Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 09-01-2023 Exécuté par Emmanuel Michel (11-01-2023 03:07:46) Exécuté depuis C:\Users\Mme OBAMA\OneDrive\Bureau Microsoft Windows 10 Professionnel Version 21H2 19044.2364 (X64) (2021-06-20 01:52:32) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1656645954-2122459023-1707544868-500 - Administrator - Disabled) => C:\Users\Administrateur DefaultAccount (S-1-5-21-1656645954-2122459023-1707544868-503 - Limited - Disabled) emma (S-1-5-21-1656645954-2122459023-1707544868-1003 - Limited - Enabled) => C:\Users\emma Emmanuel Michel (S-1-5-21-1656645954-2122459023-1707544868-1001 - Administrator - Enabled) => C:\Users\Mme OBAMA Invité (S-1-5-21-1656645954-2122459023-1707544868-501 - Administrator - Enabled) WDAGUtilityAccount (S-1-5-21-1656645954-2122459023-1707544868-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.) 3uTools (HKLM-x32\...\3uTools) (Version: 2.56.012 - ShangHai ZhangZheng Network Technology Co., Ltd.) Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.) Android Studio (HKLM\...\Android Studio) (Version: 4.2 - Google LLC) Apache NetBeans IDE 12.1 (HKLM\...\nbi-nb-all-12.1.0.0.200825) (Version: 12.1 - Apache NetBeans) Apple Mobile Device Support (HKLM\...\{527DD209-8A66-482F-8779-C7B3BACCA8F1}) (Version: 15.0.0.16 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 - Microsoft Corporation) BlueStacks 5 (HKLM\...\BlueStacks_nxt) (Version: 5.10.20.1002 - BlueStack Systems, Inc.) BlueStacks X (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\BlueStacks X) (Version: 0.19.22.1001 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty: Black Ops 2 (HKLM-x32\...\Call of Duty: Black Ops 2_is1) (Version: - ) Call of Duty: Modern Warfare 3 (HKLM-x32\...\Call of Duty: Modern Warfare 3_is1) (Version: - ) CDisplay 1.8 (HKLM-x32\...\CDisplay_is1) (Version: - dvd8n) CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Cisco Packet Tracer 7.2.2 32Bit (HKLM-x32\...\Cisco Packet Tracer 7.2.2 32Bit_is1) (Version: - Cisco Systems, Inc.) CodeBlocks (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\CodeBlocks) (Version: 20.03 - The Code::Blocks Team) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\CopyTrans Suite) (Version: 4.200 - WindSolutions) Dead Cells (HKLM-x32\...\Dead Cells_is1) (Version: - ) Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) FileZilla Client 3.55.1 (HKLM-x32\...\FileZilla Client) (Version: 3.55.1 - Tim Kosse) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.1.6871 - Foxit Software Inc.) Free Font Converter (HKLM-x32\...\{281C0470-7DBC-4ECF-A317-C64953E18466}}_is1) (Version: 1.0.0.0 - Media Freeware) GanttProject (HKLM-x32\...\GanttProject) (Version: - ) Git (HKLM\...\Git_is1) (Version: 2.33.0.2 - The Git Development Community) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 108.0.5359.125 - Google LLC) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel® Hardware Accelerated Execution Manager (HKLM\...\{7563302D-BD6B-4153-BA7D-3E3432E7C22D}) (Version: 7.5.6 - Intel Corporation) InVision Studio (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\invision-studio) (Version: 1.28.2 - InVisionApp) iTunes (HKLM\...\{39FB9B1F-D7CD-41D2-800D-2D887F2F8B2B}) (Version: 12.12.2.2 - Apple Inc.) Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation) Java SE Development Kit 8 Update 211 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180211}) (Version: 8.0.2110.12 - Oracle Corporation) Java(TM) SE Development Kit 17 (64-bit) (HKLM\...\{7111A3FA-CDA7-58DA-874C-94AAB58DCF67}) (Version: 17.0.0.0 - Oracle Corporation) Kite (HKLM\...\Kite) (Version: - Manhattan Engineering Inc) LDPlayer (HKLM-x32\...\LDPlayer4) (Version: 4.0.79 - XUANZHI INTERNATIONAL CO., LIMITED) Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.12.24 - Lenovo) Hidden LMMS 1.2.2 (HKLM-x32\...\LMMS) (Version: 1.2.2 - LMMS Developers) Microsoft Access 2019 - en-us (HKLM\...\Access2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Access 2019 - fr-fr (HKLM\...\Access2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 108.0.1462.54 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 108.0.1462.54 - Microsoft Corporation) Microsoft Excel 2019 - en-us (HKLM\...\Excel2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Excel 2019 - fr-fr (HKLM\...\Excel2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - en-us (HKLM\...\Proplus2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\OneDriveSetup.exe) (Version: 22.238.1114.0002 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-1003\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1656645954-2122459023-1707544868-500\...\OneDriveSetup.exe) (Version: 19.043.0304.0013 - Microsoft Corporation) Microsoft Outlook 2019 - en-us (HKLM\...\OutLook2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Outlook 2019 - fr-fr (HKLM\...\OutLook2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft PowerPoint 2019 - en-us (HKLM\...\PowerPoint2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft PowerPoint 2019 - fr-fr (HKLM\...\PowerPoint2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Project - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Project - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Publisher 2019 - en-us (HKLM\...\Publisher2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Publisher 2019 - fr-fr (HKLM\...\Publisher2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visio - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Visio - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.74.2 - Microsoft Corporation) Microsoft Word 2019 - en-us (HKLM\...\Word2019Retail - en-us) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Word 2019 - fr-fr (HKLM\...\Word2019Retail - fr-fr) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.26.01.03 - Huawei Technologies Co.,Ltd) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox (x86 en-US) (HKLM-x32\...\Mozilla Firefox 108.0.1 (x86 en-US)) (Version: 108.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.2.1 - Mozilla) Mozilla Thunderbird (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 91.7.0 (x86 fr)) (Version: 91.7.0 - Mozilla) My Orange (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\d6263d1304532a13faf14e20d62def84) (Version: 1.0 - Google\Chrome) Need for Speed Most Wanted version 1.5.0.0 (HKLM-x32\...\Need for Speed Most Wanted_is1) (Version: 1.5.0.0 - Electronic Arts Inc.) Node.js (HKLM\...\{FC8E0A42-D5A9-4AF2-A961-4EAC6C9605A0}) (Version: 16.16.0 - Node.js Foundation) NoxPlayer (HKLM-x32\...\Nox) (Version: 7.0.5.1 - Duodian Technology Co. Ltd.) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15831.20184 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.11001.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Opera Stable 79.0.4143.22 (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\Opera 79.0.4143.22) (Version: 79.0.4143.22 - Opera Software) Oracle VM VirtualBox 6.1.26 (HKLM\...\{FF58283C-7360-4B79-A23B-EAD2F6B4A25A}) (Version: 6.1.26 - Oracle Corporation) PowerISO (HKLM-x32\...\PowerISO) (Version: 7.7 - Power Software Ltd) ProtonVPN (HKLM-x32\...\{8C16DE53-E22C-406E-83C9-447D01A536B5}) (Version: 2.3.2 - Proton Technologies AG) Hidden ProtonVPN (HKLM-x32\...\ProtonVPN 2.3.2) (Version: 2.3.2 - Proton Technologies AG) ProtonVPNTap (HKLM-x32\...\{87BDF456-9882-44E6-8FFC-F73B83E42EAD}) (Version: 1.1.4 - Proton Technologies AG) ProtonVPNTun (HKLM-x32\...