242-4EE1-9980-9718628CF577}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{34FE5700-33FE-4CF8-AA37-3B4014D178AF}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{06F2174C-A17A-45BB-AF71-9EA948F66C61}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{387AF441-21CE-4309-8C17-0A15FA043923}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{93EB2C57-F9A9-46A0-9084-0BD9AACB80C1}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{4569D23A-CCCA-4617-A600-F47F9FB3F1B5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{8C56EDF5-D762-4B12-9A9C-D5229894350C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{C6782898-4DFC-443B-992C-428C6115C450}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{F8A20066-FEA5-4A56-8556-D87D47D45676}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{EC3A8175-1F32-40AB-9029-AB9EA0482762}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{A7A126BE-D269-416C-9A56-30CCA9F6FF41}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{E79E3804-DA28-429B-BA54-DF890EBB0AB1}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{87E27683-CAA1-4899-86FC-F18B98D4B103}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{E1A54182-DA6F-4953-96B8-051CE5913444}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{867478B3-519F-4FB8-9C1D-617C02979B9C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{C0AF4280-4AB8-46A9-9C65-6EAAEB622962}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{642DB5E7-322A-4FA3-97AA-B803ACCDD021}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{C30B7A7C-AAD4-4493-8440-15890113352E}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{E026F932-0033-4A1A-9094-BFD902A6B123}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{732149E4-02ED-432B-95CC-BBAE227478E6}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{DBE22FBA-C2B9-49D0-9232-B57BF915F9FD}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{103F8732-E6F7-4139-A68A-5BC080730298}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{F7FECCE8-3DD3-42A2-93DE-20BE5DF8A2C3}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{E672B62F-E225-44D1-90B7-314CE81C76F1}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{F07E2024-CD0D-4B67-BA29-E32F238705B0}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{92240DE7-2FF1-42FF-990E-418E97054C0D}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
FirewallRules: [{2241679E-97D4-4119-BCDB-0FA2838541FB}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
FirewallRules: [{C8F80B94-51D7-414D-9C2D-A1B32C8D3B5D}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{58F8E1CA-5EAE-48E7-B36E-895F3E050EDD}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{39E0361B-8625-4535-8C69-FB8ED79729A8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{379DA7DC-DD97-48BF-A714-B895F682393E}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{16D8490A-D31D-4841-B7C8-1EB7C3B51EF8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{7318C6B1-3970-4BEE-96BC-15813E492305}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{84282250-6463-4B21-938E-994036D04007}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{94C71D6F-45C7-4C91-8152-6D677100858D}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{3F3095FC-5175-4C84-8E5C-22C251E5AEED}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{63B824B7-4C34-47F6-B3AE-2A7937A99393}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{CCF4A636-F76E-48B4-B0F9-FFBB8A4D23BF}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{48D05A48-1384-4377-B5A9-E685DBD31EA2}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{0FE2C4CD-5E89-4BB5-987A-760AD5881AB5}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{642FF19A-1F81-444E-A2A0-A2BE0A9021A3}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{C8C811B1-7F96-4103-8110-7510CD5D1CDC}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{531012C6-1130-49CF-B916-C26D2EBC9E52}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{395ACCE7-DA65-483D-973C-909121A0231A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