Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 18-11-2022
Exécuté par Administrator (19-11-2022 19:10:33)
Exécuté depuis C:\Users\Administrator.boulaid\Desktop
Microsoft Windows 11 Pro Version 22H2 22621.819 (X64) (2022-10-06 01:41:28)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrator (S-1-5-21-3819441319-3770239485-2689332674-500 - Administrator - Enabled) => C:\Users\Administrator.boulaid
DefaultAccount (S-1-5-21-3819441319-3770239485-2689332674-503 - Limited - Enabled)
Guest (S-1-5-21-3819441319-3770239485-2689332674-501 - Limited - Disabled)
satro (S-1-5-21-3819441319-3770239485-2689332674-1002 - Administrator - Enabled) => C:\Users\satro
WDAGUtilityAccount (S-1-5-21-3819441319-3770239485-2689332674-504 - Limited - Enabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
7-Zip 21.03 beta (HKLM-x32\...\7-Zip) (Version: 21.03 beta - Igor Pavlov)
ACCA - PriMus-DCF v.BIM 2(e) - EN - x86 - (52.0.5.26678) (HKLM-x32\...\ACCA software S.p.A. PriMus-DCF_x32 52.0.5.26678) (Version: 52.0.5.26678 - ACCA software S.p.A.)
ACCA Common - ACCA_BIMPlatforms v.119 - x86 - (1.1.19.30753) (HKLM-x32\...\ACCA software S.p.A. ACCA_BIMPlatforms 1.1.19.30753) (Version: 1.1.19.30753 - ACCA software S.p.A.)
ACCA Common - ACCABrowser v.1.10i - x64 - (1.0.13.30752) (HKLM-x32\...\ACCA software S.p.A. ACCABrowser_64 1.0.13.30752) (Version: 1.0.13.30752 - ACCA software S.p.A.)
ACCA Common - ACCABrowser v.1.10i - x86 - (1.0.13.30751) (HKLM-x32\...\ACCA software S.p.A. ACCABrowser_32 1.0.13.30751) (Version: 1.0.13.30751 - ACCA software S.p.A.)
ACCA Common - ACCAPreviewHandler v.5.00f - x86 - (5.0.6.24119) (HKLM-x32\...\ACCA software S.p.A. ACCAPreviewHandler 5.0.6.24119) (Version: 5.0.6.24119 - ACCA software S.p.A.)
ACCA Common - DrawingsX 21.11.0 v.21.11.0 - x64 - (2111.0.1.25646) (HKLM-x32\...\ACCA software S.p.A. DrawingsX_21_11_x64 2111.0.1.25646) (Version: 2111.0.1.25646 - ACCA software S.p.A.)
ACCA Common - Fonts v.2.00d - x86 - (2.0.3.15260) (HKLM-x32\...\ACCA software S.p.A. Fonts 2.0.3.15260) (Version: 2.0.3.15260 - ACCA software S.p.A.)
ACCA Common - Microsoft .NET Framework 4.7.2 v.4.7.2 - x86 - (4.70.2.29453) (HKLM-x32\...\ACCA software S.p.A. dotnetfx_4_7 4.70.2.29453) (Version: 4.70.2.29453 - ACCA software S.p.A.)
ACCA Common - Microsoft .NET Framework v.4.00 - x86 - (4.0.1.2169) (HKLM-x32\...\ACCA software S.p.A. dotnetfx 4.0.1.2169) (Version: 4.0.1.2169 - ACCA software S.p.A.)
ACCA Common - Microsoft Visual C++ 2005 Redistributable Package v.2005 - x86 - (2005.0.2.15346) (HKLM-x32\...\ACCA software S.p.A. vcredist_2005 2005.0.2.15346) (Version: 2005.0.2.15346 - ACCA software S.p.A.)
ACCA Common - Microsoft Visual C++ 2008 Redistributable Package v.2008 - x86 - (2008.0.2.15352) (HKLM-x32\...\ACCA software S.p.A. vcredist_2008 2008.0.2.15352) (Version: 2008.0.2.15352 - ACCA software S.p.A.)
ACCA Common - Microsoft Visual C++ 2010 Redistributable Package v.2010(a) - x86 - (2010.0.2.15258) (HKLM-x32\...\ACCA software S.p.A. vcredist_2010 2010.0.2.15258) (Version: 2010.0.2.15258 - ACCA software S.p.A.)
ACCA Common - Microsoft Visual C++ 2013 Redistributable Package v.2013a (12.0.40660) - x86 - (2013.0.3.15241) (HKLM-x32\...\ACCA software S.p.A. vcredist_2013 2013.0.3.15241) (Version: 2013.0.3.15241 - ACCA software S.p.A.)
ACCA Common - Microsoft Visual C++ 2015-2019 Redistributable Package v.2015-2019 - x86 - (2019.0.1.25463) (HKLM-x32\...\ACCA software S.p.A. vcredist_2015_2019 2019.0.1.25463) (Version: 2019.0.1.25463 - ACCA software S.p.A.)
ACCA Common - SignTool v.2.00g - x86 - (2.0.8.19502) (HKLM-x32\...\ACCA software S.p.A. SignTool 2.0.8.19502) (Version: 2.0.8.19502 - ACCA software S.p.A.)
ACCA Common - TeighaX 4.3.1 v.4.3.1(a) - x86 - (431.0.1.11532) (HKLM-x32\...\ACCA software S.p.A. TeighaX 431.0.1.11532) (Version: 431.0.1.11532 - ACCA software S.p.A.)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
ALPIlmclient 1.5 (HKLM-x32\...\{278AF7DE-9C76-40A8-8BBE-1930B8C8F344}) (Version: 1.5.4014 - ALPI)
AlpiUpdate (HKLM-x32\...\{47CB6BCF-1440-4E30-9E59-D5E448554F02}) (Version: 4.2.7119 - ALPI (Applications Logiciels Pour l'Ingénierie))
Android_Driver (HKLM-x32\...\Android_Driver) (Version: V2.5.0.2 - Android Communication Equipment Co. Ltd.)
AOMEI Partition Assistant 9.7.0 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: 9.7.0 - AOMEI International Network Limited.)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Boris FX Continuum 2022 Plug-ins for OpenFX and Compatible Products (HKLM\...\{CD3E4D20-4EAA-461F-9025-FAD60661D06D}_is1) (Version: 15.0.2 - Boris FX, Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 107.1.45.127 - Brave Software Inc)
Caneco BOX Module 2.0 (HKLM-x32\...\{81DFF603-1631-4248-A467-9DDBB8518393}) (Version: 2.00.0001 - ALPI)
Caneco BT 2018 Application files (HKLM-x32\...\{F774C454-3512-4E32-B84C-E1FD91AD5C7B}) (Version: 5.8.0.153 - ALPI)
Caneco BT 2018 Country Pack BE (HKLM-x32\...\{6139CA79-E7AC-495C-AC56-B87F911E359F}) (Version: 5.8.0.7 - ALPI)
Caneco Dessin 4.4 (HKLM-x32\...\{6B306B3A-5635-4AA5-9C45-A8EE174EE8D0}) (Version: 4.4.5010 - ALPI)