\{B1EBF050-CC3E-45B0-9DE5-339C6241F3DA}) (Version: 0.13.1 - Proton Technologies AG) Python 3.10.2 (64-bit) (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{c60fd5ac-367d-4e3a-a975-f157502ac30a}) (Version: 3.10.2150.0 - Python Software Foundation) Python 3.10.2 Add to Path (64-bit) (HKLM\...\{F55A8CCD-A817-4C53-91B8-4B7E6C49DA7B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Core Interpreter (64-bit) (HKLM\...\{6475B354-B0F6-4837-8738-784937D647B2}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Development Libraries (64-bit) (HKLM\...\{8277936D-8A34-4758-893C-0B29342A6F27}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Documentation (64-bit) (HKLM\...\{B51A07AD-9BCE-485D-8721-C7C83992794B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Executables (64-bit) (HKLM\...\{EDEE3162-8399-42D4-9D7C-7DA21275BFD0}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 pip Bootstrap (64-bit) (HKLM\...\{08B7036F-0609-4634-9A5F-1688230E9D9D}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Standard Library (64-bit) (HKLM\...\{D862D299-FDC2-4571-B3A1-27CEE951D2D1}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Tcl/Tk Support (64-bit) (HKLM\...\{7863DF45-23BB-4D83-97B3-CF08F3192F5B}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Test Suite (64-bit) (HKLM\...\{D68594E9-2F98-4EA0-8A94-5D7D9FF51960}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python 3.10.2 Utility Scripts (64-bit) (HKLM\...\{300F0759-8294-4971-9FAD-7AB19FA7B270}) (Version: 3.10.2150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{0CD41B07-EDF9-4B77-8C7C-CCCA1C435970}) (Version: 3.10.7686.0 - Python Software Foundation) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Remo Recover 6.0 (HKLM\...\{D3A96BCC-2220-48F2-83C2-F6084DEC30C3}_is1) (Version: 6.0.0.203 - Remo Software) Slack (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\slack) (Version: 4.27.154 - Slack Technologies Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TBIView 4.55 - TBIMount 1.24 - TBIHD 1.04 (HKLM-x32\...\{3368C32B-A096-4e82-B9C3-76572D693A58}_is1) (Version: - TeraByte Unlimited) Telegram Desktop (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.5.1 - Telegram FZ-LLC) TortoiseSVN 1.10.2.28392 (64 bit) (HKLM\...\{443D1749-EE02-4723-A726-9BDA18D75AE5}) (Version: 1.10.28392 - TortoiseSVN) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{3800CCFC-4006-4B30-A103-416AF26A885C}) (Version: 2.71.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Web Companion (HKLM-x32\...\{4bf94335-4cad-4d9c-af64-a5e715275c4d}) (Version: 7.0.2417.4248 - Lavasoft) WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH) Wondershare Filmora X(Build 10.0.10.20) (HKLM\...\Wondershare Filmora X_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) XAMPP (HKLM\...\xampp) (Version: 8.0.19-0 - Bitnami) Zoom (HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\ZoomUMX) (Version: 5.6.5 (823) - Zoom Video Communications, Inc.) Packages: ========= Adobe XD -> C:\Program Files\WindowsApps\Adobe.CC.XD_42.1.22.4_x64__adky2gkssdxte [2022-04-26] (Adobe Systems Incorporated) Hidden City : Jeu d’objets cachés -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.52.5200.0_x86__ytsefhwckbdv6 [2022-12-31] (G5 Entertainment AB) Logo Maker & Logo Generator -> C:\Program Files\WindowsApps\33865VideoStudio.LogoMakerLogoGenerator_1.0.7.0_x64__j9hpnndqvt73r [2022-12-31] (VideoStudio) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt [2022-12-31] (Meta) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-11-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-11-25] (Microsoft Corporation) [MS Ad] Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.86.53503.0_x64__8wekyb3d8bbwe [2022-12-31] (Microsoft Corporation) [Startup Task] Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-30] (Microsoft Corporation) Singe MP3 -> C:\Program Files\WindowsApps\singemp3.app-CBAD5B75_1.0.0.1_neutral__94h5jpx31znhe [2022-11-25] (singemp3.app) Singe MP3 -> C:\Program Files\WindowsApps\singemp3.plus-4E03BA22_1.0.0.1_neutral__88y836pay2hvm [2022-11-25] (singemp3.plus) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-31] (Microsoft Studios) [MS Ad] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2248.9.0_x64__cv1g1gvanyjgm [2022-12-31] (WhatsApp Inc.) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => Pas de fichier CustomCLSID: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Proton Technologies AG -> ProtonVPN) ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-01-12] (Notepad++ -> ) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-02-15] (Foxit Software Incorporated -> Foxit Software Inc.) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net) ContextMenuHandlers3: [SmadExt] -> {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C} => C:\Program Files (x86)\Smadav\SmadExtc64.dll [2019-10-18] (Zainuddin Nafarin -> Smadsoft) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd) ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net) ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-02-15] (Foxit Software Incorporated -> Foxit Software Inc.) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-06-22] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd) ContextMenuHandlers6: [SmadExt] -> {8AB81E72-CB2F-11D3-8D3B-AC2F34F1FA3C} => C:\Program Files (x86)\Smadav\SmadExtc64.dll [2019-10-18] (Zainuddin Nafarin -> Smadsoft) ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2018-10-08] (Open Source Developer, Stefan KUENG -> hxxps://tortoisesvn.net) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__mhndijogcbfpngmlgfafhbklibdjchpe\Singe MP3.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=mhndijogcbfpngmlgfafhbklibdjchpe --app-url=hxxps://singemp3.plus/?app --app-launch-source=4 ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__ffinbaokfcigolmjddabafmbdggpkhfc\Singe MP3.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ffinbaokfcigolmjddabafmbdggpkhfc --app-url=hxxps://singemp3.app/?mode=PWA --app-launch-source=4 ShortcutWithArgument: C:\Users\Mme OBAMA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\My Orange.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=jbdglackglbhnbnoinhcmfhbbdnopfng ==================== Modules chargés (Avec liste blanche) ============= 2023-01-11 00:31 - 2023-01-11 00:31 - 000433152 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libEGL_translator.DLL 2023-01-11 00:31 - 2023-01-11 00:31 - 001638912 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libGLES_CM_translator.DLL 2023-01-11 00:31 - 2023-01-11 00:31 - 002422784 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libGLES_V2_translator.DLL 2023-01-11 00:31 - 2023-01-11 00:31 - 000568832 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libopenglrenderplus.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 000037888 _____ () [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\NOXa.dll 2022-11-23 19:38 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2022-11-23 19:38 - 2017-09-12 10:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_10580_133178620784085517\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_10580_133178620784085517\win32gui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\win32api.