{A164CC5F-D53C-4EFE-8377-AC12C869C563}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{EFE8686C-C675-4020-92BC-E8F908F30375}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{734B0FD9-EAD4-4A9D-8A06-64B6864DD42D}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{201E2FFA-7D4B-4E2F-A9A8-D414C41A86C1}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{5C7283CE-6C98-4B8C-B188-8022852532F9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{1566FD2C-9676-495F-9B49-83BC59F32C76}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{04CC45F6-FC16-4E3F-BC83-9A180431B4E7}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{E256FA92-518A-441A-821A-91ACAAFBD1A9}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{B051401F-77FA-48E2-8DF1-4D87F0F14C39}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{5D4AEE19-3A83-483F-BB6B-34AE262E7855}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{E85BB0A5-796E-4632-AB3C-65540D9B8141}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{B0B9F4AA-EDF8-40F9-B5EA-4585E7E3391A}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{52022A65-409B-49C6-8B07-AE22A0B38AE4}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{CCE30F96-6C7B-4BC7-B091-7FA53895674F}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{1B2538D3-D5F7-4ECE-88E1-56E1E99051A7}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{D6A56730-2A61-4871-ACF0-F345EC697942}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{C7C221E1-0BE4-44B0-B715-03F77D56273C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{11319280-7540-403F-88DD-432969F225DD}] => (Allow) C:\WINDOWS\SysWOW64\rundll32.exe
FirewallRules: [{5C9757B0-621D-4ADA-8834-4841CC1F2315}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{9AE956E7-ADBB-4650-8AAF-B2C9F5093339}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
FirewallRules: [{7CEF8C64-81B0-4F6F-84DE-D9DECC88AC56}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{7B938ABF-3500-49AF-B250-CEB2CFF65606}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{D0F30C7D-9022-4A54-B949-B718A78B0CF6}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{35B19021-915E-4EAF-81D2-88EDD0929B61}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{1FA92525-095C-4599-9E9C-DB73654E4D41}] => (Allow) C:\Users\ilyes\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA8616EB-C368-4524-8A8C-EF64F9A4D955}] => (Allow) C:\Users\ilyes\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{52C9BD89-28F5-4A41-93B1-1AFE1C95E69E}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{5E4AC036-4724-457C-9351-45F2DD330567}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{1127828E-C838-43A7-B86E-168EC997657E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{D1614FDB-152A-430A-A35E-74E2CA0C7BAF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [TCP Query User{079080BE-2E2E-4F78-8E38-BAFDB3C5CF46}C:\users\ilyes\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe] => (Allow) C:\users\ilyes\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe
FirewallRules: [UDP Query User{E4300D13-043A-419A-A787-F16C59A521D0}C:\users\ilyes\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe] => (Allow) C:\users\ilyes\desktop\bigfoot.v2.0\findingbigfootcontent\bigfootp19\binaries\win64\bigfootp19-win64-shipping.exe
FirewallRules: [{D72C03E5-8D09-42BE-9F78-6839A683FD9E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{27483B95-EB67-4713-BA3D-13A5CE3C1CD8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{3283320D-3D22-4CE7-9531-C4E25AAFCB0A}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{1624D2B8-4E24-428E-A04C-C2DD47B31EA8}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{326EA898-438F-46D8-A383-F3CDE33F350E}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{ECE78C1B-AD64-4158-A271-713DCD5A62AF}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{9BC68D5E-BB71-488C-9E3F-F011B74EFCE6}D:\games\call of duty black ops\adna.exe] => (Allow) D:\games\call of duty black ops\adna.exe
