Addition.txt

Document joint : MAlhlk25nuC_Addition.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 09-01-2023
Exécuté par Emmanuel Michel (11-01-2023 03:07:46)
Exécuté depuis C:\Users\Mme OBAMA\OneDrive\Bureau
Microsoft Windows 10 Professionnel Version 21H2 19044.2364 (X64) (2021-06-20 01:52:32)
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-1656645954-2122459023-1707544868-500 - Administrator - Disabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-1656645954-2122459023-1707544868-503 - Limited - Disabled)
emma (S-1-5-21-1656645954-2122459023-1707544868-1003 - Limited - Enabled) => C:\Users\emma
Emmanuel Michel (S-1-5-21-1656645954-2122459023-1707544868-1001 - Administrator - Enabled) => C:\Users\Mme OBAMA
Invité (S-1-5-21-1656645954-2122459023-1707544868-501 - Administrator - Enabled)
WDAGUtilityAccount (S-1-5-21-1656645954-2122459023-1707544868-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
3uTools (HKLM-x32\...\3uTools) (Version: 2.56.012 - ShangHai ZhangZheng Network Technology Co., Ltd.)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 4.2 - Google LLC)
Apache NetBeans IDE 12.1 (HKLM\...\nbi-nb-all-12.1.0.0.200825) (Version: 12.1 - Apache NetBeans)
Apple Mobile Device Support (HKLM\...\{527DD209-8A66-482F-8779-C7B3BACCA8F1}) (Version: 15.0.0.16 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 - Microsoft Corporation)
BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.10.20.1002 - BlueStack Systems, Inc.)
BlueStacks X (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\BlueStacks X) (Version: 0.19.22.1001 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty: Black Ops 2 (HKLM-x32\...\Call of Duty: Black Ops 2_is1) (Version: - )
Call of Duty: Modern Warfare 3 (HKLM-x32\...\Call of Duty: Modern Warfare 3_is1) (Version: - )
CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Cisco Packet Tracer 7.2.2 32Bit (HKLM-x32\...\Cisco Packet Tracer 7.2.2 32Bit_is1) (Version: - Cisco Systems, Inc.)
CodeBlocks (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\CodeBlocks) (Version: 20.03 - The Code::Blocks Team)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\CopyTrans Suite) (Version: 4.200 - WindSolutions)
Dead Cells (HKLM-x32\...\Dead Cells_is1) (Version: - )
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc)
FileZilla Client 3.55.1 (HKLM-x32\...\FileZilla Client) (Version: 3.55.1 - Tim Kosse)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.1.6871 - Foxit Software Inc.)
Free Font Converter (HKLM-x32\...\{281C0470-7DBC-4ECF-A317-C64953E18466}}_is1) (Version: 1.0.0.0 - Media Freeware)
GanttProject (HKLM-x32\...\GanttProject) (Version: - )
Git (HKLM\...\Git_is1) (Version: 2.33.0.2 - The Git Development Community)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 108.0.5359.125 - Google LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{7563302D-BD6B-4153-BA7D-3E3432E7C22D}) (Version: 7.5.6 - Intel Corporation)
InVision Studio (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\invision-studio) (Version: 1.28.2 - InVisionApp)
iTunes (HKLM\...\{39FB9B1F-D7CD-41D2-800D-2D887F2F8B2B}) (Version: 12.12.2.2 - Apple Inc.)
Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
Java SE Development Kit 8 Update 211 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180211}) (Version: 8.0.2110.12 - Oracle Corporation)
Java(TM) SE Development Kit 17 (64-bit) (HKLM\...\{7111A3FA-CDA7-58DA-874C-94AAB58DCF67}) (Version: 17.0.0.0 - Oracle Corporation)
Kite (HKLM\...\Kite) (Version: - Manhattan Engineering Inc)
LDPlayer (HKLM-x32\...\LDPlayer4) (Version: 4.0.79 - XUANZHI INTERNATIONAL CO., LIMITED)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.24 - Lenovo) Hidden
LMMS 1.2.2 (HKLM-x32\...\LMMS) (Version: 1.2.2 - LMMS Developers)
Microsoft Access 2019 - en-us (HKLM\...\Access2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Access 2019 - fr-fr (HKLM\...\Access2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 108.0.1462.54 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 108.0.1462.54 - Microsoft Corporation)
Microsoft Excel 2019 - en-us (HKLM\...\Excel2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Excel 2019 - fr-fr (HKLM\...\Excel2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\OneDriveSetup.exe) (Version: 22.238.1114.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-1003\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-500\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation)
Microsoft Outlook 2019 - en-us (HKLM\...\OutLook2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Outlook 2019 - fr-fr (HKLM\...\OutLook2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft PowerPoint 2019 - en-us (HKLM\...\PowerPoint2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft PowerPoint 2019 - fr-fr (HKLM\...\PowerPoint2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Project - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Publisher 2019 - en-us (HKLM\...\Publisher2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Publisher 2019 - fr-fr (HKLM\...\Publisher2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Visio - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.74.2 - Microsoft Corporation)
Microsoft Word 2019 - en-us (HKLM\...\Word2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft Word 2019 - fr-fr (HKLM\...\Word2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.26.01.03 - Huawei Technologies Co.,Ltd)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x86 en-US) (HKLM-x32\...\Mozilla Firefox 108.0.1 (x86 en-US)) (Version: 108.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.2.1 - Mozilla)
Mozilla Thunderbird (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 91.7.0 (x86 fr)) (Version: 91.7.0 - Mozilla)
My Orange (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\d6263d1304532a13faf14e20d62def84) (Version: 1.0 - Google\Chrome)
Need for Speed Most Wanted version 1.5.0.0 (HKLM-x32\...\Need for Speed Most Wanted_is1) (Version: 1.5.0.0 - Electronic Arts Inc.)
Node.js (HKLM\...\{FC8E0A42-D5A9-4AF2-A961-4EAC6C9605A0}) (Version: 16.16.0 - Node.js Foundation)
NoxPlayer (HKLM-x32\...\Nox) (Version: 7.0.5.1 - Duodian Technology Co. Ltd.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15831.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Opera Stable 79.0.4143.22 (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\Opera 79.0.4143.22) (Version: 79.0.4143.22 - Opera Software)
Oracle VM VirtualBox 6.1.26 (HKLM\...\{FF58283C-7360-4B79-A23B-EAD2F6B4A25A}) (Version: 6.1.26 - Oracle Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd)
ProtonVPN (HKLM-x32\...\{8C16DE53-E22C-406E-83C9-447D01A536B5}) (Version: 2.3.2 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 2.3.2) (Version: 2.3.2 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{87BDF456-9882-44E6-8FFC-F73B83E42EAD}) (Version: 1.1.4 - Proton Technologies AG)
ProtonVPNTun (HKLM-x32\...\{B1EBF050-CC3E-45B0-9DE5-339C6241F3DA}) (Version: 0.13.1 - Proton Technologies AG)
Python 3.10.2 (64-bit) (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{c60fd5ac-367d-4e3a-a975-f157502ac30a}) (Version: 3.10.2150.0 - Python Software Foundation)
Python 3.10.2 Add to Path (64-bit) (HKLM\...\{F55A8CCD-A817-4C53-91B8-4B7E6C49DA7B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Core Interpreter (64-bit) (HKLM\...\{6475B354-B0F6-4837-8738-784937D647B2}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Development Libraries (64-bit) (HKLM\...\{8277936D-8A34-4758-893C-0B29342A6F27}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Documentation (64-bit) (HKLM\...\{B51A07AD-9BCE-485D-8721-C7C83992794B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Executables (64-bit) (HKLM\...\{EDEE3162-8399-42D4-9D7C-7DA21275BFD0}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 pip Bootstrap (64-bit) (HKLM\...\{08B7036F-0609-4634-9A5F-1688230E9D9D}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Standard Library (64-bit) (HKLM\...\{D862D299-FDC2-4571-B3A1-27CEE951D2D1}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Tcl/Tk Support (64-bit) (HKLM\...\{7863DF45-23BB-4D83-97B3-CF08F3192F5B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Test Suite (64-bit) (HKLM\...\{D68594E9-2F98-4EA0-8A94-5D7D9FF51960}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python 3.10.2 Utility Scripts (64-bit) (HKLM\...\{300F0759-8294-4971-9FAD-7AB19FA7B270}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{0CD41B07-EDF9-4B77-8C7C-CCCA1C435970}) (Version: 3.10.7686.0 - Python Software Foundation)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Remo Recover 6.0 (HKLM\...\{D3A96BCC-2220-48F2-83C2-F6084DEC30C3}_is1) (Version: 6.0.0.203 - Remo Software)
Slack (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\slack) (Version: 4.27.154 - Slack Technologies Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TBIView 4.55 - TBIMount 1.24 - TBIHD 1.04 (HKLM-x32\...\{3368C32B-A096-4e82-B9C3-76572D693A58}_is1) (Version: - TeraByte Unlimited)
Telegram Desktop (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.5.1 - Telegram FZ-LLC)
TortoiseSVN 1.10.2.28392 (64 bit) (HKLM\...\{443D1749-EE02-4723-A726-9BDA18D75AE5}) (Version: 1.10.28392 - TortoiseSVN)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{3800CCFC-4006-4B30-A103-416AF26A885C}) (Version: 2.71.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Web Companion (HKLM-x32\...\{4bf94335-4cad-4d9c-af64-a5e715275c4d}) (Version: 7.0.2417.4248 - Lavasoft)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Wondershare Filmora X(Build 10.0.10.20) (HKLM\...\Wondershare Filmora X_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
XAMPP (HKLM\...\xampp) (Version: 8.0.19-0 - Bitnami)
Zoom (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\ZoomUMX) (Version: 5.6.5 (823) - Zoom Video Communications, Inc.)