Canva (HKU\S-1-5-21-3819441319-3770239485-2689332674-500\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.54.0 - Canva Pty Ltd)
Chrone Browser (HKLM-x32\...\Chrone Browser) (Version: 86.0.4240.198 - iStart)
Combo Cleaner (HKLM\...\{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.58.0 - RCS LT) Hidden
DB Browser for SQLite (HKLM\...\{B8E7F731-85AE-49BD-A2CF-7290E371E9B4}) (Version: 3.10.99 - DB Browser for SQLite Team)
DENSO WAVE Active USB-COM Port (HKLM\...\DWUSBIDriver) (Version: 2.2.0.4 - DENSO WAVE INCORPORATED)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DrawingsX 21.11 (x64) (HKLM\...\{F8E8108A-7DB8-477E-B2E5-36FAFC563A60}) (Version: 21.11.0 - Open Design Alliance)
Driver Easy 5.7.3 (HKLM\...\DriverEasy_is1) (Version: 5.7.3 - Easeware)
DriverPack (HKLM-x32\...\DriverPack) (Version: 17.11 - DriverPack)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
EaseUS Todo Backup Free 12.0 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 12.0 - CHENGDU YIWO Tech Development Co., Ltd)
Ecodial Advance Calculation INT V4.6 (HKLM-x32\...\{DF7C0F6A-CADD-4D4B-8503-22F00C920CAC}) (Version: 4.6 - Schneider Electric)
ETAP 19.0.1 (HKLM\...\{309A4F4C-90C2-4A9F-AB93-CD230BB4AACE}) (Version: 19.0.1.8619 - Operation Technology, Inc.) Hidden
ETAP 19.0.1 (HKLM-x32\...\{5e6a3959-3bac-4afb-9ba1-4128bc612075}) (Version: 19.0.1.8619 - Operation Technology, Inc.)
ETAP 19.0.1 DXM (HKLM\...\{D8D0D2B4-6AF5-48AC-AB6F-004E61724E64}) (Version: 19.0.1.7019 - Operation Technology, Inc.) Hidden
ETAP 19.0.1 DXM (HKLM-x32\...\{a0b2b49b-1ec4-4ed9-9ec7-5030a6a334ed}) (Version: 19.0.1.7019 - Operation Technology, Inc.)
ETAP User Guide 19.0.0 (HKLM\...\{B843A65A-4061-4334-9364-9D10B6A09B50}) (Version: 19.0.0 - Operation Technology, Inc) Hidden
ETAP User Guide 19.0.0 (HKLM-x32\...\InstallShield_{B843A65A-4061-4334-9364-9D10B6A09B50}) (Version: 19.0.0 - Operation Technology, Inc)
Foxit PDF Editor (HKLM-x32\...\{3A1CA80C-7C1A-11EC-AFDC-54BF64A63C26}) (Version: 11.2.1.53537 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.17.1 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{2282C4AC-ADFD-4CB7-962E-D700F62024E6}) (Version: 1.4.33 - HP Inc.)
IDM 6.39 build 1 6.39.1 (HKLM-x32\...\IDM 6.39 build 1 6.39.1) (Version: 6.39.1 - CrackingPatching)
Intel(R) Graphics Driver Software (HKLM-x32\...\{0a00b776-067b-45c6-996b-8a3360ee56a4}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Visual Fortran Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{14BAFCDF-5C95-4682-BBA0-3FAE7D0392E4}) (Version: 11.1.072 - Intel Corporation)
Intel(R) Visual Fortran Redistributables on Intel(R) 64 (HKLM-x32\...\{BB4BDE84-F9A5-43FE-8C6D-8B6140263A86}) (Version: 16.0.246 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.41.2 - Tonec Inc.)
iTop Data Recovery (HKLM-x32\...\iTop Data Recovery_is1) (Version: 3.3.0.451 - iTop Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 351 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Java 8 Update 351 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180351F0}) (Version: 8.0.3510.10 - Oracle Corporation)
Jumpstart Installation Program (HKLM-x32\...\{B0BCDCBD-863D-4CAB-BF68-8D1F6B1BDC13}) (Version: - Atheros)
LDPlayer (HKLM-x32\...\LDPlayer9) (Version: 9.0.24 - XUANZHI INTERNATIONAL CO., LIMITED)
LibUSB-Win32-1.2.6.0 (HKLM\...\LibUSB-Win32_is1) (Version: 1.2.6.0 - LibUSB-Win32)
Logo Design Studio Pro Platinum (HKLM-x32\...\{E3524401-3AE7-40D4-BC2A-E713D1DC73AB}) (Version: 2.0.2.1 - Summitsoft) Hidden
Logo Design Studio Pro Platinum (HKLM-x32\...\Logo Design Studio Pro Platinum 2.0.2.1) (Version: 2.0.2.1 - Summitsoft)
Logo Design Studio Pro Platinum 2 (HKLM-x32\...\{8EFBFAB3-FC50-4147-AE65-37EA06447B12}) (Version: 2.0.2.1 - Summitsoft) Hidden
Logo Design Studio Pro Platinum 2 (HKLM-x32\...\Logo Design Studio Pro Platinum 2 2.0.2.1) (Version: 2.0.2.1 - Summitsoft)
MediaTek SP Driver version 5.16.32.04 (HKLM\...\MediaTek SP Driver_is1) (Version: 5.16.32.04 - MediaTek.Inc.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
MeteoSyn (HKLM-x32\...\MeteoSyn_is1) (Version: 5.5.19.0 - Valentin EnergieSoftware GmbH)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Retail - en-us) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.225.1026.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-19\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-20\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{C3682243-2218-4F80-A94A-EB0D7B7AF739}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A40EC9FA-6D3F-4B66-B254-D9B42634931F}) (Version: 5.68.0.0 - Microsoft Corporation)
Microsoft Visual Basic/C++ Runtime (x86) (HKLM-x32\...\{C5E3A69D-D391-45A6-A8FB-00B01E2B010D}) (Version: 1.1.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{092EE08C-60DE-3FE6-B113-90076EC06D0D}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation)
Miracle Box Digital (HKLM-x32\...\Miracle Box Digital (Login Edition)) (Version: Miracle Box Digital Edition 3.39 - Miracle Team)
MongoDB 3.4.4 2008R2Plus SSL (64 bit) (HKLM\...\{2A3C4764-C9B9-4687-89F2-2F69E09A850B}) (Version: 3.4.4 - MongoDB)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.4.6 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