FirewallRules: [UDP Query User{53985AF7-23F5-4B0A-8164-D7DCB38F6623}D:\games\call of duty black ops\adna.exe] => (Allow) D:\games\call of duty black ops\adna.exe
FirewallRules: [TCP Query User{16A0BEE5-65C1-4B16-8B2D-97B1A1B6F8AF}D:\games\call of duty black ops\blackopsmp.exe] => (Allow) D:\games\call of duty black ops\blackopsmp.exe
FirewallRules: [UDP Query User{F845F4AE-8838-4280-A708-1B1BDC7549E3}D:\games\call of duty black ops\blackopsmp.exe] => (Allow) D:\games\call of duty black ops\blackopsmp.exe
FirewallRules: [TCP Query User{5D4880DD-B871-446C-B479-005318C8B6B5}D:\games\call of duty black ops\blackops.exe] => (Allow) D:\games\call of duty black ops\blackops.exe
FirewallRules: [UDP Query User{E8994871-74DB-4FAD-9740-AE984A570702}D:\games\call of duty black ops\blackops.exe] => (Allow) D:\games\call of duty black ops\blackops.exe
FirewallRules: [TCP Query User{47E557B2-FEF1-48B3-9387-9A719128F911}D:\call of duty black ops\adna.exe] => (Allow) D:\call of duty black ops\adna.exe
FirewallRules: [UDP Query User{695824DD-144E-49FA-B946-7D311EFF515D}D:\call of duty black ops\adna.exe] => (Allow) D:\call of duty black ops\adna.exe
FirewallRules: [{25E2F4A4-5AA4-48C6-97B5-F476C3DD180B}] => (Block) D:\call of duty black ops\adna.exe
FirewallRules: [{C2D58EBD-BB35-446D-892E-76FDD1575453}] => (Block) D:\call of duty black ops\adna.exe
FirewallRules: [TCP Query User{F86A975C-FE14-4E60-B1BE-6D22D078E93E}D:\call of duty black ops\blackopsmp.exe] => (Allow) D:\call of duty black ops\blackopsmp.exe
FirewallRules: [UDP Query User{42232CF0-EECF-4DD2-BAD7-8261D2B93774}D:\call of duty black ops\blackopsmp.exe] => (Allow) D:\call of duty black ops\blackopsmp.exe
FirewallRules: [{8058EBB7-1C5E-446D-9C7A-6C6AAC131C66}] => (Block) D:\call of duty black ops\blackopsmp.exe
FirewallRules: [{CE0FF634-3299-4537-8F40-197BF90E56A0}] => (Block) D:\call of duty black ops\blackopsmp.exe
FirewallRules: [TCP Query User{08F96C20-55BC-452F-80DB-44E63B35AF00}D:\call of duty black ops\blackops.exe] => (Allow) D:\call of duty black ops\blackops.exe
FirewallRules: [UDP Query User{CB534FBD-8971-422B-841C-133A8DEE4E8A}D:\call of duty black ops\blackops.exe] => (Allow) D:\call of duty black ops\blackops.exe
FirewallRules: [{57213D10-7DC2-44A7-BD0A-AC3472BA95C2}] => (Block) D:\call of duty black ops\blackops.exe
FirewallRules: [{408B740B-D32B-4351-A113-75EF40E4CFBB}] => (Block) D:\call of duty black ops\blackops.exe
FirewallRules: [{C14D5343-63E6-46D7-8E27-7F726B893E12}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{09AD91CA-E9AC-451C-BA1E-81F4A66CE198}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{5CE27C32-C8A6-45AC-AFD3-03188F6CCDE9}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{4F489174-DA03-4812-AE1B-E5D7CA63FF23}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{80A248A6-DCF8-428F-82F4-99DDFB96436B}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3274ADF5-4A31-4F01-B0A9-5C666A823D56}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{9D47E74C-52F8-4986-A24C-BC01C9A40E1F}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{A9633059-37AD-411F-9394-03B023D1AC36}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{083DDDBE-4ADA-4C5A-A6B3-C7045480C10A}D:\games\call of duty - black ops\blackops.exe] => (Block) D:\games\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{A0856F6B-09F3-4C98-9E21-83A7FB118DE2}D:\games\call of duty - black ops\blackops.exe] => (Block) D:\games\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{92D3316E-2308-4F20-9D34-6B9FF0E13B47}D:\games\call of duty - black ops\blackopsmp.exe] => (Allow) D:\games\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{49564214-1B38-4466-9632-411F3EB51679}D:\games\call of duty - black ops\blackopsmp.exe] => (Allow) D:\games\call of duty - black ops\blackopsmp.exe