Packages:
=========
Adobe XD -> C:\Program Files\WindowsApps\Adobe.CC.XD_42.1.22.4_x64__adky2gkssdxte [2022-04-26] (Adobe Systems Incorporated)
Hidden City : Jeu d’objets cachés -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.52.5200.0_x86__ytsefhwckbdv6 [2022-12-31] (G5 Entertainment AB)
Logo Maker & Logo Generator -> C:\Program Files\WindowsApps\33865VideoStudio.LogoMakerLogoGenerator_1.0.7.0_x64__j9hpnndqvt73r [2022-12-31] (VideoStudio)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt [2022-12-31] (Meta) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-11-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-11-25] (Microsoft Corporation) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.86.53503.0_x64__8wekyb3d8bbwe [2022-12-31] (Microsoft Corporation) [Startup Task]
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-30] (Microsoft Corporation)
Singe MP3 -> C:\Program Files\WindowsApps\singemp3.app-CBAD5B75_1.0.0.1_neutral__94h5jpx31znhe [2022-11-25] (singemp3.app)
Singe MP3 -> C:\Program Files\WindowsApps\singemp3.plus-4E03BA22_1.0.0.1_neutral__88y836pay2hvm [2022-11-25] (singemp3.plus)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-31] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2248.9.0_x64__cv1g1gvanyjgm [2022-12-31] (WhatsApp Inc.) [Startup Task]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Proton Technologies AG -> ProtonVPN)
ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-01-12] (Notepad++ -> )
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé]
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-02-15] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net)
ContextMenuHandlers3: [SmadExt] -> {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C} => C:\Program Files (x86)\Smadav\SmadExtc64.dll [2019-10-18] (Zainuddin Nafarin -> Smadsoft)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-02-15] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [SmadExt] -> {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C} => C:\Program Files (x86)\Smadav\SmadExtc64.dll [2019-10-18] (Zainuddin Nafarin -> Smadsoft)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__mhndijogcbfpngmlgfafhbklibdjchpe\Singe MP3.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=mhndijogcbfpngmlgfafhbklibdjchpe --app-url=hxxps://singemp3.plus/?app --app-launch-source=4
ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__ffinbaokfcigolmjddabafmbdggpkhfc\Singe MP3.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ffinbaokfcigolmjddabafmbdggpkhfc --app-url=hxxps://singemp3.app/?mode=PWA --app-launch-source=4
ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\My Orange.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=jbdglackglbhnbnoinhcmfhbbdnopfng

