Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 25-05-2023
Exécuté par Ramzi (25-05-2023 22:24:56)
Exécuté depuis C:\Users\Ramzi\Downloads
Microsoft Windows 10 Professionnel Version 22H2 19045.2965 (X64) (2020-11-11 15:28:33)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-2550859982-2044651290-1562170072-500 - Administrator - Disabled)
cathy (S-1-5-21-2550859982-2044651290-1562170072-1004 - Limited - Enabled) => C:\Users\cathy
DefaultAccount (S-1-5-21-2550859982-2044651290-1562170072-503 - Limited - Disabled)
filal (S-1-5-21-2550859982-2044651290-1562170072-1002 - Limited - Enabled) => C:\Users\filal
Invité (S-1-5-21-2550859982-2044651290-1562170072-501 - Limited - Disabled)
Ramzi (S-1-5-21-2550859982-2044651290-1562170072-1001 - Administrator - Enabled) => C:\Users\Ramzi
WDAGUtilityAccount (S-1-5-21-2550859982-2044651290-1562170072-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE)
Acronis True Image Home (HKLM-x32\...\{C2F1F96A-057E-5819-B52E-FEA1D1D2933B}) (Version: 13.0.5055 - Acronis)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.12 - Adobe Systems)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.1.298 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (32 Bit) (HKLM-x32\...\PHSP_19_1_2_32) (Version: 19.1.2 - Adobe Systems Incorporated)
Adobe Photoshop CC Fr x86 (HKLM-x32\...\{CA701CB8-72AF-46A6-959A-CFCED63ACDD4}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AOMEI Backupper Professional (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant 9.5 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI International Network Limited.)
Apple Mobile Device Support (HKLM\...\{CA8EDE78-7A08-4F27-9B31-D6161C095986}) (Version: 16.5.0.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Assistance pour l’iPod (HKLM\...\{E454C788-F484-4479-9F0F-B2C0EFB77A67}) (Version: 12.11.3.7 - Apple Inc.)
AVG AntiVirus Gratuit (HKLM\...\AVG Antivirus) (Version: 23.4.3282 - AVG Technologies)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.41.1.25731 - Avira Operations GmbH & Co. KG)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.11 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Creative Centrale (HKLM-x32\...\{4442AB48-DEC4-4B39-B067-1F75BF8017E7}) (Version: 1.16.02 - Creative Technology Ltd.) Hidden
Creative Centrale (HKLM-x32\...\Creative Centrale) (Version: 1.16.02 - Creative Technology Ltd.)
Creative Software Update (HKLM-x32\...\{86604C06-DA30-425E-AECE-47304FE81C45}) (Version: 1.03.01 - Creative Technology Ltd.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.7.2.5 - Western Digital Corporation)
Data Lifeguard Diagnostic version 1.37 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DJ ProMixer Free Home Edition version 2.0 (HKLM-x32\...\{4A76BCAE-68EF-4595-AC08-5F8AE76E82DE}_is1) (Version: 2.0 - DigitalMultiSoft)
Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team)
EaseUS Partition Master (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Easy Tune 6 B12.1102.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time)
Freemake Audio Converter version 1.1.8 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.8 - Ellora Assets Corporation)
FreeMi UPnP Media Server (HKLM\...\FreeMi UPnP Media Server) (Version: 2.0.10 - Stéphane Mitermite)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 113.0.5672.127 - Google LLC)
Guide de l'utilisateur Creative ZEN X-Fi (HKLM-x32\...\ZENX-FI) (Version: - Creative Technology Ltd.)
Hard Disk Low Level Format Tool 4.40 (HKLM-x32\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU)
Hard Disk Wipe Tool 2.35 build 1178 (HKLM-x32\...\Hard Disk Wipe Tool_is1) (Version: - HDDGURU)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
honestech VHS to DVD 4.0 SE (HKLM-x32\...\{BA84775E-C53D-41F4-A0C9-B9000D1BF95B}) (Version: 4.0 - honestech)
iExplorer (HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\2ee35ebaf226322a) (Version: 4.3.4.0 - Macroplant LLC)
ImagesMixer (HKLM-x32\...\ImagesMixer) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{BF46D11E-638D-4254-A7BD-E9B355C4ECEA}) (Version: 5.0.10.2850 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}) (Version: 1.24.388.1 - Intel Corporation) Hidden
Inviska MKV Extract version 11.0 (HKLM\...\{215C3EFC-2BE8-4A5A-9A1F-982C15E47CC9}_is1) (Version: 11.0 - Inviska Software)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{CAD76CAA-0DF1-45F3-9F86-C9419BD9E62B}) (Version: 12.12.8.2 - Apple Inc.)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Killer Instinct (HKLM-x32\...\Killer Instinct_is1) (Version: - )
LAV Filters 0.65 (HKLM-x32\...\lavfilters_is1) (Version: 0.65 - Hendrik Leppkes)
Logiciel QuickCam de Logitech (HKLM-x32\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Logitech for Business Driver (HKLM\...\Logitech B2B Driver) (Version: 2.41.892.0 - Logitech Inc.)