FirewallRules: [TCP Query User{F5ECAD4B-1710-4F7D-871E-A69F7D3903D5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{D14E3BD1-EBE3-4808-8F99-D3F6632DFB01}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{0EB4C63A-2793-446D-A9F0-94B660659859}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{5EAA029C-7D6F-49C1-BDE1-9B1F252A46CA}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{0982B98C-98C9-4A9A-950B-FC453E13C28A}D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{00ABDAD1-8E5B-4527-95AC-B44A1861DB70}D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [{D6860D34-3E37-4F87-B64D-C2E61CA69BD5}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe
FirewallRules: [{3ABABE92-F2A1-4DAD-948F-89735C09E5D8}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe
FirewallRules: [TCP Query User{5A592F5F-C426-427C-A871-1F0E6E8795BC}D:\call of duty black ops 4\blackops4.exe] => (Allow) D:\call of duty black ops 4\blackops4.exe
FirewallRules: [UDP Query User{8DE6F85F-6DA0-40C1-8C7C-9574C4137F20}D:\call of duty black ops 4\blackops4.exe] => (Allow) D:\call of duty black ops 4\blackops4.exe
FirewallRules: [{865AD41E-30A7-4687-8806-677F32098B7F}] => (Allow) D:\Jeux\FIFA 19\FIFASetup\fifaconfig.exe
FirewallRules: [{970DFF6F-5CD5-4AD3-9D50-462F7E5E820C}] => (Allow) D:\Jeux\FIFA 19\FIFASetup\fifaconfig.exe
FirewallRules: [{ED1D01CA-0D58-49BE-B8B6-8E13F38E2FD8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{0D4E93BC-0E53-4ABF-A509-6E53968F738E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{AD6B6A4B-705B-4A4B-9402-D34D8486B412}] => (Allow) D:\Jeux\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{C65F95D1-4E35-4D2D-B46C-E737AE6304C6}] => (Allow) D:\Jeux\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{29D6D983-F38E-4C5E-8353-104A4A616A1C}] => (Allow) D:\Jeux\FIFA 18\FIFASetup\fifaconfig.exe
FirewallRules: [{EA2206C9-61F4-4042-804B-A491367BC378}] => (Allow) D:\Jeux\FIFA 18\FIFASetup\fifaconfig.exe
FirewallRules: [TCP Query User{B147352F-9895-4B52-BF40-AA3D45985912}C:\users\ilyes\appdata\roaming\utorrent\updates\3.5.4_44632.exe] => (Allow) C:\users\ilyes\appdata\roaming\utorrent\updates\3.5.4_44632.exe
FirewallRules: [UDP Query User{6870792A-2F58-4138-AC60-F658AE68C908}C:\users\ilyes\appdata\roaming\utorrent\updates\3.5.4_44632.exe] => (Allow) C:\users\ilyes\appdata\roaming\utorrent\updates\3.5.4_44632.exe
FirewallRules: [TCP Query User{1BA71234-85E6-4F2E-9826-4D330500FFE4}D:\jeux\fifa 18\fifa18.exe] => (Allow) D:\jeux\fifa 18\fifa18.exe
FirewallRules: [UDP Query User{B7B27729-F482-4579-8672-0C8A680D874B}D:\jeux\fifa 18\fifa18.exe] => (Allow) D:\jeux\fifa 18\fifa18.exe
FirewallRules: [TCP Query User{696F5774-306D-4696-BC5A-7CBE1230804B}D:\gta v\gta5.exe] => (Allow) D:\gta v\gta5.exe
FirewallRules: [UDP Query User{86E47256-33FE-4673-8AB1-25BB77096D65}D:\gta v\gta5.exe] => (Allow) D:\gta v\gta5.exe
FirewallRules: [{19BF9D77-7758-45C0-A0C4-2542FB2C4191}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{C6141884-19FF-4E09-8D19-1601EEF0A52B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{541811A8-6242-474B-9658-35F32639EE6F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{825C5C78-6162-404B-AA25-018C6183F548}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{0D187BF2-1372-45F6-8F15-C55FCA1F829E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{A892C74E-3392-426B-8B3A-28F9A5785A93}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{D63FD9A0-01CA-4354-A0D1-539FA6D3043D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6662AEAE-7A72-44A8-A244-5CE4EAC3C14F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{B4D4F62F-4092-41F1-AA1F-317045DAE319}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{2643A4B3-A5A9-4CAC-A8D1-D8D877C32A03}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{082B7378-B243-462F-95D9-014F776AE735}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{5BA05864-5074-4CBA-8F1B-96810A5617B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{FD269226-FD89-46D4-9ECF-E0D0B7F7DAEA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BA6907FA-DC5C-45D9-B8E4-39DD88B1A813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6C3CFCCD-07A4-4F2C-8370-5B1ABA8BA6F2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