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12080_133178626143063365\win32gui.pyd 2023-01-11 00:30 - 2023-01-11 00:30 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12276_133178668646103120\pywintypes39.dll 2023-01-11 00:30 - 2023-01-11 00:30 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12276_133178668646103120\win32gui.pyd 2023-01-11 00:23 - 2023-01-11 00:23 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\_win32sysloader.pyd 2023-01-11 00:24 - 2023-01-11 00:24 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\pythoncom39.dll 2023-01-11 00:24 - 2023-01-11 00:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\pywintypes39.dll 2023-01-11 00:24 - 2023-01-11 00:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\win32api.pyd 2023-01-11 00:24 - 2023-01-11 00:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\win32gui.pyd 2023-01-11 00:24 - 2023-01-11 00:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_12668_133178665030134196\winxpgui.pyd 2023-01-10 23:35 - 2023-01-10 23:35 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\pywintypes39.dll 2023-01-10 23:35 - 2023-01-10 23:35 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\win32api.pyd 2023-01-10 23:35 - 2023-01-10 23:35 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_13180_133178636233888998\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1484_133178572653706509\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1484_133178572653706509\win32gui.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\_win32sysloader.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\pythoncom39.dll 2023-01-10 22:34 - 2023-01-10 22:34 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\pywintypes39.dll 2023-01-10 22:34 - 2023-01-10 22:34 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\win32api.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\win32gui.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_1488_133178600390552437\winxpgui.pyd 2023-01-10 22:26 - 2023-01-10 22:28 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\_cffi_backend.pyd 2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\_win32sysloader.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\Crypto\Math\_modexp.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\pythoncom39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\win32api.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_2924_133178583923028955\winxpgui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\win32api.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\win32gui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3088_133178630240836935\winxpgui.pyd 2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\_win32sysloader.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\pythoncom39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3592_133178611935775553\winxpgui.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3748_133178597242159636\pywintypes39.dll 2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3748_133178597242159636\win32gui.pyd 2023-01-10 22:26 - 2023-01-10 22:28 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\_cffi_backend.pyd 2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\_win32sysloader.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\Crypto\Math\_modexp.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\pythoncom39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\win32api.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_3944_133178578784385360\winxpgui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_4368_133178627935084931\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_4368_133178627935084931\win32gui.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\_cffi_backend.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\_win32sysloader.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\Crypto\Math\_modexp.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000061952 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\greenlet\_greenlet.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000015872 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\markupsafe\_speedups.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000068608 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\psutil\_psutil_windows.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\pythoncom39.dll 2023-01-10 21:23 - 2023-01-10 21:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\pywintypes39.dll 2023-01-10 21:23 - 2023-01-10 21:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\win32api.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\win32gui.pyd 2023-01-10 21:23 - 2023-01-10 21:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5704_133178558272091980\winxpgui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5828_133178584674672860\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_5828_133178584674672860\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\win32api.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_6340_133178629648698575\win32gui.pyd 2023-01-10 22:29 - 2023-01-10 22:29 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\_win32sysloader.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\pythoncom39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\win32api.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7428_133178576265019713\winxpgui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7604_133178624728958510\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7604_133178624728958510\win32gui.pyd 2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\_win32sysloader.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\pythoncom39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_7896_133178607725501511\winxpgui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\win32api.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8032_133178569217932552\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\win32api.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8176_133178581247541905\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8180_133178609493735785\winxpgui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8388_133178603959169437\winxpgui.pyd 2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\_win32sysloader.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8604_133178602658227508\winxpgui.pyd 2023-01-10 23:21 - 2023-01-10 23:21 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\_win32sysloader.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8624_133178613779586144\winxpgui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\pywintypes39.dll 2023-01-10 23:24 - 2023-01-10 23:24 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\win32api.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\win32gui.pyd 2023-01-10 23:24 - 2023-01-10 23:24 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_8672_133178618417540109\winxpgui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9208_133178622068412824\winxpgui.pyd 2023-01-10 23:18 - 2023-01-10 23:19 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\_cffi_backend.pyd 2023-01-10 23:22 - 2023-01-10 23:22 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\_win32sysloader.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\pythoncom39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\pywintypes39.dll 2023-01-10 23:23 - 2023-01-10 23:23 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\win32api.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\win32gui.pyd 2023-01-10 23:23 - 2023-01-10 23:23 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9340_133178610104387656\winxpgui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9640_133178589870594640\pywintypes39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9640_133178589870594640\win32gui.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000183296 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\_cffi_backend.