OpenOffice 4.1.13 (HKLM-x32\...\{F9635033-0DD8-4736-A9E2-3D030A6C882B}) (Version: 4.113.9810 - Apache Software Foundation)
OPPOÊÛºóÇý¶¯³ÌÐò 3.0.3 (HKLM\...\{F9CA1F0B-D4A8-41C5-99AD-D39FFA50B09B}_is1) (Version: 3.0.3.1 - OPPO)
Package de pilotes Windows - libusb-win32 (libusb0) libusb-win32 devices (01/18/2012 1.2.6.0) (HKLM\...\4140405254E0FCA7FEE9F49CEAC43276E56F2A65) (Version: 01/18/2012 1.2.6.0 - libusb-win32)
Package de pilotes Windows - Microsoft Modem (07/01/2001 5.1.2535.0) (HKLM\...\B5D12F78F784C79744947AE1538727D18EC63BDB) (Version: 07/01/2001 5.1.2535.0 - Microsoft)
Package de pilotes Windows - Miracle Team (usbser) Ports (11/5/2013 2.0.1136.0) (HKLM\...\9CBA1B44E7B8BF391ABC8C63EF66DB2A2DAA5FA4) (Version: 11/5/2013 2.0.1136.0 - Miracle Team)
Package de pilotes Windows - Miracle Team (WinUSB) AndroidUsbDeviceClass (11/5/2013 4.0.0000.00000) (HKLM\...\93CAA51E2FB5008FCCE467BE0C1D50A0446DAB66) (Version: 11/5/2013 4.0.0000.00000 - Miracle Team)
Package de pilotes Windows - Miracle Team (WinUSB) AndroidUsbDeviceClass (11/5/2013 4.0.0000.00000) (HKLM\...\E8E7A52180B4EE3B01B6F2D0722797C88C110056) (Version: 11/5/2013 4.0.0000.00000 - Miracle Team)
Package de pilotes Windows - Miracle Team . Net (11/5/2013 1.1129.00) (HKLM\...\402DD6C0A53FABB77CC8C57A6F62387D92037335) (Version: 11/5/2013 1.1129.00 - Miracle Team .)
Package de pilotes Windows - Miracle. (WinUSB) AndroidUsbDeviceClass (02/02/2015 4.0.0000.00001) (HKLM\...\75AA80F909FD1969D90DB35DC9A89E07FEB8AED9) (Version: 02/02/2015 4.0.0000.00001 - Miracle.)
PDF Me version 1.1 (HKLM-x32\...\{D44747A1-97B6-442B-AF19-1856DC1F5A23}_is1) (Version: 1.1 - My PDF Company Ltd)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.11.0 - Prolific Technology INC)
PV F-Chart Photovoltaic System Analysis - DEMO (HKLM-x32\...\PV F-Chart Photovoltaic System Analysis - DEMO) (Version: - )
PVSOL premium 7.5 (HKLM-x32\...\PVSOL premium 7.5_is1) (Version: 7.5.4 - Valentin Software GmbH)
PVsyst (HKLM\...\{396BE5AB-6B93-46A4-90A5-CDC39386D3C6}) (Version: 7.2.4 - PVsyst SA) Hidden
PVsyst (HKLM\...\PVsyst 7.2.4) (Version: 7.2.4 - PVsyst SA)
QLBCASL (HKLM-x32\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
RAPID Mode (HKLM\...\{C2260517-B6EE-41BF-AEAD-4675EE8359C3}) (Version: 1.0.1.105 - Samsung Electronics Co., Ltd.) Hidden
Revo Uninstaller Pro 5.0.6 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 5.0.6 - VS Revo Group, Ltd.)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 4.0.0.19 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.2.0.930 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.56.0 - Samsung Electronics Co., Ltd.)
SAP Crystal Reports runtime engine for .NET Framework (32-bit) (HKLM-x32\...\{0904B810-FC94-4715-99F6-27C36A47E161}) (Version: 13.0.19.2312 - SAP)
SearcherBar (HKLM-x32\...\SearcherBar) (Version: 0.3 - ) <==== ATTENTION
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22083.3 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22083.3 - Samsung Electronics Co., Ltd.)
SmartPSS 2.003.0000001.0 (HKLM-x32\...\SmartPSS) (Version: 2.003.0000001.0 - )
Solar_Calculator_v5.0 (HKLM-x32\...\{B4DEC241-9203-49F6-90D1-AE645BDCD382}) (Version: 5.0.0 - RAYmaps)
SQLite ODBC Driver (remove only) (HKLM-x32\...\SQLite ODBC Driver) (Version: - )
SQLite ODBC Driver for Win64 (remove only) (HKLM-x32\...\SQLite ODBC Driver for Win64) (Version: - )
TeamViewer (HKLM\...\TeamViewer) (Version: 15.35.9 - TeamViewer)
TeighaX 4.3.1 (x64) (HKLM\...\{9AF35019-EB10-4B31-B311-36688445D915}) (Version: 4.3.1 - Open Design Alliance)
TeighaX 4.3.1 (HKLM-x32\...\{DEE48AC7-8794-4089-8DDC-1A3C1BE6B7E8}) (Version: 4.3.1 - Open Design Alliance)
TikTok LIVE Studio (HKLM-x32\...\tiktoklivestudio) (Version: 0.10.4-beta - TikTok Pte. Ltd.)
UltraViewer version 6.2.0.7 (HKLM-x32\...\{E0FABD74-083B-47F4-AC5B-CA4237BF8913}_is1) (Version: 6.2.0.7 - DucFabulous)
Uninstaller (HKU\S-1-5-21-3819441319-3770239485-2689332674-500\...\Uninstaller) (Version: - Uninstaller)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
USB Serial Port Driver (x64) (HKLM-x32\...\{53012BD2-D1A3-4530-9AE2-B0C503B5C1C2}) (Version: 2013.30.0.313 - Nokia)
UsbDk Runtime Libraries (HKLM\...\{6D4A6ED0-CF41-4615-A4B3-BDA018C3C1CD}) (Version: 1.0.22 - Red Hat, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WeatherZero (HKLM-x32\...\WeatherZero) (Version: - Weather Zero)
WebAdvisor by McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.777 - McAfee, LLC)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Wondershare Filmora 10.1.20.16 (HKLM\...\Wondershare Filmora_is1) (Version: 10.1.20.16 - LRepacks)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-3819441319-3770239485-2689332674-500\...\Wondershare NativePush_is1) (Version: - )
YouTube Download Studio 3.0.1.1 (HKLM-x32\...\YouTube Download Studio_is1) (Version: - Jocsoft.com)
YoutubeDownloader (HKLM-x32\...\8B068931-886F-47A4-A036-B9FA47F1FD2B) (Version: 2.0.0.2079 - )
YoutubeDownloader (HKLM-x32\...\9E54A4A9-ED6F-4B38-83A5-9EE552511B00) (Version: 2.0.0.2107 - )