==================== Modules chargés (Avec liste blanche) =============

2023-01-11 00:31 - 2023-01-11 00:31 - 000433152 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libEGL_translator.DLL
2023-01-11 00:31 - 2023-01-11 00:31 - 001638912 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libGLES_CM_translator.DLL
2023-01-11 00:31 - 2023-01-11 00:31 - 002422784 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libGLES_V2_translator.DLL
2023-01-11 00:31 - 2023-01-11 00:31 - 000568832 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libopenglrenderplus.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 000037888 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\NOXa.dll
2022-11-23 19:38 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2022-11-23 19:38 - 2017-09-12 10:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_10580_133178620784085517\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_10580_133178620784085517\win32gui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\win32api.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\win32gui.pyd
2023-01-11 00:30 - 2023-01-11 00:30 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12276_133178668646103120\pywintypes39.dll
2023-01-11 00:30 - 2023-01-11 00:30 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12276_133178668646103120\win32gui.pyd
2023-01-11 00:23 - 2023-01-11 00:23 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\_win32sysloader.pyd
2023-01-11 00:24 - 2023-01-11 00:24 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\pythoncom39.dll
2023-01-11 00:24 - 2023-01-11 00:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\pywintypes39.dll
2023-01-11 00:24 - 2023-01-11 00:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\win32api.pyd
2023-01-11 00:24 - 2023-01-11 00:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\win32gui.pyd
2023-01-11 00:24 - 2023-01-11 00:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\winxpgui.pyd
2023-01-10 23:35 - 2023-01-10 23:35 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\pywintypes39.dll
2023-01-10 23:35 - 2023-01-10 23:35 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\win32api.pyd
2023-01-10 23:35 - 2023-01-10 23:35 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1484_133178572653706509\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1484_133178572653706509\win32gui.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\_win32sysloader.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\pythoncom39.dll
2023-01-10 22:34 - 2023-01-10 22:34 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\pywintypes39.dll
2023-01-10 22:34 - 2023-01-10 22:34 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\win32api.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\win32gui.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\winxpgui.pyd
2023-01-10 22:26 - 2023-01-10 22:28 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\_cffi_backend.pyd
2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\_win32sysloader.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\Crypto\Math\_modexp.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\pythoncom39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\win32api.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\winxpgui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\win32api.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\win32gui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\winxpgui.pyd
2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\_win32sysloader.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\pythoncom39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\winxpgui.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3748_133178597242159636\pywintypes39.dll
2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3748_133178597242159636\win32gui.pyd
2023-01-10 22:26 - 2023-01-10 22:28 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\_cffi_backend.pyd
2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\_win32sysloader.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\Crypto\Math\_modexp.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\pythoncom39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\win32api.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\winxpgui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_4368_133178627935084931\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_4368_133178627935084931\win32gui.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\_cffi_backend.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\_win32sysloader.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\Crypto\Math\_modexp.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000061952 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\greenlet\_greenlet.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000015872 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\markupsafe\_speedups.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000068608 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\psutil\_psutil_windows.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\pythoncom39.dll
2023-01-10 21:23 - 2023-01-10 21:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\pywintypes39.dll
2023-01-10 21:23 - 2023-01-10 21:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\win32api.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\win32gui.pyd
2023-01-10 21:23 - 2023-01-10 21:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\winxpgui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5828_133178584674672860\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5828_133178584674672860\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\win32api.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\win32gui.pyd
2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\_win32sysloader.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\pythoncom39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\win32api.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\winxpgui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7604_133178624728958510\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7604_133178624728958510\win32gui.pyd
2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\_win32sysloader.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\pythoncom39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\winxpgui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\win32api.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\win32api.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\winxpgui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\winxpgui.pyd
2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\_win32sysloader.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\winxpgui.pyd
2023-01-10 23:21 - 2023-01-10 23:21 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\_win32sysloader.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\winxpgui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\pywintypes39.dll
2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\win32api.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\win32gui.pyd
2023-01-10 23:24 - 2023-01-10 23:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\winxpgui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\winxpgui.pyd
2023-01-10 23:18 - 2023-01-10 23:19 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\_cffi_backend.pyd
2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\_win32sysloader.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\pythoncom39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\pywintypes39.dll
2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\win32api.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\win32gui.pyd
2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\winxpgui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9640_133178589870594640\pywintypes39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9640_133178589870594640\win32gui.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\_cffi_backend.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\_win32sysloader.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\Crypto\Math\_modexp.pyd
2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\pythoncom39.dll
2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\pywintypes39.dll
2023-01-10 22:34 - 2023-01-10 22:34 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\win32api.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\win32gui.pyd
2023-01-10 22:34 - 2023-01-10 22:34 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\winxpgui.pyd
2023-01-11 00:28 - 2023-01-11 00:28 - 000007168 _____ () [Fichier non signé] D:\Program Files\Nox\bin\firewall_mgr.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000498688 _____ () [Fichier non signé] D:\Program Files\Nox\bin\hlog4qt1.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 025709359 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icudt57.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 004264645 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icuin57.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 002371226 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icuuc57.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000120334 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libgcc_s_dw2-1.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000091599 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libqrencode.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 053218152 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libQt5WebKit.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000572862 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libQt5WebKitWidgets.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 001540622 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libstdc++-6.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 002639092 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libxml2-2.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000927742 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libxslt-1.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000221696 _____ () [Fichier non signé] D:\Program Files\Nox\bin\NoxCommon.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000663040 _____ () [Fichier non signé] D:\Program Files\Nox\bin\QZXing2.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 001047552 _____ () [Fichier non signé] D:\Program Files\Nox\bin\SDL2.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000239616 _____ () [Fichier non signé] D:\Program Files\Nox\bin\UICommon.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000617984 _____ () [Fichier non signé] D:\Program Files\Nox\bin\VBoxApi.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000059904 _____ () [Fichier non signé] D:\Program Files\Nox\bin\VMProtectSDK32.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000059392 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] D:\Program Files\Nox\plugins\imageformats\qdds.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000517120 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] D:\Program Files\Nox\plugins\imageformats\qjp2.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000097792 _____ (Google, inc) [Fichier non signé] D:\Program Files\Nox\bin\AdbWinApi.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000062976 _____ (Google, inc) [Fichier non signé] D:\Program Files\Nox\bin\AdbWinUsbApi.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000049152 _____ (MingW-W64 Project. All rights reserved.) [Fichier non signé] D:\Program Files\Nox\bin\libwinpthread-1.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 000390656 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libcurl.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 001253376 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] D:\Program Files\Nox\bin\libcurl.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 002866688 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libcrypto-x64.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 000477696 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libssl-x64.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 002114048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\x86\libcrypto.dll
2023-01-11 00:31 - 2023-01-11 00:31 - 000371712 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\x86\libssl.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 001214976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files\Nox\bin\LIBEAY32.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000275456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files\Nox\bin\ssleay32.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 006147224 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] D:\Program Files\Nox\bin\Qt5Core.dll
2023-01-11 00:28 - 2023-01-11 00:28 - 000407536 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] D:\Program Files\Nox\bin\Qt5Positioning.dll
2022-11-23 19:38 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-09-15 08:31 - 2022-11-23 20:38 - 000000354 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 cbs.wondershare.com
127.0.0.1 www.cbs.wondershare.com
127.0.0.1 platform.wondershare.com
127.0.0.1 cbs.wondershare.com
127.0.0.1 www.cbs.wondershare.com
127.0.0.1 platform.wondershare.com
127.0.0.1 cbs.wondershare.com
127.0.0.1 www.cbs.wondershare.com
127.0.0.1 platform.wondershare.com