Logitech Print Service (HKLM-x32\...\Logitech Print Service) (Version: - )
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
MakeMKV v1.17.3 (HKLM-x32\...\MakeMKV) (Version: v1.17.3 - GuinpinSoft inc)
Malwarebytes version 4.5.29.268 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.29.268 - Malwarebytes)
MediaInfo 21.03 (HKLM\...\MediaInfo) (Version: 21.03 - MediaArea.net)
Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Access MUI (French) 2016 (HKLM\...\{90160000-0015-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft DCF MUI (French) 2016 (HKLM\...\{90160000-0090-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 113.0.1774.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.50 - Microsoft Corporation)
Microsoft Excel MUI (French) 2016 (HKLM\...\{90160000-0016-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Groove MUI (French) 2016 (HKLM\...\{90160000-00BA-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (French) 2016 (HKLM\...\{90160000-0044-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (French) 2016 (HKLM\...\{90160000-00E1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (French) 2016 (HKLM\...\{90160000-00E2-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Proofing (French) 2016 (HKLM\...\{90160000-002C-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - اللغة العربية (HKLM\...\{90160000-001F-0401-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (French) 2016 (HKLM\...\{90160000-00C1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2016 (HKLM\...\{90160000-006E-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.091.0430.0001 - Microsoft Corporation)
Microsoft OneNote MUI (French) 2016 (HKLM\...\{90160000-00A1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (French) 2016 (HKLM\...\{90160000-001A-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (French) 2016 (HKLM\...\{90160000-0018-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (French) 2016 (HKLM\...\{90160000-0019-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Skype for Business MUI (French) 2016 (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.25.28508 (HKLM\...\{7D0B74C2-C3F8-4AF1-940F-CD79AB4B2DCE}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.25.28508 (HKLM\...\{EEA66967-97E2-4561-A999-5C22E3CDE428}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29325 (HKLM-x32\...\{B40FC85D-2B12-46E0-B950-E5B27E348793}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29325 (HKLM-x32\...\{EE2E15BB-54C8-4DB0-B1F3-026E3C166991}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation)
Microsoft Word MUI (French) 2016 (HKLM\...\{90160000-001B-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
MKVToolNix 72.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 72.0.0 - Moritz Bunkus)
MyHarmony (HKLM-x32\...\{2AD8F8A1-ECE5-4890-BCC2-B4396370A0D4}) (Version: 1.0.300 - Logitech)
Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG)
Nero 2016 Content Pack (HKLM-x32\...\{006F5CFF-ED35-41AF-9B2A-F52B0F545BF4}) (Version: 17.0.00200 - Nero AG)
Nero Abstract Themes (HKLM-x32\...\{150D88F1-40AF-4678-A39D-BCE2332F34E5}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Burning Core (HKLM-x32\...\{A163159C-B476-4501-B163-3F77809AC833}) (Version: 17.0.5000 - Nero AG) Hidden
Nero Burning Core (HKLM-x32\...\{FFBFF2F4-05D5-47F6-B47B-320B8029ED69}) (Version: 19.1.1010 - Nero AG) Hidden
Nero Burning ROM (HKLM-x32\...\{84F11EE9-58EA-431C-9300-3E5E354BA75B}) (Version: 19.1.1010 - Nero AG) Hidden
Nero Burning ROM (HKLM-x32\...\{CFB0F37D-22E7-4F37-8FAE-B319A58AC5B9}) (Version: 17.0.5000 - Nero AG) Hidden
Nero BurningROM 2018 (HKLM-x32\...\{1E053FAF-91B8-431B-91D3-ABC34C081A46}) (Version: 19.0.00800 - Nero AG)
Nero Cliparts (HKLM-x32\...\{29E2C1C6-D76A-41D3-980F-6E346AA9A6A8}) (Version: 17.0.10002 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.1005 - Nero AG) Hidden
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.7.3015 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5}) (Version: 19.1.1007 - Nero AG) Hidden
Nero Device Updates (HKLM-x32\...\{1C63279A-BF36-4852-9924-B1978D6585A6}) (Version: 17.0.1000 - Nero AG) Hidden
Nero Disc Menus 1 (HKLM-x32\...\{EEBF1676-AF87-4266-93D8-0C14A34C4217}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Disc Menus 2 (HKLM-x32\...\{FE81E6B5-652B-40E7-B3B2-7171C6F297DA}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Disc Menus 3 (HKLM-x32\...\{CE675FBD-75C3-45F1-B6AF-8D250861D536}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Disc Menus Basic (HKLM-x32\...\{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Disc to Device (HKLM-x32\...\{BD6F4D10-E29E-49E3-8497-1D454AF5EEF8}) (Version: 17.0.1007 - Nero AG) Hidden
