Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-05-2021
Exécuté par jpb10 (administrateur) sur DESKTOP-JPB (MEDION Akoya P5321 I/C067) (17-05-2021 14:02:11)
Exécuté depuis D:\Dossier mail et système\Bureau\bureau
Profils chargés: jpb10
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_724e05bd98458fe4\RstMwService.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\TPMProvisioningService.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(LogMeIn, Inc. -> LastPass) C:\Program Files (x86)\LastPass\nplastpass.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(QuestSoft) [Fichier non signé] D:\Dossier JPB\Download\Qtranslate\QTranslate.6.8.0.1\QTranslate.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR) D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\dexpot.exe
(Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR) D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\Dexpot64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16695816 2016-08-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795704 2015-08-07] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [228568 2015-01-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-10-21] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-30] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172264 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ABNotify] => C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe [89968 2016-12-30] (CHENGDU AOMEI Tech Co., Ltd. -> )
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1971560 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [Dexpot] => D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\dexpot.exe [1843704 2016-07-19] (Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [64464 2021-04-26] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-default-browser-check --no-displaying-insecure-content --no-first-run --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\kis\S- (l'élément de données a 202 caractères en plus).
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\ssy5cPC: C:\Windows\System32\spool\prtprocs\x64\ssy5cpc.dll [43520 2017-07-10] (Windows (R) Codename Longhorn DDK provider) [Fichier non signé]
HKLM\...\Print\Monitors\Adobe PDF Port: C:\Windows\system32\AdobePDF64.dll [35928 2007-03-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2019-03-16] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\ssy5c Langmon: C:\Windows\system32\ssy5clm.dll [22528 2017-07-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us013 Langmon: C:\Windows\system32\us013lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
Startup: C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-05-02]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lancer QTranslate.lnk [2020-10-31]
ShortcutTarget: Lancer QTranslate.lnk -> D:\Dossier JPB\Download\Qtranslate\QTranslate.6.8.0.1\QTranslate.exe (QuestSoft) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EB9BE20-5FD4-4746-A106-9C71E2AB1290} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-06] (Google Inc -> Google Inc.)
Task: {146F338B-99DF-41A9-94EC-9AD8B1029737} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {42BFD79B-FE16-4283-8279-0C0477BC1B39} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-06] (Google Inc -> Google Inc.)
Task: {45402EA3-F494-440A-A639-8AECC861651F} - System32\Tasks\CCleaner Update => D:\Dossier JPB\Download\CCleaner portable\Version portable 5.71\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {455A429E-2D7E-4559-8278-2943894625A9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EC2C9D8-8607-458A-A2F2-F7B4230A0B78} - System32\Tasks\CCleanerSkipUAC => D:\Dossier JPB\Download\CCleaner portable\Version portable 5.71\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8CEF93EC-3826-450C-A786-FE6BC1947963} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {972C11D9-94CF-45FA-9FE7-2A9DA79369EA} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2832240 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {AFF0B693-52EB-4809-BA3C-5296941446EE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B31D08DE-DA2E-4108-A48D-A86BB5FFE01D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D23E2F25-9913-4057-B931-E0E3ECF8C753} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3A04C86-A864-425E-856B-2A93ABFACBE3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6593D5B-9177-48B9-B48B-5BD45AE20D61} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c1e91334-e9db-47f6-ac5a-350a9b1dfec2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{e0da4f99-dcd7-4767-bd19-1b98ecabad97}: [DhcpNameServer] 192.168.0.254
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jpb10\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-17]
Edge HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-11-07] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-08-04] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-08-04] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default [2021-05-17]
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxps://www.google.ch/?gws_rd=ssl"