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000014336 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\_win32sysloader.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000047616 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\Crypto\Math\_modexp.pyd 2023-01-10 22:33 - 2023-01-10 22:33 - 000668160 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\pythoncom39.dll 2023-01-10 22:33 - 2023-01-10 22:33 - 000139776 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\pywintypes39.dll 2023-01-10 22:34 - 2023-01-10 22:34 - 000132096 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\win32api.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000227328 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\win32gui.pyd 2023-01-10 22:34 - 2023-01-10 22:34 - 000633856 _____ () [Fichier non signé] C:\Users\Mme OBAMA\AppData\Local\Temp\onefile_9768_133178594305007471\winxpgui.pyd 2023-01-11 00:28 - 2023-01-11 00:28 - 000007168 _____ () [Fichier non signé] D:\Program Files\Nox\bin\firewall_mgr.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000498688 _____ () [Fichier non signé] D:\Program Files\Nox\bin\hlog4qt1.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 025709359 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icudt57.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 004264645 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icuin57.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 002371226 _____ () [Fichier non signé] D:\Program Files\Nox\bin\icuuc57.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000120334 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libgcc_s_dw2-1.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000091599 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libqrencode.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 053218152 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libQt5WebKit.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000572862 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libQt5WebKitWidgets.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 001540622 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libstdc++-6.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 002639092 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libxml2-2.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000927742 _____ () [Fichier non signé] D:\Program Files\Nox\bin\libxslt-1.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000221696 _____ () [Fichier non signé] D:\Program Files\Nox\bin\NoxCommon.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000663040 _____ () [Fichier non signé] D:\Program Files\Nox\bin\QZXing2.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 001047552 _____ () [Fichier non signé] D:\Program Files\Nox\bin\SDL2.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000239616 _____ () [Fichier non signé] D:\Program Files\Nox\bin\UICommon.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000617984 _____ () [Fichier non signé] D:\Program Files\Nox\bin\VBoxApi.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000059904 _____ () [Fichier non signé] D:\Program Files\Nox\bin\VMProtectSDK32.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000059392 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] D:\Program Files\Nox\plugins\imageformats\qdds.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000517120 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] D:\Program Files\Nox\plugins\imageformats\qjp2.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000097792 _____ (Google, inc) [Fichier non signé] D:\Program Files\Nox\bin\AdbWinApi.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000062976 _____ (Google, inc) [Fichier non signé] D:\Program Files\Nox\bin\AdbWinUsbApi.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000049152 _____ (MingW-W64 Project. All rights reserved.) [Fichier non signé] D:\Program Files\Nox\bin\libwinpthread-1.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 000390656 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libcurl.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 001253376 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] D:\Program Files\Nox\bin\libcurl.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 002866688 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libcrypto-x64.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 000477696 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\libssl-x64.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 002114048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\x86\libcrypto.dll 2023-01-11 00:31 - 2023-01-11 00:31 - 000371712 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Bignox\BigNoxVM\RT\x86\libssl.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 001214976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files\Nox\bin\LIBEAY32.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000275456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Program Files\Nox\bin\ssleay32.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 006147224 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] D:\Program Files\Nox\bin\Qt5Core.dll 2023-01-11 00:28 - 2023-01-11 00:28 - 000407536 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] D:\Program Files\Nox\bin\Qt5Positioning.dll 2022-11-23 19:38 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-07-09] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-27] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-09-15 08:31 - 2022-11-23 20:38 - 000000354 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 2022-01-13 15:37 - 2022-01-13 15:52 - 000000390 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Java\jdk-17\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\TortoiseSVN\bin;C:\Program Files\Git\cmd;C:\xampp\mysql\bin\;C:\Program Files\nodejs\;C:\xampp\php;C:\composer HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mme OBAMA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper HKU\S-1-5-21-1656645954-2122459023-1707544868-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg HKU\S-1-5-21-1656645954-2122459023-1707544868-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. Network Binding: ============= Ethernet 3: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 7: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Connexion au réseau local: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Wi-Fi 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "boincmgr" HKLM\...