Nero Effects Basic (HKLM-x32\...\{29F67D84-3A70-456E-806A-52301B02070B}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Family and Events Themes (HKLM-x32\...\{955BF340-C379-4375-AA2F-F3BCB2A498AB}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Football (Soccer) Themes (HKLM-x32\...\{7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Holiday and Sports Themes (HKLM-x32\...\{504D84ED-AE75-4F85-A68B-BB3D4CB3E169}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Image Samples (HKLM-x32\...\{C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 19.0.1003 - Nero AG)
Nero Kwik Themes Basic (HKLM-x32\...\{1B6F5E51-575E-4693-BCA2-7543570D076D}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{3111C98F-E38F-4670-A411-ABA66783FCA5}) (Version: 19.1.2003 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{EF0BA418-AF37-471E-9594-EAE5913F4681}) (Version: 17.0.57000 - Nero AG) Hidden
Nero MediaHome (HKLM-x32\...\{7E75EA5E-D9FA-45DB-9646-EEA5C5BF61D4}) (Version: 1.34.800 - Nero AG) Hidden
Nero PiP Effects 1 (HKLM-x32\...\{4D25D881-7183-462F-95C8-990CA1944E0B}) (Version: 17.0.10002 - Nero AG) Hidden
Nero PiP Effects Basic (HKLM-x32\...\{ACE49D50-19CD-44A6-B192-46F985283B26}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Platinum Effects 12 (HKLM-x32\...\{8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Retro Film Themes (HKLM-x32\...\{83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588}) (Version: 17.0.10002 - Nero AG) Hidden
Nero SharedVideoCodecs (HKLM-x32\...\{2432E589-6256-4513-B0BF-EFA8E325D5F0}) (Version: 1.0.19003 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 18.0.0015 - Nero AG) Hidden
Nero Video (HKLM-x32\...\{6861C1AD-9829-4DE4-8647-4785ECEA421A}) (Version: 17.0.12000 - Nero AG) Hidden
Nero Video Samples (HKLM-x32\...\{05C6B128-1B40-4495-9CB9-090B368BFA0A}) (Version: 17.0.10002 - Nero AG) Hidden
Nero Video Transitions 1 (HKLM-x32\...\{22856BC3-F893-4CBF-95F2-E1F63CD2B1AB}) (Version: 17.0.10002 - Nero AG) Hidden
NVIDIA nView 149.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 149.34 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA WMI 2.31.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.31.0 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8199 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Resident Evil 7 Biohazard (HKLM-x32\...\{1ECBF8F3-7079-44CA-AD32-B2AECBCF636F}_is1) (Version: - Capcom)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Soft4Boost Video Capture (HKLM-x32\...\Soft4Boost Video Capture_is1) (Version: Release - Sorentio Systems Ltd.)
Sony Mobile Update Engine (HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Update Engine) (Version: 2.19.4.201903221543 - Sony Mobile Communications Inc.)
Spotify (HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Spotify) (Version: 1.0.80.474.gef6b503e - Spotify AB)
Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subtitle Edit 3.6.10 (HKLM\...\SubtitleEdit_is1) (Version: 3.6.10.0 - Nikse)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Thrustmaster Force Feedback Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 4.FFD.2016 - Thrustmaster)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{567756E0-361F-4E88-AF74-8B0E4628E5BC}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
USB2.0 Audio Capture (HKLM\...\VID_1F4D&PID_0102&MI_00) (Version: 1.0.0.0 - Conexant Systems)
USB2.0 Video Capture (HKLM\...\VID_1F4D&PID_0102&MI_01) (Version: 1.0.0.0 - Conexant Systems)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VoiceOver Kit (HKLM\...\{703D47B8-2869-4A50-B988-BDE18772A474}) (Version: 1.43.128.3 - Apple Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinImage (HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\WinImage) (Version: - )
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinZip 24.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24127}) (Version: 24.0.14033 - Corel Corporation)
Wireless LAN - USB (HKLM-x32\...\{73C92216-0A1C-4AA4-A378-E55EFCE99954}) (Version: - )
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\Wondershare NativePush_is1) (Version: - )
Wondershare Recoverit(Build 7.2.4.7) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 7.2.4.7 - Wondershare Software Co.,Ltd.)
Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-03-25] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_145.3.1086.0_x64__v10z8vjag6ke6 [2023-05-23] (HP Inc.)