2022-01-13 15:37 - 2022-01-13 15:52 - 000000390 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Java\jdk-17\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\TortoiseSVN\bin;C:\Program Files\Git\cmd;C:\xampp\mysql\bin\;C:\Program Files\nodejs\;C:\xampp\php;C:\composer
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mme OBAMA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-1656645954-2122459023-1707544868-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1656645954-2122459023-1707544868-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

Network Binding:
=============
Ethernet 3: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Ethernet 7: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Connexion au réseau local: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "boincmgr"
HKLM\...\StartupApproved\Run: => "boinctray"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Google Desktop Search"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Kite"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_439BFEE0F5825C99DC4962F8B9E16AE2"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Speech Recognition"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{B266D463-95E5-49AF-B163-97B9EBB61EF8}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\77.0.4054.80\opera.exe => Pas de fichier
FirewallRules: [{A90BDBE1-A985-4982-9FA8-2AEE4D67C890}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{473F0E58-C6A2-4462-9E8D-2D273407840F}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{3F424260-066E-43CB-87EF-B059A8FEBFB6}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé]
FirewallRules: [TCP Query User{D4D0AAA5-F8FE-483E-9C89-CBC246AF12B8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé]
FirewallRules: [UDP Query User{B9B0A038-6915-4ECE-9540-D6E78C7338A7}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3CC59E09-6118-4463-835A-95A696CCB4E9}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{30B90B8D-F832-453C-83B3-E3973EB35CAE}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [TCP Query User{0C246ADE-457D-4CF0-BFE3-0610C65B27A2}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [UDP Query User{ADA35027-2ED8-45B7-BDB6-9635F8366C74}C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe] => (Allow) C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe => Pas de fichier
FirewallRules: [TCP Query User{3DD03544-23B9-4108-BE00-BB4A950CD89C}C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe] => (Allow) C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe => Pas de fichier
FirewallRules: [UDP Query User{B43A7C62-7883-4DB7-AFDB-FB463CEC9F03}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F88E162C-BDBB-4953-A55D-8944E16B06EE}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C520452-9A7F-4622-96C8-DBB7C205440E}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{1874803D-1447-4A01-8776-AE27B4085848}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.) [Fichier non signé]
FirewallRules: [{C16F0889-803F-4648-8B8C-A4F2D743EA4C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Pas de fichier
FirewallRules: [{362AA066-EA75-4CF7-9CE1-B97B4C56ADD7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Pas de fichier
FirewallRules: [{E801D0C0-5370-4D00-B539-2E88D57FD57A}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{B7A0237E-23D3-48FC-9DA9-701EEE96134E}C:\program files\java\jdk-16.0.1\bin\java.exe] => (Allow) C:\program files\java\jdk-16.0.1\bin\java.exe => Pas de fichier
FirewallRules: [UDP Query User{34020064-C933-4031-93F5-3F793379A24A}C:\program files\java\jdk-16.0.1\bin\java.exe] => (Allow) C:\program files\java\jdk-16.0.1\bin\java.exe => Pas de fichier
FirewallRules: [TCP Query User{DE5416BE-15DE-4477-A256-A7CAC1181CFA}D:\games\call of duty - black ops 2\t6sp.exe] => (Allow) D:\games\call of duty - black ops 2\t6sp.exe (Activision Publishing Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{A14C0034-408F-4E46-B58D-70FA338B97A7}D:\games\call of duty - black ops 2\t6sp.exe] => (Allow) D:\games\call of duty - black ops 2\t6sp.exe (Activision Publishing Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{561F8418-14E3-4EBC-A21F-BD5AFA047633}D:\games\call of duty - black ops 2\t6zm - zombies offline.exe] => (Allow) D:\games\call of duty - black ops 2\t6zm - zombies offline.exe (Activision Publishing Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{0BA0E4A8-EE64-4E93-8053-78B64EB0D01D}D:\games\call of duty - black ops 2\t6zm - zombies offline.exe] => (Allow) D:\games\call of duty - black ops 2\t6zm - zombies offline.exe (Activision Publishing Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{303B0DF8-7EE6-43E0-9097-5A765F5EDDF7}D:\format factory\formatfactory\formatfactory.exe] => (Allow) D:\format factory\formatfactory\formatfactory.exe (Free Time Co., Ltd.) [Fichier non signé]
FirewallRules: [UDP Query User{6E5442AD-315E-43F5-9E07-089262B73106}D:\format factory\formatfactory\formatfactory.exe] => (Allow) D:\format factory\formatfactory\formatfactory.exe (Free Time Co., Ltd.) [Fichier non signé]
FirewallRules: [{072B079D-B087-4F2E-AEF6-7D3AF661B3CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe => Pas de fichier
FirewallRules: [TCP Query User{1FF47D15-3568-44B4-9C93-0E82BA7C6B91}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{34C669E3-F3B7-4198-8CAA-EB579428D897}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{41240949-1BD7-4481-99F7-EBE04D15DC0F}C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe => Pas de fichier
FirewallRules: [UDP Query User{8916344E-81E7-4926-9A36-4B44190BFBB7}C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe => Pas de fichier
FirewallRules: [TCP Query User{EF940768-A140-4520-ABE3-801380648C52}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé]
FirewallRules: [UDP Query User{7E8C768A-190B-4F5F-B29C-C9BC594C0F01}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé]
FirewallRules: [{E98024FC-C232-4C4C-8CE6-2A76E3D6F667}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Fichier non signé]
FirewallRules: [{315DCE14-644D-44DD-8150-2553E4A7378C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Fichier non signé]
FirewallRules: [{0379048B-FE08-41EC-90D3-35DD27983419}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [{D476D5E7-E0A7-4005-B704-93F3C23A8C4A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [{B0E11C79-92F0-464A-AE6E-CE667B420F41}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier
FirewallRules: [{0B087FE7-A02E-4602-85B6-6FDF306E27FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier
FirewallRules: [TCP Query User{09C6CEF3-32B3-4A6A-AC04-E90A1EB30886}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{EBF079CA-88D1-41B5-B861-D0E001D46826}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5EEE8803-83C6-450C-BC95-F7A54907C9F5}D:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) D:\games\call of duty - modern warfare 3\iw5sp.exe => Pas de fichier
FirewallRules: [UDP Query User{5EC3D4DF-A420-4792-9135-0FAD7EADAEED}D:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) D:\games\call of duty - modern warfare 3\iw5sp.exe => Pas de fichier