\StartupApproved\Run: => "boinctray" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "RtHDVCpl" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Google Desktop Search" HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "ut" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Kite" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_439BFEE0F5825C99DC4962F8B9E16AE2" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Speech Recognition" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-1656645954-2122459023-1707544868-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{B266D463-95E5-49AF-B163-97B9EBB61EF8}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\77.0.4054.80\opera.exe => Pas de fichier FirewallRules: [{A90BDBE1-A985-4982-9FA8-2AEE4D67C890}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{473F0E58-C6A2-4462-9E8D-2D273407840F}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{3F424260-066E-43CB-87EF-B059A8FEBFB6}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé] FirewallRules: [TCP Query User{D4D0AAA5-F8FE-483E-9C89-CBC246AF12B8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé] FirewallRules: [UDP Query User{B9B0A038-6915-4ECE-9540-D6E78C7338A7}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{3CC59E09-6118-4463-835A-95A696CCB4E9}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{30B90B8D-F832-453C-83B3-E3973EB35CAE}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [TCP Query User{0C246ADE-457D-4CF0-BFE3-0610C65B27A2}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [UDP Query User{ADA35027-2ED8-45B7-BDB6-9635F8366C74}C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe] => (Allow) C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe => Pas de fichier FirewallRules: [TCP Query User{3DD03544-23B9-4108-BE00-BB4A950CD89C}C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe] => (Allow) C:\program files (x86)\cisco packet tracer 5.3\bin\packettracer5.exe => Pas de fichier FirewallRules: [UDP Query User{B43A7C62-7883-4DB7-AFDB-FB463CEC9F03}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{F88E162C-BDBB-4953-A55D-8944E16B06EE}C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\mme obama\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2C520452-9A7F-4622-96C8-DBB7C205440E}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{1874803D-1447-4A01-8776-AE27B4085848}] => (Allow) C:\Users\Mme OBAMA\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc.) [Fichier non signé] FirewallRules: [{C16F0889-803F-4648-8B8C-A4F2D743EA4C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Pas de fichier FirewallRules: [{362AA066-EA75-4CF7-9CE1-B97B4C56ADD7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Pas de fichier FirewallRules: [{E801D0C0-5370-4D00-B539-2E88D57FD57A}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\77.0.4054.90\opera.exe => Pas de fichier FirewallRules: [TCP Query User{B7A0237E-23D3-48FC-9DA9-701EEE96134E}C:\program files\java\jdk-16.0.1\bin\java.exe] => (Allow) C:\program files\java\jdk-16.0.1\bin\java.exe => Pas de fichier FirewallRules: [UDP Query User{34020064-C933-4031-93F5-3F793379A24A}C:\program files\java\jdk-16.0.1\bin\java.exe] => (Allow) C:\program files\java\jdk-16.0.1\bin\java.exe => Pas de fichier FirewallRules: [TCP Query User{DE5416BE-15DE-4477-A256-A7CAC1181CFA}D:\games\call of duty - black ops 2\t6sp.exe] => (Allow) D:\games\call of duty - black ops 2\t6sp.exe (Activision Publishing Inc.) [Fichier non signé] FirewallRules: [UDP Query User{A14C0034-408F-4E46-B58D-70FA338B97A7}D:\games\call of duty - black ops 2\t6sp.exe] => (Allow) D:\games\call of duty - black ops 2\t6sp.exe (Activision Publishing Inc.) [Fichier non signé] FirewallRules: [TCP Query User{561F8418-14E3-4EBC-A21F-BD5AFA047633}D:\games\call of duty - black ops 2\t6zm - zombies offline.exe] => (Allow) D:\games\call of duty - black ops 2\t6zm - zombies offline.exe (Activision Publishing Inc.) [Fichier non signé] FirewallRules: [UDP Query User{0BA0E4A8-EE64-4E93-8053-78B64EB0D01D}D:\games\call of duty - black ops 2\t6zm - zombies offline.exe] => (Allow) D:\games\call of duty - black ops 2\t6zm - zombies offline.exe (Activision Publishing Inc.) [Fichier non signé] FirewallRules: [TCP Query User{303B0DF8-7EE6-43E0-9097-5A765F5EDDF7}D:\format factory\formatfactory\formatfactory.exe] => (Allow) D:\format factory\formatfactory\formatfactory.exe (Free Time Co., Ltd.) [Fichier non signé] FirewallRules: [UDP Query User{6E5442AD-315E-43F5-9E07-089262B73106}D:\format factory\formatfactory\formatfactory.exe] => (Allow) D:\format factory\formatfactory\formatfactory.exe (Free Time Co., Ltd.) [Fichier non signé] FirewallRules: [{072B079D-B087-4F2E-AEF6-7D3AF661B3CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe => Pas de fichier FirewallRules: [TCP Query User{1FF47D15-3568-44B4-9C93-0E82BA7C6B91}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{34C669E3-F3B7-4198-8CAA-EB579428D897}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{41240949-1BD7-4481-99F7-EBE04D15DC0F}C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe => Pas de fichier FirewallRules: [UDP Query User{8916344E-81E7-4926-9A36-4B44190BFBB7}C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe] => (Allow) C:\wamp64\bin\apache\apache2.4.33\bin\httpd.exe => Pas de fichier FirewallRules: [TCP Query User{EF940768-A140-4520-ABE3-801380648C52}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé] FirewallRules: [UDP Query User{7E8C768A-190B-4F5F-B29C-C9BC594C0F01}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé] FirewallRules: [{E98024FC-C232-4C4C-8CE6-2A76E3D6F667}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Fichier non signé] FirewallRules: [{315DCE14-644D-44DD-8150-2553E4A7378C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) [Fichier non signé] FirewallRules: [{0379048B-FE08-41EC-90D3-35DD27983419}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{D476D5E7-E0A7-4005-B704-93F3C23A8C4A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier FirewallRules: [{B0E11C79-92F0-464A-AE6E-CE667B420F41}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier FirewallRules: [{0B087FE7-A02E-4602-85B6-6FDF306E27FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier FirewallRules: [TCP Query User{09C6CEF3-32B3-4A6A-AC04-E90A1EB30886}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{EBF079CA-88D1-41B5-B861-D0E001D46826}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{5EEE8803-83C6-450C-BC95-F7A54907C9F5}D:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) D:\games\call of duty - modern warfare 3\iw5sp.exe => Pas de fichier FirewallRules: [UDP Query User{5EC3D4DF-A420-4792-9135-0FAD7EADAEED}D:\games\call of duty - modern warfare 3\iw5sp.exe] => (Allow) D:\games\call of duty - modern warfare 3\iw5sp.exe => Pas de fichier FirewallRules: [TCP Query User{49E149ED-ED25-49EA-A2F9-0C79F80D7D52}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Fichier non signé] FirewallRules: [UDP Query User{48FF2A9E-B65F-472A-AAE4-4E60D0379BC5}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Fichier non signé] FirewallRules: [TCP Query User{01EC3717-4E8D-4383-AD0D-11EE4C05DC07}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe (David Harris) [Fichier non signé] FirewallRules: [UDP Query User{A13F3682-3254-4BD1-A1E5-810B7F689352}C:\xampp\mercurymail\mercury.exe] => (Allow) C:\xampp\mercurymail\mercury.exe (David Harris) [Fichier non signé] FirewallRules: [TCP Query User{99A90EDD-7AF7-443F-B221-73E18F586F85}C:\program files\java\jdk1.8.0_211\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_211\bin\java.exe => Pas de fichier FirewallRules: [UDP Query User{415389C6-15BA-49B3-95CE-5BBD1D1A476A}C:\program files\java\jdk1.8.0_211\bin\java.exe] => (Allow) C:\program files\java\jdk1.8.0_211\bin\java.exe => Pas de fichier FirewallRules: [TCP Query User{3C22C16B-A192-4A2A-B6DB-54945E825E7F}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [UDP Query User{9728AD22-F274-4EA9-909F-D14BE92509C5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [TCP Query User{96AF187D-6CD9-43DB-9D6A-3F979B6AE734}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé] FirewallRules: [UDP Query User{B9414904-88D9-4A9E-99C6-B76BA096B81F}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe () [Fichier non signé] FirewallRules: [TCP Query User{AB4785FA-2364-459D-AADC-03D69AC013E5}C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe] => (Allow) C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe => Pas de fichier FirewallRules: [UDP Query