IPCam Monitor -> C:\Program Files\WindowsApps\6951GoldenPot.IPCamMonitor_2.2.1129.0_x64__0r2skntwd5byc [2020-10-27] (Golden Pot) [MS Ad]
Marmiton -> C:\Program Files\WindowsApps\aufeminin.com.Marmiton_1.1.0.49_neutral__mkpeb3b5nmday [2017-06-18] (aufeminin.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-11-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10126.517.0_x64__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation)
Télé 7 Programme TV -> C:\Program Files\WindowsApps\LAGARDEREACTIVEDIGITALSAS.Tl7ProgrammeTV_1.6.0.3_x64__ya1j1agkxsss6 [2017-06-18] (LAGARDERE ACTIVE DIGITAL)
Xbox 360 SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxCompanion_1.4.3.0_x64__8wekyb3d8bbwe [2017-06-18] (Microsoft Corporation) [MS Ad]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2550859982-2044651290-1562170072-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-2550859982-2044651290-1562170072-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
CustomCLSID: HKU\S-1-5-21-2550859982-2044651290-1562170072-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2550859982-2044651290-1562170072-1004_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [Fichier non signé]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-25] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [Fichier non signé]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.091.0430.0001\FileSyncShell64.dll [2023-05-22] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2018-07-21] (Microsoft Windows Hardware Compatibility Publisher -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2023-05-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-25] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> Pas de fichier
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-02-25] (Corel Corporation -> WinZip Computing)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [280864 2015-10-27] (Logitech Inc -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [264992 2015-10-27] (Logitech Inc -> Logitech Inc.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\Ramzi\Favorites\PSPVC PSP Video Converter.lnk -> hxxp://pspvc.nswardh.com
Shortcut: C:\Users\Ramzi\Favorites\PSPVC on Twitter.lnk -> hxxp://twitter.com/sward
==================== Modules chargés (Avec liste blanche) =============
2022-12-14 16:52 - 2016-07-21 11:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2022-12-14 16:52 - 2017-09-12 11:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2022-07-08 18:57 - 2021-09-26 09:31 - 000194048 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssh2.dll
2022-07-08 18:57 - 2022-05-12 12:43 - 000509064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\AliyunWrap.DLL
2022-07-08 18:57 - 2022-05-12 12:43 - 000141448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\EnsHelper.dll
2022-07-08 18:57 - 2022-05-12 12:43 - 000098440 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\register.dll
2022-07-08 18:57 - 2022-05-12 12:43 - 000461448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\wpnr.dll
2006-01-17 09:50 - 2006-01-17 09:50 - 000065536 _____ (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Software Update 3\CTIntrfu.dll
2007-08-10 12:43 - 2007-08-10 12:43 - 000385024 _____ (Creative Technology Ltd.) [Fichier non signé] C:\Program Files (x86)\Creative\Shared Files\MtpManU.dll
2018-03-18 22:56 - 2005-06-08 15:31 - 000030720 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LFBMP12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000328704 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LFCMP12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000078336 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LFFAX12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000141312 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LFTIF12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000259072 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTDIS12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000207872 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTEFX12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000131072 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTFIL12n.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000164864 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTIMG12N.DLL
2018-03-18 22:56 - 2005-06-08 15:31 - 000406016 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTKRN12n.dll
2018-03-18 22:56 - 2005-06-08 15:31 - 000856064 _____ (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LTWVC12n.dll
2018-03-18 22:27 - 2005-06-08 16:13 - 000090112 _____ (Logitech Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LLogTray.dll
2018-03-18 22:56 - 2005-06-08 15:38 - 000090112 _____ (Logitech Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\LQCUI2.dll
2018-03-18 22:56 - 2005-06-08 15:41 - 000466944 _____ (Logitech Inc.) [Fichier non signé] C:\Program Files (x86)\Logitech\Video\QCUI2.dll
2020-11-11 17:19 - 2020-11-11 17:19 - 000065536 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2023-05-22 16:22 - 2023-05-22 16:22 - 003864576 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\d4d18c29d2acce0d86fe26d1fadb70b5\Newtonsoft.Json.ni.dll
2022-07-08 18:57 - 2021-09-26 09:31 - 000428544 _____ (The curl library, hxxps://curl.se/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcurl.dll
2022-07-08 18:57 - 2021-09-26 09:31 - 002523136 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcrypto-1_1.dll
2022-07-08 18:57 - 2021-09-26 09:31 - 000531456 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssl-1_1.dll
2022-12-14 16:52 - 2017-09-12 11:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
2023-05-22 22:44 - 2023-03-11 19:15 - 008684032 _____ (wondershare) [Fichier non signé] C:\ProgramData\Wondershare\wsServices\WsidClient.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-04-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech Inc -> Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-04-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2015-06-29] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-07-10 13:04 - 2018-12-04 18:36 - 000004684 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 vortex.data.microsoft.com
127.0.0.1 vortex-win.data.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com
127.0.0.1 telecommand.telemetry.microsoft.com.nsatc.net
127.0.0.1 oca.telemetry.microsoft.com
127.0.0.1 oca.telemetry.microsoft.com.nsatc.net
127.0.0.1 sqm.telemetry.microsoft.com
127.0.0.1 sqm.telemetry.microsoft.com.nsatc.net
127.0.0.1 watson.telemetry.microsoft.com
127.0.0.1 watson.telemetry.microsoft.com.nsatc.net
127.0.0.1 redir.metaservices.microsoft.com
127.0.0.1 choice.microsoft.com
127.0.0.1 choice.microsoft.com.nsatc.net
127.0.0.1 df.telemetry.microsoft.com
127.0.0.1 reports.wes.df.telemetry.microsoft.com
127.0.0.1 wes.df.telemetry.microsoft.com
127.0.0.1 services.wes.df.telemetry.microsoft.com
127.0.0.1 sqm.df.telemetry.microsoft.com
127.0.0.1 telemetry.microsoft.com
127.0.0.1 watson.ppe.telemetry.microsoft.com
127.0.0.1 telemetry.appex.bing.net
127.0.0.1 telemetry.urs.microsoft.com
127.0.0.1 telemetry.appex.bing.net:443
127.0.0.1 settings-sandbox.data.microsoft.com
127.0.0.1 vortex-sandbox.data.microsoft.com
127.0.0.1 survey.watson.microsoft.com
127.0.0.1 watson.live.com
127.0.0.1 watson.microsoft.com
127.0.0.1 statsfe2.ws.microsoft.com
127.0.0.1 corpext.msitadfs.glbdns2.microsoft.com
Il y a 79 plus de lignes.