Packages:
=========
ms-resource:ProductPkgDisplayName -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2022-11-11] (ms-resource:ProductPublisherDisplayName)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3819441319-3770239485-2689332674-500_Classes\CLSID\{04271989-C4D2-4878-858C-826C5FC6B8C0} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3819441319-3770239485-2689332674-500_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Administrator.boulaid\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-10-21] (Notepad++ -> )
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\ConvertToPDFShellExtension_x64.dll [2022-01-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [Fichier non signé]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [Fichier non signé]
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> )
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\satro\AppData\Local\MEGAsync\ShellExtX64.dll [2022-07-11] (Mega Limited -> )
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [Fichier non signé]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\ConvertToPDFShellExtension_x64.dll [2022-01-21] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2022-04-04] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-19: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4_S-1-5-19: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_S-1-5-19: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1_S-1-5-20: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4_S-1-5-20: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_S-1-5-20: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.225.1026.0001\FileSyncShell64.dll [2022-11-14] (Microsoft Corporation -> Microsoft Corporation)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\Public\Desktop\DriverPack.lnk -> C:\Program Files (x86)\DriverPack\start.bat ()
ShortcutWithArgument: C:\Users\Administrator.boulaid\Desktop\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=desktop
ShortcutWithArgument: C:\Users\Administrator.boulaid\Desktop\Personnel - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Administrator.boulaid\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__nlalbmkafgmoifbeooblidblkmlhhpnc\TikTok.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=hxxps://www.tiktok.com/foryou --app-launch-source=4
ShortcutWithArgument: C:\Users\Administrator.boulaid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=pin
ShortcutWithArgument: C:\Users\Administrator.boulaid\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=pin
ShortcutWithArgument: C:\Users\Administrator.boulaid\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet-Start.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /c start hxxp://internet-start.net/?utm_source=beatle^&utm_medium=icon^&utm_campaign=pin
ShortcutWithArgument: C:\Users\Administrator.boulaid\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TikTok.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=hxxps://www.tiktok.com/foryou --app-launch-source=4