User{483C0528-2D9E-4DD1-91F0-DA4DC51EC0BA}C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe] => (Allow) C:\users\mme obama\appdata\local\programs\squid_game\squid game.exe => Pas de fichier FirewallRules: [TCP Query User{57C37ADD-FDFD-421B-9F4F-0663006C79ED}F:\_oceanofgames.com_blur\blur\blur.exe] => (Allow) F:\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [UDP Query User{5FBB045F-E737-4BBE-80F0-0BFC78777478}F:\_oceanofgames.com_blur\blur\blur.exe] => (Allow) F:\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [TCP Query User{E80E8E44-BCF3-4E2C-B9DE-A1C7CD71BDB9}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [UDP Query User{C1AEA3B5-00FF-462D-976A-EEDC942D6C96}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [TCP Query User{576282C4-993E-4E8A-941D-337337085CC6}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe FirewallRules: [UDP Query User{02409E6E-9CB0-4B1F-A34E-97AB2C130F24}C:\program files\java\jdk-17\bin\java.exe] => (Allow) C:\program files\java\jdk-17\bin\java.exe FirewallRules: [{F602D0C1-357C-4A8A-9E94-5EF6144C65C6}] => (Allow) C:\Program Files\iTunes\iTunes.exe => Pas de fichier FirewallRules: [TCP Query User{2E2EC0D4-9CD4-4526-8000-EFDF2B5E638A}C:\windows\system32\settingsynchost.exe] => (Allow) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [UDP Query User{8B7A1D33-E87E-4B7A-8575-61F86C7E382B}C:\windows\system32\settingsynchost.exe] => (Allow) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{43F04FBD-EF1E-4A47-BBFA-FC827C90A829}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [UDP Query User{BE2D8E57-0088-4BDB-A919-F34AA5FFA43C}D:\games\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\games\_oceanofgames.com_blur\blur\blur.exe => Pas de fichier FirewallRules: [TCP Query User{09097744-B443-44DD-BE36-BF49173C6A8C}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé] FirewallRules: [UDP Query User{1980DCA7-A560-4D85-856F-756ED1B9BD67}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Allow) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé] FirewallRules: [TCP Query User{F869C7EB-8731-45DE-9699-451640B5CABE}D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe] => (Allow) D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe => Pas de fichier FirewallRules: [UDP Query User{ED245452-8868-411B-9B25-EE67B5024678}D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe] => (Allow) D:\jeux\citra-2021-09-21-nightly-build-19617f7 (1)\nightly-mingw\citra-qt.exe => Pas de fichier FirewallRules: [TCP Query User{7B377FE5-BA55-4499-99B2-923A757D1376}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Allow) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé] FirewallRules: [UDP Query User{1EF2CB5A-5399-4FE4-897C-D13EF9ED075F}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Allow) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé] FirewallRules: [{EB2037CA-4829-4A73-92D3-2CA1A8D98FEB}] => (Allow) C:\Users\Mme OBAMA\Downloads\4ukey.exe => Pas de fichier FirewallRules: [{7B3E0C82-8D39-4815-BDC0-EE601DAFE050}] => (Allow) C:\Users\Mme OBAMA\Downloads\4ukey.exe => Pas de fichier FirewallRules: [{c079144c-0cf5-4867-9c45-9a50fab0d9a8}] => (Allow) C:\Program Files\ldplayerbox\LdVBoxHeadless.exe => Pas de fichier FirewallRules: [TCP Query User{9AF60CA4-AE95-4144-B7E9-71177260C224}G:\setup\monopoly plus\monopoly.exe] => (Allow) G:\setup\monopoly plus\monopoly.exe => Pas de fichier FirewallRules: [UDP Query User{1678B18A-ACBD-4908-B214-8FCEDB8FF19C}G:\setup\monopoly plus\monopoly.exe] => (Allow) G:\setup\monopoly plus\monopoly.exe => Pas de fichier FirewallRules: [TCP Query User{18358127-2BFE-4940-854E-0D46AE3EB8A2}G:\blur\blur.exe] => (Block) G:\blur\blur.exe => Pas de fichier FirewallRules: [UDP Query User{EB54FFBD-BC33-4D19-903D-8B39331B988E}G:\blur\blur.exe] => (Block) G:\blur\blur.exe => Pas de fichier FirewallRules: [{921FA648-B1A6-41C9-A49D-10A95DF50A5E}] => (Allow) D:\perso\3uTools\install\libXunlei\Download\MiniThunderPlatform.exe (深圳市迅雷网络技术有限公司) [Fichier non signé] FirewallRules: [{409577A6-4A42-4F1F-9044-7CAAED32FD9B}] => (Allow) D:\perso\3uTools\install\libXunlei\Download\MiniThunderPlatform.exe (深圳市迅雷网络技术有限公司) [Fichier non signé] FirewallRules: [{739FC1E4-0E4A-42FE-8D70-C9C01DBF3DBC}] => (Allow) LPort=80 FirewallRules: [TCP Query User{DD2887F2-0A42-4A27-8BCF-8DEDD3105D95}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier FirewallRules: [UDP Query User{D40AB8B4-E52F-477A-A54F-779959828905}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier FirewallRules: [TCP Query User{4723F19C-59F3-4EB1-AE46-54F674A04741}C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe] => (Allow) C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe => Pas de fichier FirewallRules: [UDP Query User{5894168E-ABB4-45E3-A358-DF0D9288FEE2}C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe] => (Allow) C:\laragon\bin\nginx\nginx-1.14.0\nginx.exe => Pas de fichier FirewallRules: [TCP Query User{07FB37D2-A5FC-414C-9D2C-B89099D02F84}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{6EB84090-B2F9-4D82-BDFD-C2AFF49B94D8}D:\ecole\microsoft vs code\code.exe] => (Allow) D:\ecole\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{A3D1551F-EA29-49AF-8085-3BD4F8C23583}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier FirewallRules: [UDP Query User{01E25394-D19E-445A-B38F-E4A3265D17B6}C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe] => (Allow) C:\laragon\bin\mysql\mysql-5.1.72-win32\bin\mysqld.exe => Pas de fichier FirewallRules: [{01DC7568-6484-4617-AE1B-76228801308C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe => Pas de fichier FirewallRules: [{468B37FD-E2C2-4C0C-BC1E-90897886B686}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe => Pas de fichier FirewallRules: [{41256E65-84B1-4FB4-8850-0C4F40D867D7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe => Pas de fichier FirewallRules: [{DDAE1000-CF7F-437D-AEA0-FDCB8D11173C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe => Pas de fichier FirewallRules: [TCP Query User{5D6A3789-AF4E-46C3-BCBB-BBB2CF999EAE}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Allow) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe FirewallRules: [UDP Query User{E95A3F18-2ED8-409A-84AC-465C8B1409D9}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Allow) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe FirewallRules: [TCP Query User{41B240B8-D0D7-496F-8D31-8D73B94B6DF0}D:\jeux\pes 2021\pes2021.exe] => (Allow) D:\jeux\pes 2021\pes2021.exe => Pas de fichier FirewallRules: [UDP Query User{743CF884-A73F-456F-8F7A-7CF55D4EE3E6}D:\jeux\pes 2021\pes2021.exe] => (Allow) D:\jeux\pes 2021\pes2021.exe => Pas de fichier FirewallRules: [TCP Query User{D5CFECC3-1329-4FCA-BBC3-1B8ED658896C}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé] FirewallRules: [UDP Query User{81B1416B-A569-4179-B4D3-D4A6F8459167}D:\jeux\need for speed most wanted\nfs13.exe] => (Allow) D:\jeux\need for speed most wanted\nfs13.exe (Electronic Arts) [Fichier non signé] FirewallRules: [TCP Query User{7D31C1C7-11B1-4C03-B84C-64E56541C02F}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Block) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé] FirewallRules: [UDP Query User{EC752F1E-16E7-4706-8DCD-E0C9EE15F6AA}D:\jeux\_oceanofgames.com_blur\blur\blur.exe] => (Block) D:\jeux\_oceanofgames.com_blur\blur\blur.exe () [Fichier non signé] FirewallRules: [TCP Query User{5FADB142-3841-4033-B564-E41D51964B73}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Block) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé] FirewallRules: [UDP Query