2016-02-22 17:02 - 2022-05-20 15:35 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
92.168.137.1 Filali.mshome.net # 2027 1 0 17 15 2 34 178
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\AOMEI Backupper;C:\Users\Ramzi\AppData\Local\Microsoft\WindowsApps;C:\adb;C:\Program Files\dotnet\
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ramzi\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\pexels-piccinng-3075993.jpg
HKU\S-1-5-21-2550859982-2044651290-1562170072-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\filal\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{0ad0a913-b84a-48dc-8833-8a68307e1bfe}.jpg
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Logitech Desktop Messenger.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinZip Préchargeur.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Bluetooth Connection Assistant"
HKLM\...\StartupApproved\Run: => "Service Scheduler2 Acronis"
HKLM\...\StartupApproved\Run: => "WinZip UN"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "LogitechVideoRepair"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\StartupFolder: => "Logitech . Enregistrement du produit.lnk"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\Run: => "DriverMax_RESTART"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2550859982-2044651290-1562170072-1004\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{8EA5D589-5BC0-4F15-97BB-25333F587D35}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{931189E0-2E1E-4059-B19D-48420FB7A3EE}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{41DC2680-B61A-43C2-80E7-8D5B66561512}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{20DC07A7-6697-4F0A-B6F6-27556D510863}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [UDP Query User{E7C43976-AE71-4D85-8012-7133E42EB24A}C:\users\ramzi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ramzi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{6290CF03-6495-410F-8659-A3C31274F8AF}C:\users\ramzi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ramzi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{B032D95B-0A79-487B-A7F5-62068EA2E2BA}C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{837CEF7F-AF9F-4D38-AC1F-F46A9ACDD68A}C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{CAAA8C90-E04D-411C-AF5E-5A4D14D5974F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F463D1E5-0067-42B5-891D-A11AAD115791}] => (Allow) LPort=5055
FirewallRules: [UDP Query User{093E55D0-D894-405B-BB82-B77A98581A41}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe (Stéphane Mitermite) [Fichier non signé]
FirewallRules: [TCP Query User{AFF33050-C107-4FAE-9F3C-D4F8936EEDF0}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe (Stéphane Mitermite) [Fichier non signé]
FirewallRules: [{58CA985E-23F2-4A87-8EEC-42EDE9B3CF47}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
FirewallRules: [{461CBDE4-C02D-42A7-8BE7-133DCCDA9AEC}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe (Stéphane Mitermite) [Fichier non signé]
FirewallRules: [{984DD89B-9C55-4A28-A8CE-FBDB2CCEA6A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [{37567B70-4DB2-448E-90FE-192CDDCCF3C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [{99511EDD-C880-44F3-A343-23BC8C9E218C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{0DC90FD2-AD93-4EBB-BD33-1631D6ACA6E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{705EC735-6BDF-4244-8520-71688A73B244}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9665F8B7-3C12-4B36-B554-CBB2CE33B7E4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{C0D97FA2-1B88-42DE-B46F-821A3F53AE81}C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{311A734D-168C-4C79-B4B6-103D3103EB02}C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\ramzi\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{E826D6C2-D827-4FBC-B235-D2CC205CFF78}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6D3EDD24-624F-4BA7-A921-D658A8A4A39D}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{8667E214-3A68-44E7-BE33-5A17963A39AF}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{CBCA09E3-5CA4-4E45-9ABA-164C1DD2265F}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [TCP Query User{D634F1B0-644B-430B-9678-EE4018A37251}C:\users\ramzi\downloads\sdi_r1771\sdi_x64_r1771.exe] => (Allow) C:\users\ramzi\downloads\sdi_r1771\sdi_x64_r1771.exe (www.SamLab.ws -> SDI) [Fichier non signé]
FirewallRules: [UDP Query User{D84CFCB3-9F42-433C-B121-229C4A1A4AA6}C:\users\ramzi\downloads\sdi_r1771\sdi_x64_r1771.exe] => (Allow) C:\users\ramzi\downloads\sdi_r1771\sdi_x64_r1771.exe (www.SamLab.ws -> SDI) [Fichier non signé]
FirewallRules: [TCP Query User{6B939E9E-F44B-4A8A-A16C-4A08A327B892}E:\games\killer instinct\killerinstinctx64_r.exe] => (Allow) E:\games\killer instinct\killerinstinctx64_r.exe => Pas de fichier
FirewallRules: [UDP Query User{4492ABA4-DAF3-43F5-9752-4C25400FD2E4}E:\games\killer instinct\killerinstinctx64_r.exe] => (Allow) E:\games\killer instinct\killerinstinctx64_r.exe => Pas de fichier