==================== Modules chargés (Avec liste blanche) =============

2022-10-23 21:18 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2022-10-23 21:18 - 2017-09-12 10:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2022-08-28 17:07 - 2022-04-21 03:01 - 000194048 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssh2.dll
2022-08-28 17:17 - 2019-06-28 11:09 - 001291264 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2022-08-28 17:17 - 2019-06-28 11:09 - 000055808 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000897308 _____ () [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libevent-2-1-7.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000684853 _____ () [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libgcc_s_dw2-1.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000097293 _____ () [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libssp-0.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000138254 _____ () [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\zlib1.dll
2022-08-30 22:07 - 2087-01-23 08:20 - 005563392 _____ (ActVer©®™) [Fichier non signé] C:\Program Files (x86)\iTop Data Recovery\version.dll
2022-08-28 17:07 - 2022-02-21 10:23 - 000509064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\AliyunWrap.DLL
2022-08-28 17:07 - 2022-02-21 10:23 - 000021672 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\fsclog.dll
2022-08-28 17:07 - 2022-02-22 16:12 - 000461448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\wpnr.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000026792 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000056488 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000021672 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000505512 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AliyunWrap.DLL
2022-08-28 17:17 - 2019-11-15 03:14 - 000175784 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AuthorizedMng.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000098472 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000112296 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CalcScheduleTime.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000026280 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CallbackOperator.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000075432 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000079016 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000196264 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000163496 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt_RTTO.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000018088 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000100520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000024744 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2022-08-28 17:17 - 2019-09-02 19:25 - 000109736 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000091816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000019624 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000024744 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000143016 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000029352 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000367784 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000032936 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000561320 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000269992 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000296104 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000162984 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000034472 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000704168 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuActiveOnline.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000082600 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EULicenseDLL.DLL
2022-08-28 17:17 - 2019-11-15 03:15 - 002479272 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000064168 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000078504 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000120488 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSearch.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000146600 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000052392 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000021672 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\fsclog.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000026792 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000169128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000091304 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000070824 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000072872 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000058536 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000211112 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000458920 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSUtil.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000149160 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000066216 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000219816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000045224 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000055976 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000054952 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000725672 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmdManager.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000022184 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ControlPxe.dll
2022-08-28 17:17 - 2019-11-15 03:14 - 000131752 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EMail.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000046760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuPipe.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000250536 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackup.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000103080 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackupSize.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000651432 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlImgFile.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000046760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlSearchImg.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000097960 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Ftp.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000019624 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FTPTest.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000122024 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImageFileInfo.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000285352 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFileHlp.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000153256 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MatchStr.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000028840 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Options.dll
2022-08-28 17:17 - 2019-11-15 03:15 - 000095400 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\PolicyManage.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000124072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Thread.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000113320 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Transmit.dll
2022-08-28 17:17 - 2019-11-15 03:16 - 000044712 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\XmlWrapper.dll
2022-08-28 17:17 - 2019-06-28 11:09 - 000892928 _____ (Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2022-09-16 12:20 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2013-04-03 01:00 - 2013-04-03 01:00 - 000258048 _____ (Microsoft Corporation) [Fichier non signé] C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
2003-02-21 04:42 - 2003-02-21 04:42 - 000348160 _____ (Microsoft Corporation) [Fichier non signé] C:\Windows\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000308415 _____ (MingW-W64 Project. All rights reserved.) [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libwinpthread-1.dll
2016-06-14 00:06 - 2016-06-14 00:06 - 000447488 _____ (Newtonsoft) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\WeatherZero\Newtonsoft.Json.dll
2022-08-28 17:07 - 2022-04-21 03:01 - 000428544 _____ (The curl library, hxxps://curl.se/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcurl.dll
2022-08-28 17:17 - 2019-10-09 09:05 - 001359872 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\LIBEAY32.dll
2022-08-28 17:17 - 2019-10-09 09:05 - 000365056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\SSLEAY32.dll
2016-12-19 18:30 - 2016-12-19 18:30 - 002000384 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\MongoDB\Server\3.4\bin\LIBEAY32.dll
2016-12-19 18:30 - 2016-12-19 18:30 - 000325120 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\MongoDB\Server\3.4\bin\SSLEAY32.dll
2022-08-28 17:07 - 2022-04-21 03:01 - 002523136 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcrypto-1_1.dll
2022-08-28 17:07 - 2022-04-21 03:01 - 000531456 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssl-1_1.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 003720943 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libcrypto-1_1.dll
2022-09-25 22:20 - 2022-09-25 22:20 - 000960709 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Users\Administrator\AppData\Local\Temp\csrss\tor\Tor\libssl-1_1.dll
2022-10-23 21:18 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