User{B980846C-5198-4342-BF4D-73A55773989E}D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe] => (Block) D:\jeux\call of duty - modern warfare 3\call of duty (solo mode).exe () [Fichier non signé] FirewallRules: [{8E1A30CD-6129-4CE0-BC7F-9DC2F35BF874}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A2EF7498-4464-44E7-9015-2F901F028059}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{E6411BB0-624F-4E7D-958E-4032542D11AC}I:\setup\jeux\monopoly plus\monopoly.exe] => (Allow) I:\setup\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio) FirewallRules: [UDP Query User{5936B25F-57A8-4A25-97B3-A847A1FD7824}I:\setup\jeux\monopoly plus\monopoly.exe] => (Allow) I:\setup\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio) FirewallRules: [TCP Query User{1CA572BB-7B47-4B90-944B-5F2BCC155EA5}D:\jeux\monopoly plus\monopoly.exe] => (Allow) D:\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio) FirewallRules: [UDP Query User{76427408-8758-4C0B-B020-3A44274A1DAC}D:\jeux\monopoly plus\monopoly.exe] => (Allow) D:\jeux\monopoly plus\monopoly.exe (Ubisoft Entertainment -> Asobo Studio) FirewallRules: [TCP Query User{3F2427A8-FB9A-4E54-A8E4-2DA388E448DC}C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe => Pas de fichier FirewallRules: [UDP Query User{24F38890-955C-4E34-B673-DED67301B515}C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.1.1\bin\packettracer7.exe => Pas de fichier FirewallRules: [TCP Query User{A5D0E11E-E7F2-497C-BCCB-459188141AC5}C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé] FirewallRules: [UDP Query User{A0B1E01B-A367-4293-A453-C20F981D0CF1}C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.2.2\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé] FirewallRules: [{05CFF27E-DAF6-46DE-AA86-5A589D4F3E60}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{B48CC0A2-2A5B-4194-9726-4EA2B994E405}C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé] FirewallRules: [UDP Query User{5E160BE5-DDD3-42FC-9DBF-A0FB2543E575}C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe] => (Allow) C:\program files (x86)\cisco packet tracer 7.3.1\bin\packettracer7.exe (Cisco Systems, Inc) [Fichier non signé] FirewallRules: [{746FB713-902C-48BB-B953-F3890B458287}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F3F098BF-C8A0-4137-9DD1-F11F05336F95}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8367408E-5070-4309-9B27-70BE70CFD94B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3FA10682-0553-4E70-92B7-3B3C5D9ADB70}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{90EC6839-30B7-4512-91C0-1D81662FA2DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E5F4DB0A-8F97-48B4-9985-4546C1A1FA31}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{90D1A98C-2005-45F1-9D2E-4B5DB1F72404}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{EBA10B44-3AD9-4C13-8513-454953049DF2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{e5111893-d9f2-41dc-a70a-a717acc2c238}] => (Allow) C:\Program Files\ldplayerbox\LdVBoxHeadless.exe => Pas de fichier FirewallRules: [{8F5C3754-C10B-44DD-9CC9-249259A822CC}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22\opera.exe => Pas de fichier FirewallRules: [{1C3244DC-C543-42AC-A629-261314411C33}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\94.0.4606.38\opera.exe => Pas de fichier FirewallRules: [{47D7460E-258C-4168-833A-C37C14474A5A}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Pas de fichier FirewallRules: [{43706A37-AABD-47A7-A534-29B0D887D2DA}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (COMPANY NAME) [Fichier non signé] FirewallRules: [{E16A8A1A-372B-40B0-8C35-3896B718B0CD}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => Pas de fichier FirewallRules: [{CD447B80-EF5C-4FF8-AE9B-7B32CD886AC2}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe (COMPANY NAME) [Fichier non signé] FirewallRules: [{815CEE20-96CC-416A-90E5-7564E3BF0C5A}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Pas de fichier FirewallRules: [{B2DB4CB6-52D4-46D3-83FB-E6D054E99963}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (The Qt Company Ltd.) [Fichier non signé] FirewallRules: [{B2109B42-BDF5-4A5E-844E-9390B2686B2D}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{F005A7BC-6882-4ACB-B79C-46D698882F85}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{D149222C-3280-4737-8588-59E1CAC2755A}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{B2F86C7F-E4BC-4076-8A93-721C85313844}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{8CF9BB37-6484-4ABA-BA9F-0C46B85AECF4}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{55CF804B-4CC4-40B3-80E3-F12D5D85C748}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{8A7AA9E6-D8A8-4753-B056-662E75AE4E4D}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [{1BC701AE-30BE-4A38-B677-86C94E7BA889}] => (Allow) C:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe => Pas de fichier FirewallRules: [TCP Query User{9AFA6A00-8D5B-42C8-84A2-40BB3B4A133F}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Block) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe FirewallRules: [UDP Query User{35A2EDD1-7F3A-4F1A-9BC6-03058E6FF250}C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe] => (Block) C:\users\mme obama\.vscode\extensions\redhat.java-1.9.0-win32-x64\jre\17.0.3-win32-x86_64\bin\java.exe FirewallRules: [{2C58FD1A-2CA9-4171-AB2A-9217C4F165D2}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.) FirewallRules: [{BD1217D0-7FE4-4D9B-AF2A-B09EAF56D62F}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> Nox Limited Corporation) FirewallRules: [{094DC913-AD25-49E9-A197-286A5F761BE1}] => (Allow) C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22_0\opera.exe => Pas de fichier ==================== Points de restauration ========================= Vérifiez le service "VSS" ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Port série PCI Description: Port série PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/11/2023 02:38:47 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante PerceptionSimulationService.exe, version : 10.0.19041.746, horodatage : 0xc9bed736 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000795dd6 ID du processus défaillant : 0x9a4 Heure de début de l’application défaillante : 0x01d92548ea6af02c Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe Chemin d’accès du module défaillant: unknown ID de rapport : fd352cad-b71d-46fa-aacf-d7fbf760f1c9 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2023 02:23:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante spectrum.exe, version : 10.0.19041.1741, horodatage : 0xc3776529 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000765dd6 ID du processus défaillant : 0x2b98 Heure de début de l’application défaillante : 0x01d925486fa05274 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\spectrum.exe Chemin d’accès du module défaillant: unknown ID de rapport : 2ba1507a-2f5e-4e23-a8eb-e0efb3f9dd17 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2023 02:14:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SensorDBSynch.exe, version : 4.5.519.0, horodatage : 0x5ad9a4d0 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000009b5dd6 ID du processus défaillant : 0x1638 Heure de début de l’application défaillante : 0x01d92530597e7a10 Chemin d’accès de l’application défaillante : C:\Program Files\Synaptics\SynFp\Shared\SensorDBSynch.exe Chemin d’accès du module défaillant: unknown ID de rapport : 30e4f1da-4ed4-4ccc-bbdf-3bce2a9f5eaa Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2023 