CHR DefaultSearchURL: Default -> hxxps://forum.doctsf.com/uploads/default/optimized/3X/3/c/3cfc505d116b45f4466a43e77fb617611b6dc121_2_512x512.png
CHR Extension: (Google Traduction) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Slides) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Kaspersky Protection) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-04-16]
CHR Extension: (Docs) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Google Drive) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-06]
CHR Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2021-04-15]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2016-12-21]
CHR Extension: (Sheets) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-11]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Forum doctsf) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\paaojjndkeadcnchnegdbccaghkdemej [2021-05-08]
CHR Extension: (Gmail) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-05-16]
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\System Profile [2021-05-16]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2016-12-30] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [108248 2015-03-06] (Realtek Semiconductor Corp -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.073.0411.0002\FileSyncHelper.exe [2098024 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2016-12-12] (Macrovision Europe Ltd.) [Fichier non signé]
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-12-08] (Mixbyte Inc -> Freemake)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-12-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.073.0411.0002\OneDriveUpdaterService.exe [2560376 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] (Realtek Semiconductor Corp -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2018-03-27] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ampa; C:\Windows\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Fichier non signé]
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-04-12] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [177880 2014-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [59608 2014-05-23] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [69848 2013-06-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [50848 2019-01-09] (WDKTestCert myang,131801675084663740 -> Synaptics Incorporated)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-03-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-03-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-17 12:36 - 2021-05-17 12:55 - 000038692 _____ C:\Users\jpb10\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-05-17 11:47 - 2021-05-17 11:47 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-05-17 11:47 - 2021-05-17 11:47 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-05-17 11:47 - 2021-05-17 11:47 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000001997 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-16 21:19 - 2021-05-16 21:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-16 21:18 - 2021-05-16 21:18 - 000000000 ____D C:\Program Files\Malwarebytes
2021-05-16 21:17 - 2021-05-16 21:17 - 002078632 _____ (Malwarebytes) C:\Users\jpb10\Downloads\MBSetup (1).exe
2021-05-16 21:08 - 2021-05-16 21:13 - 000000000 ____D C:\AdwCleaner
2021-05-16 15:58 - 2021-05-17 14:02 - 000000000 ____D C:\FRST
2021-05-16 14:57 - 2021-05-16 14:57 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-05-16 14:53 - 2021-05-16 14:53 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-05-14 11:36 - 2021-05-14 11:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-05-13 18:54 - 2021-05-13 18:54 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 18:54 - 2021-05-13 18:54 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 18:54 - 2021-05-13 18:54 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 18:54 - 2021-05-13 18:54 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 18:53 - 2021-05-13 18:53 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 18:53 - 2021-05-13 18:53 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-05-08 00:54 - 2021-05-08 00:54 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2021-05-06 00:40 - 2021-05-06 00:40 - 000000000 ____D C:\Users\jpb10\AppData\Local\Lamantine
2021-05-06 00:40 - 2021-05-06 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Password
2021-04-14 10:28 - 2021-04-14 10:28 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 12:19 - 2021-04-13 12:19 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2021-04-13 12:18 - 2021-04-13 16:11 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-04-13 12:18 - 2021-04-13 12:18 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2021-04-13 12:18 - 2021-04-13 12:18 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2021-03-21 19:17 - 2021-03-21 19:17 - 002323741 _____ C:\Users\jpb10\Documents\xxx.prn
2021-03-18 00:37 - 2021-03-18 00:37 - 000000000 ____H C:\Users\jpb10\Documents\Default.rdp