SearchScopes: HKU\S-1-5-21-3819441319-3770239485-2689332674-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_351\bin\ssv.dll [2022-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: Foxit PDF Editor Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\IEAddin\IEAddin_x64.dll [2022-01-21] (FOXIT SOFTWARE INC. -> )
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\ssv.dll [2022-10-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Foxit PDF Editor Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\IEAddin\IEAddin.dll [2022-01-21] (FOXIT SOFTWARE INC. -> )
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_351\bin\jp2ssv.dll [2022-10-21] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Foxit PDF Editor Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\IEAddin\IEAddin_x64.dll [2022-01-21] (FOXIT SOFTWARE INC. -> )
Toolbar: HKLM-x32 - Foxit PDF Editor Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PDF Editor\plugins\Creator\IEAddin\IEAddin.dll [2022-01-21] (FOXIT SOFTWARE INC. -> )
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-12] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %F_EM64T_REDIST11%bin\Intel64;%INTEL_DEV_REDIST%redist\intel64_win\mpirt;%INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\ACCA\.Common\ACCA_BIMPlatforms\Win64;C:\ACCA\.Common\ACCA_BIMPlatforms\Win32;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\ALPI SHARED;C:\Program Files (x86)\Common Files\ALPI Shared\;C:\Program Files\Microsoft SQL Server\110\Tools\Binn\
HKU\S-1-5-21-3819441319-3770239485-2689332674-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3819441319-3770239485-2689332674-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu

Network Binding:
=============
Ethernet: JumpStart Wireless Filter Driver -> MS_NdisLwf (enabled)
Wi-Fi: JumpStart Wireless Filter Driver -> MS_NdisLwf (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [TCP Query User{1FF9E11C-F910-477A-8776-99F53A0A1B86}C:\program files (x86)\common files\java\java update\jusched.exe] => (Block) C:\program files (x86)\common files\java\java update\jusched.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{F98089B3-6BE8-4BA8-B61B-CA6130D0C348}C:\program files (x86)\common files\java\java update\jusched.exe] => (Block) C:\program files (x86)\common files\java\java update\jusched.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{13EBA79D-C8A4-4335-AAFC-D711D9DF56AD}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{134E3EA0-DA3B-42C4-83C4-1C05A9C0C15B}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [TCP Query User{985118F7-2B47-47F6-91DB-F20852C25015}C:\program files\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files\smart professional surveillance system\smartpss\smartpss.exe () [Fichier non signé]
FirewallRules: [UDP Query User{79805758-153D-4E9C-BE9A-A65D06804003}C:\program files\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files\smart professional surveillance system\smartpss\smartpss.exe () [Fichier non signé]
FirewallRules: [TCP Query User{2B4D7B58-7D8A-40DA-8310-2739CAA1B3A2}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{146334BB-5548-4FA4-A5AD-AAAC36CC2C37}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{BF0E1CB3-DCC0-48D5-B879-C8F4B1461E29}C:\users\administrator.boulaid\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\administrator.boulaid\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{9416D5E3-35B9-4E22-9574-D12BF9A2FD41}C:\users\administrator.boulaid\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\administrator.boulaid\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [{5335AFB1-E6C0-494F-899B-A1C33F3842C2}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{D0FFD407-E01E-413D-A042-6F78361D9E14}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [TCP Query User{22376AF7-B3DE-4912-85AD-696CF5D52A7F}C:\program files (x86)\tiktok live studio\tiktok live studio.exe] => (Allow) C:\program files (x86)\tiktok live studio\tiktok live studio.exe (TikTok Pte. Ltd. -> TikTok Pte. Ltd.)
FirewallRules: [UDP Query User{38EB204A-24F2-4FEC-A548-C476B414FA56}C:\program files (x86)\tiktok live studio\tiktok live studio.exe] => (Allow) C:\program files (x86)\tiktok live studio\tiktok live studio.exe (TikTok Pte. Ltd. -> TikTok Pte. Ltd.)
FirewallRules: [{c44d70f4-5bc3-403a-826c-8345a4f28192}] => (Allow) C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe (Shanghai Chang Zhi Network Technology Co,. Ltd. -> Oracle Corporation)
FirewallRules: [{EC28E805-95DE-4002-A6EA-D0523E967CB2}] => (Allow) C:\Users\Administrator.boulaid\MediaGet2\QtWebEngineProcess.exe => Pas de fichier
FirewallRules: [{7C116DBC-62D3-4F2B-8B57-0505231103AC}] => (Allow) C:\Users\Administrator.boulaid\MediaGet2\QtWebEngineProcess.exe => Pas de fichier
FirewallRules: [{8FE62539-F3CF-4EFD-9D3A-79C97E0DDAA6}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe => Pas de fichier
FirewallRules: [{6C562570-3E6E-4932-8B7F-3E17DC9E1B57}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0351D3F9-FEDE-4B2E-82A7-01E8AE88B42F}] => (Allow) C:\Program Files (x86)\DriverPack\tools\aria2c.exe () [Fichier non signé]
FirewallRules: [{3E3F1F1E-E99C-401C-B672-08F43934A8CB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe => Pas de fichier
FirewallRules: [{32855333-DE22-4E6B-85DB-20B4D4A8ADAE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A8E60093-0F33-42E1-90E4-D999FFFFF259}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{CA967D81-0F0D-496E-824B-21B716A543C0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{17A974FA-CF09-452A-80AF-D3DE18D068BE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CA316849-F774-42F9-818A-77F28B76D852}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2B0C3A3D-B1C5-4EFC-82D3-E74898439E03}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{01F519A7-DDE4-40F0-93E9-34EADC943518}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8329A73-0DD3-4102-98B4-9A9C97F6D781}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FDAC425A-3DE6-4961-88D0-F5299F6E633B}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{C35207C2-3323-4D95-B186-30F53A4E5247}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{522B9DAF-F231-4AFA-9DD3-53BE937D3F66}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{A63A18A8-745D-4056-83FF-8A1BEAAD2774}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{9E342D90-47F1-444D-A0AC-53EEE66126C4}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{03F87D9B-7676-447F-9BC4-586A044A7A5F}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{54CF5A43-7D4F-4DFE-855C-8B48674065C2}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{E48F270B-7E41-4568-9952-4B15417340C7}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{D99B47DB-20DA-44D3-816F-9EE7F777482C}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{C96D3FE8-E971-4B81-BA2B-8B80832B967F}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{2D72FAE9-9649-459E-9015-19730659D590}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{6DD935A4-6B3F-4FDF-BC46-B692D78D0B21}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{EC2C94BC-15D1-4F4F-9FB7-18763EA59FDD}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{98510D17-98F7-43C7-83AB-69DAE9B33FD9}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{61A43808-2D86-4CA2-A53A-4DA79DAB193D}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{A6812954-8A90-4AD2-B765-67DDAB81005F}] => (Allow) C:\WINDOWS\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{F777B11A-C9F1-4DC5-855D-5D5B23346470}] => (Allow) C:\Windows\GoogleUpdate.exe (Google LLC -> Google LLC)
FirewallRules: [{6D5706B0-77C7-437A-ADDE-6729360E729E}] => (Allow) C:\Windows\GoogleUpdate.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