FirewallRules: [TCP Query User{49E149ED-ED25-49EA-A2F9-0C79F80D7D52}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Fichier non signé]
FirewallRules: [UDP Query User{48FF2A9E-B65F-472A-AAE4-4E60D0379BC5}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Fichier non signé]
FirewallRules: [TCP Query User{01EC3717-4E8D-4383-AD0D-11EE4C05DC07}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe (David Harris) [Fichier non signé]
FirewallRules: [UDP Query User{A13F3682-3254-4BD1-A1E5-810B7F689352}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe (David Harris) [Fichier non signé]
FirewallRules: [TCP Query User{99A90EDD-7AF7-443F-B221-73E18F586F85}C:\program files\java\jdk1.8.0_211\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_211\bin\java.exe => Pas de fichier
FirewallRules: [UDP Query User{415389C6-15BA-49B3-95CE-5BBD1D1A476A}C:\program files\java\jdk1.8.0_211\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_211\bin\java.exe => Pas de fichier
FirewallRules: [TCP Query User{3C22C16B-A192-4A2A-B6DB-54945E825E7F}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [UDP Query User{9728AD22-F274-4EA9-909F-D14BE92509C5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé]
FirewallRules: [TCP Query User{96AF187D-6CD9-43DB-9D6A-3F979B6AE734}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé]
FirewallRules: [UDP Query User{B9414904-88D9-4A9E-99C6-B76BA096B81F}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé]
FirewallRules: [TCP Query User{AB4785FA-2364-459D-AADC-03D69AC013E5}C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe] => (Allow) C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe => Pas de fichier
FirewallRules: [UDP Query User{483C0528-2D9E-4DD1-91F0-DA4DC51EC0BA}C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe] => (Allow) C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe => Pas de fichier
FirewallRules: [TCP Query User{57C37ADD-FDFD-421B-9F4F-0663006C79ED}F:\_oceanofgames.com_blur\blur\blur.exe] => (Allow) F:\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [UDP Query User{5FBB045F-E737-4BBE-80F0-0BFC78777478}F:\_oceanofgames.com_blur\blur\blur.exe] => (Allow) F:\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [TCP Query User{E80E8E44-BCF3-4E2C-B9DE-A1C7CD71BDB9}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [UDP Query User{C1AEA3B5-00FF-462D-976A-EEDC942D6C96}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [TCP Query User{576282C4-993E-4E8A-941D-337337085CC6}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe
FirewallRules: [UDP Query User{02409E6E-9CB0-4B1F-A34E-97AB2C130F24}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe
FirewallRules: [{F602D0C1-357C-4A8A-9E94-5EF6144C65C6}] => (Allow) C:\Program Files\iTunes\iTunes.exe => Pas de fichier
FirewallRules: [TCP Query User{2E2EC0D4-9CD4-4526-8000-EFDF2B5E638A}C:\windows\system32\settingsynchost.exe] => (Allow) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{8B7A1D33-E87E-4B7A-8575-61F86C7E382B}C:\windows\system32\settingsynchost.exe] => (Allow) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{43F04FBD-EF1E-4A47-BBFA-FC827C90A829}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [UDP Query User{BE2D8E57-0088-4BDB-A919-F34AA5FFA43C}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier
FirewallRules: [TCP Query User{09097744-B443-44DD-BE36-BF49173C6A8C}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé]
FirewallRules: [UDP Query User{1980DCA7-A560-4D85-856F-756ED1B9BD67}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé]
FirewallRules: [TCP Query User{F869C7EB-8731-45DE-9699-451640B5CABE}D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe] => (Allow) D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe => Pas de fichier
FirewallRules: [UDP Query User{ED245452-8868-411B-9B25-EE67B5024678}D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe] => (Allow) D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe => Pas de fichier
FirewallRules: [TCP Query User{7B377FE5-BA55-4499-99B2-923A757D1376}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Allow) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé]
FirewallRules: [UDP Query User{1EF2CB5A-5399-4FE4-897C-D13EF9ED075F}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Allow) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé]
FirewallRules: [{EB2037CA-4829-4A73-92D3-2CA1A8D98FEB}] => (Allow) C:\Users\Mme OBAMA\Downloads\4ukey.exe => Pas de fichier
FirewallRules: [{7B3E0C82-8D39-4815-BDC0-EE601DAFE050}] => (Allow) C:\Users\Mme OBAMA\Downloads\4ukey.exe => Pas de fichier
FirewallRules: [{c079144c-0cf5-4867-9c45-9a50fab0d9a8}] => (Allow) C:\Program Files\ldplayerbox\LdVBoxHeadless.exe => Pas de fichier
FirewallRules: [TCP Query User{9AF60CA4-AE95-4144-B7E9-71177260C224}G:\setup\monopoly plus\monopoly.exe] => (Allow) G:\setup\monopoly plus\monopoly.exe => Pas de fichier
FirewallRules: [UDP Query User{1678B18A-ACBD-4908-B214-8FCEDB8FF19C}G:\setup\monopoly plus\monopoly.exe] => (Allow) G:\setup\monopoly plus\monopoly.exe => Pas de fichier
FirewallRules: [TCP Query User{18358127-2BFE-4940-854E-0D46AE3EB8A2}G:\blur\blur.exe] => (Block) G:\blur\blur.exe => Pas de fichier
FirewallRules: [UDP Query User{EB54FFBD-BC33-4D19-903D-8B39331B988E}G:\blur\blur.exe] => (Block) G:\blur\blur.exe => Pas de fichier
FirewallRules: [{921FA648-B1A6-41C9-A49D-10A95DF50A5E}] => (Allow) D:\perso\3uTools\install\libXunlei\Download\MiniThunderPlatform.exe (深圳市迅雷网络技术有限公司) [Fichier non signé]
FirewallRules: [{409577A6-4A42-4F1F-9044-7CAAED32FD9B}] => (Allow) D:\perso\3uTools\install\libXunlei\Download\MiniThunderPlatform.exe (深圳市迅雷网络技术有限公司) [Fichier non signé]
FirewallRules: [{739FC1E4-0E4A-42FE-8D70-C9C01DBF3DBC}] => (Allow) LPort=80
FirewallRules: [TCP Query User{DD2887F2-0A42-4A27-8BCF-8DEDD3105D95}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier
FirewallRules: [UDP Query User{D40AB8B4-E52F-477A-A54F-779959828905}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier
FirewallRules: [TCP Query User{4723F19C-59F3-4EB1-AE46-54F674A04741}C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe] => (Allow) C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe => Pas de fichier
FirewallRules: [UDP Query User{5894168E-ABB4-45E3-A358-DF0D9288FEE2}C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe] => (Allow) C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe => Pas de fichier
FirewallRules: [TCP Query User{07FB37D2-A5FC-414C-9D2C-B89099D02F84}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{6EB84090-B2F9-4D82-BDFD-C2AFF49B94D8}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A3D1551F-EA29-49AF-8085-3BD4F8C23583}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier
FirewallRules: [UDP Query User{01E25394-D19E-445A-B38F-E4A3265D17B6}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier
FirewallRules: [{01DC7568-6484-4617-AE1B-76228801308C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe => Pas de fichier