FirewallRules: [TCP Query User{440085E0-AA8E-4458-8C81-EDE4A55F6811}E:\games\killer instinct\killerinstinctx64_r.exe] => (Allow) E:\games\killer instinct\killerinstinctx64_r.exe => Pas de fichier
FirewallRules: [UDP Query User{884D1BA9-61F5-4466-8C62-106681FBA387}E:\games\killer instinct\killerinstinctx64_r.exe] => (Allow) E:\games\killer instinct\killerinstinctx64_r.exe => Pas de fichier
FirewallRules: [{CDC8EE9E-92E5-469E-83B3-CE145FA680B3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1016856A-0C2B-44A7-ABD2-CC6509D2654D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0C875B11-9388-4D3B-88D0-E3B061B744A6}C:\users\ramzi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ramzi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{62F6224D-CCE0-44CE-B893-51208198A3F7}C:\users\ramzi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ramzi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{E693CCEF-01D5-445E-9EDD-01A21993D806}C:\programdata\sony mobile\update engine\{55f6bff6-8edf-4d54-ad27-6ff781fd9187}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{55f6bff6-8edf-4d54-ad27-6ff781fd9187}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [UDP Query User{6FF7CA68-8638-45DA-B939-A182E39DBE56}C:\programdata\sony mobile\update engine\{55f6bff6-8edf-4d54-ad27-6ff781fd9187}\sony mobile update engine.exe] => (Allow) C:\programdata\sony mobile\update engine\{55f6bff6-8edf-4d54-ad27-6ff781fd9187}\sony mobile update engine.exe (Sony Mobile Communications AB -> )
FirewallRules: [{35B8C0DE-20D8-4AA9-9B73-ACEC4C899E90}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{B6865A4F-FE7E-4325-A1FB-13D794F38C1A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [TCP Query User{2DF04DAF-7435-4F17-B3FB-316DD2F823B5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{E4C54886-6326-4209-AFFE-3CE17616B6FC}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{1CEA18AC-F53A-4AD5-9E18-C86E82B17A72}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{91E7B60D-85A6-4FE0-AA8F-F8586371F771}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{CBAD4380-FA01-4DE5-AA13-40BFAA9F5EA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA6A49BD-FFCB-438F-A879-5C7003388F03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{304ADF27-431A-43B6-BDD1-165E3B8660AD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F19BE5DC-B027-4A38-9568-8268E0794A66}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DA1311B7-F0C5-4621-8DC3-6A7B18BF054B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B64CC51A-A245-4D7D-ADB3-7799CCCB668C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5CD2C164-AA9D-4AAA-B530-0E9D7AB15A35}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{08C33D86-BD84-41C7-B7FF-8B4B1ABF5347}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D76E3506-6731-4F95-BFF2-A39F6E722C49}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BFF34B43-1F7C-4405-9D0B-930020075CB8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18257033-27B3-471B-9C33-C101855BDFE3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{05668790-7329-40F5-ACA7-5896616E79B6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{048DE60D-9664-4F2A-B336-6853D2C3DD84}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD398F2A-EB4C-4E61-8DDF-483888B7A4F3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FCDB808-AF0D-4D0D-BF33-C693D9B407DD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C6E3229-B2F8-4E56-B86B-8DC6D8EDB8FD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5BA692B2-4F5A-4D64-9B88-B4D538B30450}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B35E0867-A441-48AE-80AE-B7FF4D7DAE6C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{428E9BE5-F7D1-4FB7-9F44-B18F6D84C492}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BC9950CA-56B4-44CC-909A-A89878751E33}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FEB672B0-F0BC-484B-9385-50AE597D0E21}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C668F60B-F87F-4533-87E4-8399C4C7A577}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DA117B80-3ECF-4E48-B6FC-785488919517}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B93F896B-C4D2-4F69-A220-2C56C9360C27}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E71FA9C-D2FF-4869-8C68-CD6F0291CE90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04B4280B-B3C3-4BE5-8954-2BAFED8836B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D73C79A-DA52-4AD6-914F-1B77C628C513}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1255F5C0-D187-40AC-B2E1-0DD5DDFE75E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{2515CE40-D741-45A7-BDBB-E2C845D32602}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{49FEA404-E166-45D0-9E85-DA4F92D9FB1B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{CCF296EA-102D-413B-8C8F-C6D3DED0ABEE}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{6E375FCF-9EF9-4792-93E9-DB919A0D8250}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{BB818F2F-F3E5-4F65-A6A5-12712A3A4922}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7FE82D08-FE03-4EFD-9C60-1860A7CCE6B6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{14BA14C0-CE07-44E4-A3D6-360796D257BF