16-11-2022 00:57:26 Programme d’installation pour les modules Windows
16-11-2022 01:15:58 Installed Microsoft Solution - B4164D8C-3813-495A-BBBC-BA51D122A226
16-11-2022 01:16:08 Point de restauration avant a été supprimé à l'aide de l'utilitaire de résolution des problèmes d'installation et de désinstallation du programme
16-11-2022 01:16:21 Point de restauration final pour à l'aide de l'utilitaire de résolution des problèmes d'installation et de désinstallation du programme.
16-11-2022 18:53:05 Revo Uninstaller Pro's restore point - Wondershare Filmora 11(Build 11.6.7.752)

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (11/19/2022 07:00:52 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante sdxhelper.exe, version : 16.0.15726.20202, horodatage : 0x6361bd70
Nom du module défaillant : ntdll.dll, version : 10.0.22621.755, horodatage : 0x8a328c67
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000009f4bb
ID du processus défaillant : 0x0x3640
Heure de début de l’application défaillante : 0x0x1d8fc40db65a3e0
Chemin d’accès de l’application défaillante : C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 27d8999d-3173-4635-b86a-1690976dc8ca
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/19/2022 07:00:48 PM) (Source: Application Error) (EventID: 1005) (User: boulaid)
Description: Windows Command Processor0x00x0

Error: (11/19/2022 07:00:48 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante cmd.exe, version : 10.0.22621.608, horodatage : 0x43111367
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc000001d
Décalage d’erreur : 0x00007ff80fb60483
ID du processus défaillant : 0x0x3030
Heure de début de l’application défaillante : 0x0x1d8fc40da651a11
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\cmd.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : f2c2b8e3-7d1d-4890-84ad-21ddb556ca3c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/19/2022 07:00:44 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante cmd.exe, version : 10.0.22621.608, horodatage : 0x43111367
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000025be99b5450
ID du processus défaillant : 0x0x43a4
Heure de début de l’application défaillante : 0x0x1d8fc40d81fb6b9
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\cmd.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : a2ee8ff1-07a8-4e9a-ad35-64ab4e472393
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/19/2022 06:55:41 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante Notepad.exe, version : 11.2208.25.0, horodatage : 0x63176285
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000001f1794c4058
ID du processus défaillant : 0x0x2fc0
Heure de début de l’application défaillante : 0x0x1d8fc4023b9eb70
Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2208.25.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : aeb24791-90c6-494c-b1a2-099437c47cc4
Nom complet du package défaillant : Microsoft.WindowsNotepad_11.2208.25.0_x64__8wekyb3d8bbwe
ID de l’application relative au package défaillant : App

Error: (11/19/2022 06:50:41 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante regsvr32.exe, version : 10.0.22621.1, horodatage : 0x5a0a689a
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x029938ea
ID du processus défaillant : 0x0x2b98
Heure de début de l’application défaillante : 0x0x1d8fc3f710d7111
Chemin d’accès de l’application défaillante : C:\Windows\SysWOW64\regsvr32.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 4483239b-d486-413a-b049-eb61ecc26478
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/19/2022 06:47:39 PM) (Source: Application Error) (EventID: 1000) (User: boulaid)
Description: Nom de l’application défaillante InstallUtil.exe, version : 4.8.9032.0, horodatage : 0x6250aaab
Nom du module défaillant : KERNELBASE.dll, version : 10.0.22621.819, horodatage : 0x1355b9cf
Code d’exception : 0xe0434352
Décalage d’erreur : 0x00147402
ID du processus défaillant : 0x0x40a0
Heure de début de l’application défaillante : 0x0x1d8fc3f0332449f
Chemin d’accès de l’application défaillante : C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : dcbb7da3-3225-4710-89f4-b2eb1c585b21
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/19/2022 06:47:37 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : inconnu
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.OutOfMemoryException


Erreurs système:
=============
Error: (11/19/2022 06:51:01 PM) (Source: DCOM) (EventID: 10001) (User: boulaid)
Description: Impossible de démarrer un serveur DCOM : MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy!WindowsUdk.UI.Shell.Dashboard.DashboardExtension en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer

Error: (11/19/2022 06:51:01 PM) (Source: DCOM) (EventID: 10001) (User: boulaid)
Description: Impossible de démarrer un serveur DCOM : MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy!WindowsUdk.UI.Shell.Dashboard.DashboardExtension en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer

Error: (11/19/2022 06:45:55 PM) (Source: DCOM) (EventID: 10001) (User: boulaid)
Description: Impossible de démarrer un serveur DCOM : MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy!WindowsUdk.UI.Shell.Dashboard.DashboardExtension en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer

Error: (11/19/2022 06:45:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service MessagingService_6a813 s’est arrêté avec l’erreur :
Le périphérique n’est pas prêt.