02:08:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchApp.exe, version : 10.0.19041.2364, horodatage : 0x67bfcd81 Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.2364, horodatage : 0x5b7d4d22 Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000010fe32 ID du processus défaillant : 0x25ac Heure de début de l’application défaillante : 0x01d9253e7e5edfda Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : b7fb94a7-31bf-40de-b86d-fffee5569608 Nom complet du package défaillant : Microsoft.Windows.Search_1.14.7.19041_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : CortanaUI Error: (01/11/2023 12:39:02 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante installer.exe, version : 79.0.4143.22, horodatage : 0x613b575b Nom du module défaillant : Opera_installer_230110233450874_unloaded, version : 79.0.4143.22, horodatage : 0x613b575b Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000d0022 ID du processus défaillant : 0x2764 Heure de début de l’application défaillante : 0x01d9254c219627ec Chemin d’accès de l’application défaillante : C:\Users\Mme OBAMA\AppData\Local\Programs\Opera\79.0.4143.22_0\installer.exe Chemin d’accès du module défaillant: Opera_installer_230110233450874 ID de rapport : 773fb424-75d5-4064-b25a-34da382b08b0 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2023 12:11:44 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante PerceptionSimulationService.exe, version : 10.0.19041.746, horodatage : 0xc9bed736 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000c15dd6 ID du processus défaillant : 0x119c Heure de début de l’application défaillante : 0x01d925321c011695 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe Chemin d’accès du module défaillant: unknown ID de rapport : 0843bcd3-b066-4cd8-a432-38b9d7add6be Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/11/2023 12:08:14 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante spectrum.exe, version : 10.0.19041.1741, horodatage : 0xc3776529 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000765dd6 ID du processus défaillant : 0x22cc Heure de début de l’application défaillante : 0x01d92531f94a3b77 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\spectrum.exe Chemin d’accès du module défaillant: unknown ID de rapport : e3ca7635-1282-4830-bd10-ee8a9c797966 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/10/2023 11:55:39 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 9.1.2023.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 1c80 Heure de début : 01d92540b4247ab8 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Users\Mme OBAMA\OneDrive\Bureau\FRST64.exe ID de rapport : 9128a4db-c4c2-4340-b5cc-cef385b4df12 Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Cross-process Erreurs système: ============= Error: (01/11/2023 03:22:18 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {883FF1FC-09E1-48E5-8E54-E2469ACB0CFD}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801} Error: (01/11/2023 03:05:06 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:48:11 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:48:09 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:48:06 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:45:52 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:45:49 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (01/11/2023 02:45:38 AM) (Source: DCOM) (EventID: 10000) (User: EMMANUEL5MICHEL) Description: Impossible de démarrer un serveur DCOM : {883FF1FC-09E1-48E5-8E54-E2469ACB0CFD}. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{F32D97DF-E3E5-4CB9-9E3E-0EB5B4E49801} Windows Defender: ================ Date: 2023-01-11 02:06:59 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {1ECD5D52-5129-4407-AEFB-35D3061E1F2C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse complète Utilisateur : AUTORITE NT\SERVICE RÉSEAU Date: 2023-01-10 20:55:20 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0 Nom : Backdoor:Win32/Zegost!ml ID : 2147772949 Gravité : Grave Catégorie : Porte dérobée Chemin : file:_D:\jeux\Monopoly Plus\_Redist\dxwebsetup.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0 Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-10 20:54:50 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0 Nom : Backdoor:Win32/Zegost!ml ID : 2147772949 Gravité : Grave Catégorie : Porte dérobée Chemin : file:_D:\jeux\Monopoly Plus\_Redist\dxwebsetup.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0 Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-10 20:53:22 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Backdoor:Win32/Zegost!ml&threatid=2147772949&enterprise=0 Nom : Backdoor:Win32/Zegost!ml ID : 2147772949 Gravité : Grave Catégorie : Porte dérobée Chemin : file:_D:\jeux\Dead Cells\_Redist\dxwebsetup.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0 Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-10 19:40:52 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/AgentTesla!ml&threatid=2147760503&enterprise=0 Nom : Trojan:Win32/AgentTesla!ml ID : 2147760503 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Program Files\BlueStacks_nxt\HD-Player.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : 😎ARCHANGE♣MICH\Emmanuel Michel Nom du processus : C:\Program Files\BlueStacks_nxt\HD-MultiInstanceManager.exe Version de la veille de sécurité : AV: 1.381.1961.0, AS: 1.381.1961.0, NIS: 1.381.1961.0 Version du moteur : AM: 1.1.19900.2, NIS: 1.1.19900.2 Event[0]: Date: 2023-01-09 17:50:47 Description: La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x80004005 Description de l’erreur : Erreur non spécifiée Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes. Date: 2023-01-09 09:16:54 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.381.1873.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.19900.2 Code d’erreur : 0x80070102 Description de l’erreur : Dépassement du délai d’attente. CodeIntegrity: =============== Date: 2023-01-11 03:15:42 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Oracle\VirtualBox\VirtualBox.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2023-01-11 03:14:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: LENOVO GJET92WW (2.42 ) 03/03/2017 Carte mère: LENOVO 20AQ006HUS Processeur: Intel(R) Core(TM) i7-4600U CPU @ 2.10GHz Pourcentage de mémoire utilisée: 73% Mémoire physique - RAM - totale: 11974.38 MB Mémoire physique - RAM - disponible: 3217.94 MB Mémoire virtuelle totale: 24262.38 MB Mémoire virtuelle disponible: 12951.3 MB ==================== Lecteurs ================================ Drive c: (Disque local) (Fixed) (Total:402.78 GB) (Free:46.69 GB) (Model: HGST HTS541010A9E680) NTFS Drive d: () (Fixed) (Total:527.34 GB) (Free:15.72 GB) (Model: HGST HTS541010A9E680) NTFS Drive f: () (Fixed) (Total:0.09 GB) (Free:0.08 GB) (Model: WDC WD10 SPZX-08Z10 USB Device) FAT32 Drive i: (Disque local) (Fixed) (Total:931.41 GB) (Free:49.65 GB) (Model: WDC WD10 SPZX-08Z10 USB Device) NTFS \\?\Volume{6e9fe60c-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS \\?\Volume{6e9fe60c-0000-0000-0000-60d464000000}\ () (Fixed) (Total:0.85 GB) (Free:0.21 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6E9FE60C) Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=402.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=868 MB) - (Type=27) Partition 4: (Not Active) - (Size=527.3 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 000052E9) Partition 1: (Active) - (Size=100 MB) - (Type=FAT32) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================