FirewallRules: [{468B37FD-E2C2-4C0C-BC1E-90897886B686}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe => Pas de fichier
FirewallRules: [{41256E65-84B1-4FB4-8850-0C4F40D867D7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe => Pas de fichier
FirewallRules: [{DDAE1000-CF7F-437D-AEA0-FDCB8D11173C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe => Pas de fichier
FirewallRules: [TCP Query User{5D6A3789-AF4E-46C3-BCBB-BBB2CF999EAE}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Allow) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe
FirewallRules: [UDP Query User{E95A3F18-2ED8-409A-84AC-465C8B1409D9}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Allow) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe
FirewallRules: [TCP Query User{41B240B8-D0D7-496F-8D31-8D73B94B6DF0}D:\jeux\pes 2021\pes2021.exe] => (Allow) D:\jeux\pes 2021\pes2021.exe => Pas de fichier
FirewallRules: [UDP Query User{743CF884-A73F-456F-8F7A-7CF55D4EE3E6}D:\jeux\pes 2021\pes2021.exe] => (Allow) D:\jeux\pes 2021\pes2021.exe => Pas de fichier
FirewallRules: [TCP Query User{D5CFECC3-1329-4FCA-BBC3-1B8ED658896C}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé]
FirewallRules: [UDP Query User{81B1416B-A569-4179-B4D3-D4A6F8459167}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé]
FirewallRules: [TCP Query User{7D31C1C7-11B1-4C03-B84C-64E56541C02F}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Block) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé]
FirewallRules: [UDP Query User{EC752F1E-16E7-4706-8DCD-E0C9EE15F6AA}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Block) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé]
FirewallRules: [TCP Query User{5FADB142-3841-4033-B564-E41D51964B73}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Block) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé]
FirewallRules: [UDP Query User{B980846C-5198-4342-BF4D-73A55773989E}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Block) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé]
FirewallRules: [{8E1A30CD-6129-4CE0-BC7F-9DC2F35BF874}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A2EF7498-4464-44E7-9015-2F901F028059}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E6411BB0-624F-4E7D-958E-4032542D11AC}I:\setup\jeux\monopoly plus\monopoly.exe] => (Allow) I:\setup\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [UDP Query User{5936B25F-57A8-4A25-97B3-A847A1FD7824}I:\setup\jeux\monopoly plus\monopoly.exe] => (Allow) I:\setup\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [TCP Query User{1CA572BB-7B47-4B90-944B-5F2BCC155EA5}D:\jeux\monopoly plus\monopoly.exe] => (Allow) D:\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [UDP Query User{76427408-8758-4C0B-B020-3A44274A1DAC}D:\jeux\monopoly plus\monopoly.exe] => (Allow) D:\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [TCP Query User{3F2427A8-FB9A-4E54-A8E4-2DA388E448DC}C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe => Pas de fichier
FirewallRules: [UDP Query User{24F38890-955C-4E34-B673-DED67301B515}C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe => Pas de fichier
FirewallRules: [TCP Query User{A5D0E11E-E7F2-497C-BCCB-459188141AC5}C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé]
FirewallRules: [UDP Query User{A0B1E01B-A367-4293-A453-C20F981D0CF1}C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé]
FirewallRules: [{05CFF27E-DAF6-46DE-AA86-5A589D4F3E60}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{B48CC0A2-2A5B-4194-9726-4EA2B994E405}C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé]
FirewallRules: [UDP Query User{5E160BE5-DDD3-42FC-9DBF-A0FB2543E575}C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé]
FirewallRules: [{746FB713-902C-48BB-B953-F3890B458287}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F3F098BF-C8A0-4137-9DD1-F11F05336F95}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8367408E-5070-4309-9B27-70BE70CFD94B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3FA10682-0553-4E70-92B7-3B3C5D9ADB70}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{90EC6839-30B7-4512-91C0-1D81662FA2DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5F4DB0A-8F97-48B4-9985-4546C1A1FA31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{90D1A98C-2005-45F1-9D2E-4B5DB1F72404}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EBA10B44-3AD9-4C13-8513-454953049DF2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{e5111893-d9f2-41dc-a70a-a717acc2c238}] => (Allow) C:\Program Files\ldplayerbox\LdVBoxHeadless.exe => Pas de fichier
FirewallRules: [{8F5C3754-C10B-44DD-9CC9-249259A822CC}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22\opera.exe => Pas de fichier
FirewallRules: [{1C3244DC-C543-42AC-A629-261314411C33}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\94.0.4606.38\opera.exe => Pas de fichier
FirewallRules: [{47D7460E-258C-4168-833A-C37C14474A5A}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Pas de fichier
FirewallRules: [{43706A37-AABD-47A7-A534-29B0D887D2DA}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (COMPANY NAME) [Fichier non signé]
FirewallRules: [{E16A8A1A-372B-40B0-8C35-3896B718B0CD}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Pas de fichier
FirewallRules: [{CD447B80-EF5C-4FF8-AE9B-7B32CD886AC2}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (COMPANY NAME) [Fichier non signé]
FirewallRules: [{815CEE20-96CC-416A-90E5-7564E3BF0C5A}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Pas de fichier
FirewallRules: [{B2DB4CB6-52D4-46D3-83FB-E6D054E99963}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (The Qt Company Ltd.) [Fichier non signé]
FirewallRules: [{B2109B42-BDF5-4A5E-844E-9390B2686B2D}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{F005A7BC-6882-4ACB-B79C-46D698882F85}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{D149222C-3280-4737-8588-59E1CAC2755A}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{B2F86C7F-E4BC-4076-8A93-721C85313844}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{8CF9BB37-6484-4ABA-BA9F-0C46B85AECF4}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{55CF804B-4CC4-40B3-80E3-F12D5D85C748}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{8A7AA9E6-D8A8-4753-B056-662E75AE4E4D}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [{1BC701AE-30BE-4A38-B677-86C94E7BA889}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier
FirewallRules: [TCP Query User{9AFA6A00-8D5B-42C8-84A2-40BB3B4A133F}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Block) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe
FirewallRules: [UDP Query User{35A2EDD1-7F3A-4F1A-9BC6-03058E6FF250}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Block) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe
FirewallRules: [{2C58FD1A-2CA9-4171-AB2A-9217C4F165D2}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{BD1217D0-7FE4-4D9B-AF2A-B09EAF56D62F}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> Nox Limited Corporation)
FirewallRules: [{094DC913-AD25-49E9-A197-286A5F761BE1}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22_0\opera.exe => Pas de fichier