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2A28EFB7-BC64-45C2-9A35-BF7A55C279CC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8F1F58DC-F0EC-43BC-9897-D647F422355A}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3EE59D4A-AADC-4EDA-A049-24600E7D431E}] => (Allow) C:\Users\Ramzi\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [{497B62EA-41FD-4F22-AC3B-23503E931FD2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{53FE5A35-C565-4DD7-85EE-A38D0C0B0E9A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C50BEB85-FE5A-4905-B76E-265F8D327FBF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4166DC23-692C-40FF-BABF-1928D1814B7E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F5D8F52D-4B00-4D5F-AF77-3C4C5F124B26}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{57C1B792-5254-4F8E-A7F3-BB49C9A22573}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B44A0C44-EB0E-4BA9-9851-CA6A4467F28F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B0F4F2B-3005-4843-BDC6-444D52EF83A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CFE30CB8-8936-4F98-92DE-146F52E0ECEB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF9FC6A3-BD3C-455A-9DFC-FBCEE164453D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3DA3C6D9-418B-4FF5-B53B-B54B6EF7803A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4BB7FA26-48A1-484F-A74F-EE1EE3C63400}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4E797AB-858D-4B00-8B46-F4617FC7B25C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B91EB53-8B9F-4467-AD4E-745C9BDDDBDB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{21C12A13-F39C-48C4-A03A-81F5C55BB52C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B2D83CD-97B1-4758-AE45-12CEB9CD5E93}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3204.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C101FBC2-DF58-452B-9922-0AB54FA79AF9}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{645CE082-BA01-4222-B2FF-6EFB91038135}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04E7D8B3-852C-4E40-BA64-51E8CA976132}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A865F7D-5326-41F2-9A46-7B2F84BF8894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{69B35D76-8181-4494-B418-A02B2B91D462}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.97.3404.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{745C54EA-D139-4EE3-AD25-0A2DA7F9053D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7B28D1A6-30B6-4E2D-A1D1-A822A77C6583}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{92545A1B-2039-4946-8475-25E32FA213D0}] => (Allow) C:\Users\Ramzi\Downloads\iphone-unlocker.exe => Pas de fichier
FirewallRules: [{98F6BF1D-3164-47B6-A302-D7F8C94148A7}] => (Allow) C:\Users\Ramzi\Downloads\iphone-unlocker.exe => Pas de fichier
FirewallRules: [{3695C51C-681A-40D1-8720-E83CB81FEDFB}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe => Pas de fichier
FirewallRules: [{C7F20E7A-C8CA-4F5F-91FA-A107FF775DBB}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe => Pas de fichier
FirewallRules: [{1DDEC13A-F4BA-444A-B4AF-26B3F88D26C5}] => (Allow) LPort=80
==================== Points de restauration =========================
23-05-2023 19:24:44 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de la création de la classe COM du fournisseur de cliché instantané avec CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} [0x80070005, Accès refusé.
].
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Supprimer des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} et de nom SW_PROV. [0x80070005, Accès refusé.
]
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Supprimer des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de la création de la classe COM du fournisseur de cliché instantané avec CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} [0x80070005, Accès refusé.
].
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Obtenir les propriétés de cliché instantané
Supprimer des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} et de nom SW_PROV. [0x80070005, Accès refusé.
]
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Obtenir les propriétés de cliché instantané
Supprimer des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de la création de la classe COM du fournisseur de cliché instantané avec CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} [0x80070005, Accès refusé.
].
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Interroger des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} et de nom SW_PROV. [0x80070005, Accès refusé.
]
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Interroger des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de la création de la classe COM du fournisseur de cliché instantané avec CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} [0x80070005, Accès refusé.
].
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Interroger des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Error: (05/25/2023 10:21:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {e5b50e88-1fd9-4123-bdad-d0e79026fa55} et de nom SW_PROV. [0x80070005, Accès refusé.