Error: (11/19/2022 06:45:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service luafv n’a pas pu démarrer en raison de l’erreur :
Le chargement du pilote a été bloqué

Error: (11/19/2022 06:34:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service BITS n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.

Error: (11/19/2022 06:32:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service BITS n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.

Error: (11/19/2022 05:57:55 PM) (Source: DCOM) (EventID: 10001) (User: boulaid)
Description: Impossible de démarrer un serveur DCOM : MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy!WindowsUdk.UI.Shell.Dashboard.DashboardExtension en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20070.685.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe" -ServerName:Microsoft.Windows.DashboardServer


Windows Defender:
================
Date: 2022-11-19 17:53:34
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0
Nom : Program:Win32/Uwamson.A!ml
ID : 250070
Gravité : High
Catégorie : Settings Modifier
Chemin : amsi:_\Device\HarddiskVolume3\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Origine de la détection : Unknown
Type de détection : FastPath
Source de détection : AMSI
Utilisateur : boulaid\Administrator
Nom du processus : C:\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Version de la veille de sécurité : AV: 1.379.618.0, AS: 1.379.618.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19800.4, NIS: 0.0.0.0

Date: 2022-11-19 17:53:34
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Uwamson.A!ml&threatid=250070&enterprise=0
Nom : Program:Win32/Uwamson.A!ml
ID : 250070
Gravité : High
Catégorie : Settings Modifier
Chemin : amsi:_\Device\HarddiskVolume3\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Origine de la détection : Unknown
Type de détection : FastPath
Source de détection : AMSI
Utilisateur : boulaid\Administrator
Nom du processus : C:\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Version de la veille de sécurité : AV: 1.379.618.0, AS: 1.379.618.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19800.4, NIS: 0.0.0.0

Date: 2022-11-19 17:53:34
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Mamson.A!ml&threatid=2147733716&enterprise=0
Nom : Trojan:Win32/Mamson.A!ml
ID : 2147733716
Gravité : Severe
Catégorie : Trojan
Chemin : amsi:_\Device\HarddiskVolume3\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Origine de la détection : Unknown
Type de détection : FastPath
Source de détection : AMSI
Utilisateur : boulaid\Administrator
Nom du processus : C:\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Version de la veille de sécurité : AV: 1.379.618.0, AS: 1.379.618.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19800.4, NIS: 0.0.0.0

Date: 2022-11-19 17:53:34
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Mamson.A!ml&threatid=2147733716&enterprise=0
Nom : Trojan:Win32/Mamson.A!ml
ID : 2147733716
Gravité : Severe
Catégorie : Trojan
Chemin : amsi:_\Device\HarddiskVolume3\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Origine de la détection : Unknown
Type de détection : FastPath
Source de détection : AMSI
Utilisateur : boulaid\Administrator
Nom du processus : C:\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Version de la veille de sécurité : AV: 1.379.618.0, AS: 1.379.618.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19800.4, NIS: 0.0.0.0

Date: 2022-11-19 17:53:33
Description:
Microsoft Defender Antivirus a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Mamson.A!ml&threatid=2147733716&enterprise=0
Nom : Trojan:Win32/Mamson.A!ml
ID : 2147733716
Gravité : Severe
Catégorie : Trojan
Chemin : amsi:_\Device\HarddiskVolume3\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Origine de la détection : Unknown
Type de détection : FastPath
Source de détection : AMSI
Utilisateur : boulaid\Administrator
Nom du processus : C:\inetpub\history\CFGHISTORY_0000000003\chrome.exe
Version de la veille de sécurité : AV: 1.379.618.0, AS: 1.379.618.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19800.4, NIS: 0.0.0.0

==================== Infos Mémoire ===========================

BIOS: Insyde F.38 08/31/2021
Carte mère: HP 84A6
Processeur: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 90%
Mémoire physique - RAM - totale: 8103.1 MB
Mémoire physique - RAM - disponible: 786.11 MB
Mémoire virtuelle totale: 13991.1 MB
Mémoire virtuelle disponible: 5299.63 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:530.5 GB) (Free:258.76 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive d: (SSD 2 PARTITION) (Fixed) (Total:306.01 GB) (Free:252.92 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS

\\?\Volume{80681c39-4b7d-4a95-af23-25a545bad2f0}\ () (Fixed) (Total:0.65 GB) (Free:0.07 GB) NTFS
\\?\Volume{4faf6d7c-41cb-4c70-918d-fd97d49b97b5}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{46e58b53-31a3-4a16-9be0-d0765cb93997}\ () (Fixed) (Total:0.51 GB) (Free:0.5 GB) NTFS
\\?\Volume{2a6e9161-b565-4c4d-9a24-85ae227f7d1c}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 62ED762A)

Partition: GPT.

==================== Fin de Addition.txt =======================