06-11-2018 21:00:37 Programme d’installation pour les modules Windows

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (11/07/2018 11:01:17 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/07/2018 11:01:13 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=9

Error: (11/06/2018 07:53:04 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/06/2018 07:48:22 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/06/2018 07:48:18 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=8

Error: (11/05/2018 07:46:55 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/05/2018 01:58:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (11/05/2018 09:11:09 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable


Erreurs système:
=============
Error: (11/07/2018 11:01:22 AM) (Source: DCOM) (EventID: 10010) (User: YASOU)
Description: Le serveur {D63B10C5-BB46-4990-A94F-E40B9D520160} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/06/2018 11:55:40 AM) (Source: DCOM) (EventID: 10016) (User: YASOU)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{9E175B6D-F52A-11D8-B9A5-505054503030}
et l’APPID
{9E175B9C-F52A-11D8-B9A5-505054503030}
au SID YASOU\Yasou de l’utilisateur (S-1-5-21-796573951-621339227-138249331-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/06/2018 11:55:40 AM) (Source: DCOM) (EventID: 10016) (User: YASOU)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{9E175B6D-F52A-11D8-B9A5-505054503030}
et l’APPID
{9E175B9C-F52A-11D8-B9A5-505054503030}
au SID YASOU\Yasou de l’utilisateur (S-1-5-21-796573951-621339227-138249331-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/06/2018 08:15:03 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{0358B920-0AC7-461F-98F4-58E32CD89148}
et l’APPID
{3EB3C877-1F16-487C-9050-104DBCD66683}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/06/2018 08:15:02 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{0358B920-0AC7-461F-98F4-58E32CD89148}
et l’APPID
{3EB3C877-1F16-487C-9050-104DBCD66683}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/05/2018 07:47:11 PM) (Source: DCOM) (EventID: 10001) (User: YASOU)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy!App.AppXyvyv4mghdjas8j88defq0w1hc410kvzt.mca en tant que Non disponible/Non disponible. L’erreur
« 0 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca

Error: (11/05/2018 07:47:11 PM) (Source: DCOM) (EventID: 10001) (User: YASOU)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca en tant que Non disponible/Non disponible. L’erreur
« 0 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca

Error: (11/05/2018 07:47:11 PM) (Source: DCOM) (EventID: 10001) (User: YASOU)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca en tant que Non disponible/Non disponible. L’erreur
« 298 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca


Windows Defender:
===================================
Date: 2018-11-06 21:05:58.990
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:VBS/Jenxcus&threatid=2147683717&enterprise=0
Nom : Worm:VBS/Jenxcus
ID : 2147683717
Gravité : Grave
Catégorie : Ver
Chemin : file:_C:\Users\ilyes\AppData\Local\Temp\HD4MP4QPIH.vbs
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : YASOU\Yasou
Nom du processus : C:\Windows\SysWOW64\wscript.exe
Version de la signature : AV: 1.279.1282.0, AS: 1.279.1282.0, NIS: 1.279.1282.0
Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-06 20:03:02.197
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Mountsi.A!ml&threatid=2147726493&enterprise=0
Nom : Trojan:Script/Mountsi.A!ml
ID : 2147726493
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : amsi:_VBScript374d44bd94a52d9f
Origine de la détection : Inconnu
Type de détection : Concret
Source de détection : AMSI
Utilisateur : YASOU\Yasou
Nom du processus : C:\Windows\SysWOW64\wscript.exe
Version de la signature : AV: 1.279.1282.0, AS: 1.279.1282.0, NIS: 1.279.1282.0
Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-06 20:03:01.856
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:VBS/Jenxcus&threatid=2147683717&enterprise=0
Nom : Worm:VBS/Jenxcus
ID : 2147683717
Gravité : Grave
Catégorie : Ver
Chemin : file:_C:\Users\ilyes\AppData\Local\Temp\0H0YV5Q14A.vbs
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : YASOU\Yasou
Nom du processus : C:\Windows\SysWOW64\wscript.exe
Version de la signature : AV: 1.279.1282.0, AS: 1.279.1282.0, NIS: 1.279.1282.0
Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-06 19:59:19.996
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:VBS/Jenxcus&threatid=2147683717&enterprise=0
Nom : Worm:VBS/Jenxcus
ID : 2147683717
Gravité : Grave
Catégorie : Ver
Chemin : file:_C:\Users\ilyes\AppData\Local\Temp\35KAOPC6LF.vbs; process:_pid:11684,ProcessStart:131860043394953967
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : YASOU\Yasou
Nom du processus : C:\Windows\SysWOW64\wscript.exe
Version de la signature : AV: 1.279.1282.0, AS: 1.279.1282.0, NIS: 1.279.1282.0
Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-11-06 19:58:59.243
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Worm:VBS/Jenxcus&threatid=2147683717&enterprise=0
Nom : Worm:VBS/Jenxcus
ID : 2147683717
Gravité : Grave
Catégorie : Ver
Chemin : file:_C:\Users\ilyes\AppData\Local\Temp\35KAOPC6LF.vbs
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : YASOU\Yasou
Nom du processus : C:\Windows\SysWOW64\wscript.exe
Version de la signature : AV: 1.279.1282.0, AS: 1.279.1282.0, NIS: 1.279.1282.0
Version du moteur : AM: 1.1.15400.4, NIS: 1.1.15400.4

Date: 2018-10-19 15:23:27.381
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.277.1228.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15300.6
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.

Date: 2018-10-19 15:23:27.381
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.277.1228.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15300.6
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.

Date: 2018-10-18 18:55:54.922
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.277.1228.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15300.6
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.

Date: 2018-10-18 18:55:54.921
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.277.1228.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15300.6
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.

Date: 2018-10-18 14:50:32.256
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.277.1228.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.15300.6
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.

CodeIntegrity:
===================================

Date: 2018-11-07 11:14:47.792
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-01 18:12:00.051
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-11-01 18:12:00.018
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-11-01 18:11:59.928
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\NVIDIA Corporation\Ansel\Tools\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-29 00:31:21.511
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-29 00:31:21.165
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-29 00:31:10.774
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-29 00:31:10.768
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Pourcentage de mémoire utilisée: 24%
Mémoire physique - RAM - totale: 12215.99 MB
Mémoire physique - RAM - disponible: 9264.87 MB
Mémoire virtuelle totale: 15156.93 MB
Mémoire virtuelle disponible: 10616.45 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:232.42 GB) (Free:8.76 GB) NTFS
Drive d: () (Fixed) (Total:465.21 GB) (Free:96.78 GB) NTFS

\\?\Volume{db74bf02-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{db74bf02-0000-0000-0000-905374000000}\ () (Fixed) (Total:0.45 GB) (Free:0.08 GB) NTFS
\\?\Volume{434da7b5-0000-0000-0000-b01a3a000000}\ () (Fixed) (Total:0.47 GB) (Free:0.08 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DB74BF02)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=465 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 434DA7B5)
Partition 1: (Not Active) - (Size=232.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=478 MB) - (Type=27)

==================== Fin de Addition.txt ============================