]
Opération :
Obtenir une interface pouvant être appelée pour ce fournisseur
Afficher la liste des interfaces pour tous les fournisseurs prenant en charge ce contexte
Interroger des clichés instantanés
Contexte :
ID du fournisseur: {02029a6e-d74a-4ecd-ba26-c12be9323128}
ID de classe: {e5b50e88-1fd9-4123-bdad-d0e79026fa55}
Contexte de l’instantané: -1
Contexte de l’instantané: -1
Contexte d’exécution: Coordinator
Erreurs système:
=============
Error: (05/25/2023 03:59:26 PM) (Source: Ntfs) (EventID: 55) (User: AUTORITE NT)
Description: Une défaillance a été détectée dans la structure du système de fichiers sur le volume D:.
La nature exacte de la défaillance est inconnue. Les structures de système de fichiers doivent être analysées en ligne.
Error: (05/25/2023 10:57:55 AM) (Source: Ntfs) (EventID: 55) (User: AUTORITE NT)
Description: Une défaillance a été détectée dans la structure du système de fichiers sur le volume D:.
La nature exacte de la défaillance est inconnue. Les structures de système de fichiers doivent être analysées en ligne.
Error: (05/25/2023 10:58:20 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:22:18 le 24/05/2023 n’était pas prévu.
Error: (05/24/2023 04:02:17 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 15:56:36 le 24/05/2023 n’était pas prévu.
Error: (05/24/2023 03:57:31 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Appinfo.
Error: (05/24/2023 03:57:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Client de stratégie de groupe n’a pas pu démarrer en raison de l’erreur :
Accès refusé.
Error: (05/24/2023 03:57:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Client de stratégie de groupe n’a pas pu démarrer en raison de l’erreur :
Accès refusé.
Error: (05/24/2023 03:57:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Client de stratégie de groupe n’a pas pu démarrer en raison de l’erreur :
Accès refusé.
Windows Defender:
================
Date: 2023-05-25 14:24:38
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\WINDOWS\AutoKMS\AutoKMS.exe; file:_C:\WINDOWS\System32\Tasks\AutoKMS->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C91E4AB-2AC5-45AB-885C-92E83E5F9402}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS; taskscheduler:_C:\WINDOWS\System32\Tasks\AutoKMS
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : FILALI\Ramzi
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.389.2374.0, AS: 1.389.2374.0, NIS: 1.389.2374.0
Version du moteur : AM: 1.1.20300.3, NIS: 1.1.20300.3
Date: 2023-05-25 14:24:38
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDropper:JS/Nemucod!MSR&threatid=2147744492&enterprise=0
Nom : TrojanDropper:JS/Nemucod!MSR
ID : 2147744492
Gravité : Grave
Catégorie : Programme malveillant de diffusion de chevaux de Troie
Chemin : file:_C:\Users\Ramzi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc\31.2.9_0\js\background.js; file:_C:\Users\Ramzi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc\31.2.9_0\js\background.js
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : FILALI\Ramzi
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.389.2374.0, AS: 1.389.2374.0, NIS: 1.389.2374.0
Version du moteur : AM: 1.1.20300.3, NIS: 1.1.20300.3
CodeIntegrity:
===============
Date: 2023-05-25 22:21:50
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2023-05-25 22:21:05
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-25 22:20:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-25 22:20:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. FD4 03/03/2014
Carte mère: Gigabyte Technology Co., Ltd. H61M-S1
Processeur: Intel(R) Xeon(R) CPU E3-1225 V2 @ 3.20GHz
Pourcentage de mémoire utilisée: 67%
Mémoire physique - RAM - totale: 8150.47 MB
Mémoire physique - RAM - disponible: 2631.91 MB
Mémoire virtuelle totale: 9430.47 MB
Mémoire virtuelle disponible: 2748.59 MB
==================== Lecteurs ================================
Drive c: (Nouveau nom) (Fixed) (Total:222.28 GB) (Free:14.93 GB) (Model: Verbatim Vi500 S3 240GB SSD ATA Device) NTFS
Drive d: (FILM) (Fixed) (Total:298.09 GB) (Free:258.91 GB) (Model: WDC WD32 00BEKX-00B7WT0 SCSI Disk Device) NTFS
Drive g: (Nouveau nom) (Fixed) (Total:223.57 GB) (Free:215.8 GB) (Model: WDC WDS240G2G0A-00JH30 ATA Device) NTFS
\\?\Volume{43594fc1-0000-0000-007e-000000000000}\ (Réservé au système) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{43594fc1-0000-0000-0000-c0a737000000}\ () (Fixed) (Total:0.53 GB) (Free:0.07 GB) NTFS
\\?\Volume{43594fc1-0000-0000-0016-e8c937000000}\ () (Fixed) (Total:0.41 GB) (Free:0.01 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 43594FC1)
Partition 1: (Active) - (Size=345 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=538 MB) - (Type=27)
Partition 4: (Not Active) - (Size=424 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 12F2ECBB)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: D398E96E)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================