==================== Points de restauration =========================

Vérifiez le service "VSS"

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: Port série PCI
Description: Port série PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/11/2023 02:38:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante PerceptionSimulationService.exe, version : 10.0.19041.746, horodatage : 0xc9bed736
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000795dd6
ID du processus défaillant : 0x9a4
Heure de début de l’application défaillante : 0x01d92548ea6af02c
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : fd352cad-b71d-46fa-aacf-d7fbf760f1c9
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/11/2023 02:23:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante spectrum.exe, version : 10.0.19041.1741, horodatage : 0xc3776529
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000765dd6
ID du processus défaillant : 0x2b98
Heure de début de l’application défaillante : 0x01d925486fa05274
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\spectrum.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 2ba1507a-2f5e-4e23-a8eb-e0efb3f9dd17
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/11/2023 02:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SensorDBSynch.exe, version : 4.5.519.0, horodatage : 0x5ad9a4d0
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000009b5dd6
ID du processus défaillant : 0x1638
Heure de début de l’application défaillante : 0x01d92530597e7a10
Chemin d’accès de l’application défaillante : C:\Program Files\Synaptics\SynFp\Shared\SensorDBSynch.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 30e4f1da-4ed4-4ccc-bbdf-3bce2a9f5eaa
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/11/2023 02:08:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SearchApp.exe, version : 10.0.19041.2364, horodatage : 0x67bfcd81
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.2364, horodatage : 0x5b7d4d22
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000010fe32
ID du processus défaillant : 0x25ac
Heure de début de l’application défaillante : 0x01d9253e7e5edfda
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : b7fb94a7-31bf-40de-b86d-fffee5569608
Nom complet du package défaillant : Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy
ID de l’application relative au package défaillant : CortanaUI

Error: (01/11/2023 12:39:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante installer.exe, version : 79.0.4143.22, horodatage : 0x613b575b
Nom du module défaillant : Opera_installer_230110233450874_unloaded, version : 79.0.4143.22, horodatage : 0x613b575b
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000d0022
ID du processus défaillant : 0x2764
Heure de début de l’application défaillante : 0x01d9254c219627ec
Chemin d’accès de l’application défaillante : C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22_0\installer.exe
Chemin d’accès du module défaillant: Opera_installer_230110233450874
ID de rapport : 773fb424-75d5-4064-b25a-34da382b08b0
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/11/2023 12:11:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante PerceptionSimulationService.exe, version : 10.0.19041.746, horodatage : 0xc9bed736
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000c15dd6
ID du processus défaillant : 0x119c
Heure de début de l’application défaillante : 0x01d925321c011695
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 0843bcd3-b066-4cd8-a432-38b9d7add6be
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/11/2023 12:08:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante spectrum.exe, version : 10.0.19041.1741, horodatage : 0xc3776529
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000765dd6
ID du processus défaillant : 0x22cc
Heure de début de l’application défaillante : 0x01d92531f94a3b77
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\spectrum.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : e3ca7635-1282-4830-bd10-ee8a9c797966
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/10/2023 11:55:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 9.1.2023.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 1c80

Heure de début : 01d92540b4247ab8

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Users\Mme OBAMA\OneDrive\Bureau\FRST64.exe

ID de rapport : 9128a4db-c4c2-4340-b5cc-cef385b4df12

Nom complet du package défectueux :

ID de l'application relative à un package défectueux :

Type de blocage : Cross-process

Erreurs système:
=============
Error: (01/11/2023 03:22:18 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {883FF1FC-09E1-48E5-8E54-E2469ACB0CFD}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801}

Error: (01/11/2023 03:05:06 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:48:11 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:48:09 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:48:06 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:45:52 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:45:49 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/11/2023 02:45:38 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL)
Description: Impossible de démarrer un serveur DCOM : {883FF1FC-09E1-48E5-8E54-E2469ACB0CFD}. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801}

Windows Defender:
================
Date: 2023-01-11 02:06:59
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {1ECD5D52-5129-4407-AEFB-35D3061E1F2C}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : AUTORITE NT\SERVICE RÉSEAU

Date: 2023-01-10 20:55:20
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0
Nom : Backdoor:Win32/Zegost!ml
ID : 2147772949
Gravité : Grave
Catégorie : Porte dérobée
Chemin : file:_D:\jeux\Monopoly Plus\_Redist\dxwebsetup.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel
Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe
Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0
Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-01-10 20:54:50
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0
Nom : Backdoor:Win32/Zegost!ml
ID : 2147772949
Gravité : Grave
Catégorie : Porte dérobée
Chemin : file:_D:\jeux\Monopoly Plus\_Redist\dxwebsetup.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel
Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe
Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0
Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-01-10 20:53:22
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0
Nom : Backdoor:Win32/Zegost!ml
ID : 2147772949
Gravité : Grave
Catégorie : Porte dérobée
Chemin : file:_D:\jeux\Dead Cells\_Redist\dxwebsetup.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel
Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe
Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0
Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2

Date: 2023-01-10 19:40:52
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/AgentTesla!ml&threatid=2147760503&enterprise=0
Nom : Trojan:Win32/AgentTesla!ml
ID : 2147760503
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Program Files\BlueStacks_nxt\HD-Player.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel
Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe
Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0
Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2
Event[0]:

Date: 2023-01-09 17:50:47
Description:
La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x80004005
Description de l’erreur : Erreur non spécifiée
Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes.

Date: 2023-01-09 09:16:54
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.381.1873.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.19900.2
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

CodeIntegrity:
===============
Date: 2023-01-11 03:15:42
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2023-01-11 03:14:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: LENOVO GJET92WW (2.42 ) 03/03/2017
Carte mère: LENOVO 20AQ006HUS
Processeur: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz
Pourcentage de mémoire utilisée: 73%
Mémoire physique - RAM - totale: 11974.38 MB
Mémoire physique - RAM - disponible: 3217.94 MB
Mémoire virtuelle totale: 24262.38 MB
Mémoire virtuelle disponible: 12951.3 MB

==================== Lecteurs ================================

Drive c: (Disque local) (Fixed) (Total:402.78 GB) (Free:46.69 GB) (Model: HGST HTS541010A9E680) NTFS
Drive d: () (Fixed) (Total:527.34 GB) (Free:15.72 GB) (Model: HGST HTS541010A9E680) NTFS
Drive f: () (Fixed) (Total:0.09 GB) (Free:0.08 GB) (Model: WDC WD10 SPZX-08Z10 USB Device) FAT32
Drive i: (Disque local) (Fixed) (Total:931.41 GB) (Free:49.65 GB) (Model: WDC WD10 SPZX-08Z10 USB Device) NTFS

\\?\Volume{6e9fe60c-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{6e9fe60c-0000-0000-0000-60d464000000}\ () (Fixed) (Total:0.85 GB) (Free:0.21 GB) NTFS

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6E9FE60C)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=402.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=868 MB) - (Type=27)
Partition 4: (Not Active) - (Size=527.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 000052E9)
Partition 1: (Active) - (Size=100 MB) - (Type=FAT32)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt =======================

Signaler le contenu de ce document