2021-03-11 22:03 - 2021-03-11 22:03 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 22:03 - 2021-03-11 22:03 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-05 21:37 - 2021-03-05 21:37 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-04 20:17 - 2021-03-04 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2021-03-04 13:58 - 2021-03-04 13:58 - 000000000 ____D C:\WINDOWS\Panther
2021-03-03 17:45 - 2021-03-21 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FriTax 2020
2021-03-03 17:44 - 2021-03-21 17:38 - 000000000 ____D C:\ProgramData\FriTax 2020
2021-03-03 17:44 - 2021-03-21 17:38 - 000000000 ____D C:\Program Files (x86)\FriTax 2020
2021-02-24 00:39 - 2021-05-06 01:02 - 000000000 ___SD C:\Users\jpb10\Documents\Sticky Passwords
2021-02-24 00:39 - 2021-05-06 00:40 - 000000000 ____D C:\Program Files (x86)\Sticky Password
2021-02-19 22:08 - 2021-02-19 22:08 - 000250032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys
2021-02-19 22:08 - 2021-02-19 22:08 - 000041656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klelam.sys
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-17 13:57 - 2020-02-29 19:20 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\ZHP
2021-05-17 13:51 - 2020-12-15 17:47 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\iMazing
2021-05-17 13:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-17 11:52 - 2020-10-31 03:50 - 002654916 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-17 11:52 - 2020-10-31 03:23 - 000732278 _____ C:\WINDOWS\system32\perfh007.dat
2021-05-17 11:52 - 2020-10-31 03:23 - 000149678 _____ C:\WINDOWS\system32\perfc007.dat
2021-05-17 11:52 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-17 11:52 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-17 11:52 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-17 11:47 - 2020-10-31 03:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-17 11:47 - 2017-08-21 18:24 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-17 11:47 - 2017-02-04 17:56 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-05-17 11:47 - 2016-10-07 17:58 - 000000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2021-05-17 11:46 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-16 23:07 - 2020-10-31 03:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-16 21:28 - 2019-02-02 14:20 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Innovative Solutions
2021-05-16 21:28 - 2019-02-02 14:20 - 000000000 ____D C:\Users\jpb10\AppData\Local\Innovative Solutions
2021-05-16 21:23 - 2016-10-11 01:37 - 000000000 ____D C:\Users\jpb10\AppData\Local\CrashDumps
2021-05-16 21:19 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-16 20:50 - 2020-02-29 19:20 - 000000000 ____D C:\Users\jpb10\AppData\Local\ZHP
2021-05-16 20:46 - 2016-08-28 15:55 - 000000000 ____D C:\Users\jpb10\Documents\CyberLink
2021-05-16 20:46 - 2015-10-01 18:24 - 000000000 ____D C:\Users\Public\CyberLink
2021-05-16 20:46 - 2015-10-01 18:23 - 000000000 ____D C:\ProgramData\CyberLink
2021-05-16 20:46 - 2015-10-01 18:23 - 000000000 ____D C:\ProgramData\CLSK
2021-05-16 20:46 - 2015-07-25 19:19 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-05-16 17:26 - 2016-10-07 17:58 - 000000000 ____D C:\ProgramData\AomeiBR
2021-05-16 16:46 - 2016-10-07 17:58 - 000001024 ____H C:\SYSTAG.BIN
2021-05-16 15:19 - 2020-10-31 03:40 - 000467040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-16 14:57 - 2016-08-31 00:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-05-16 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-05-15 14:49 - 2020-07-26 12:57 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-15 14:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-15 14:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-15 00:32 - 2020-12-14 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2021-05-15 00:31 - 2020-12-15 01:19 - 000000000 ____D C:\Users\jpb10\AppData\Local\Freemake Music Box
2021-05-14 11:36 - 2019-04-21 22:33 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-05-14 11:35 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-14 00:32 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 18:56 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 18:56 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 18:43 - 2016-08-28 16:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 18:41 - 2016-08-28 16:22 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-13 00:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-10 13:53 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-08 18:00 - 2019-09-27 11:21 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-05-08 00:13 - 2020-10-31 03:51 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-05-08 00:13 - 2019-09-27 11:21 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-06 16:16 - 2017-10-26 00:03 - 000000000 ____D C:\Users\jpb10\Documents\Fichiers Outlook
2021-05-06 13:48 - 2019-04-21 22:33 - 000001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-06 13:48 - 2019-04-21 22:33 - 000001204 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-06 01:01 - 2020-10-31 03:43 - 000000000 ____D C:\Users\jpb10
2021-05-05 22:45 - 2019-04-21 18:30 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\WhatsApp
2021-05-05 22:45 - 2019-04-21 18:30 - 000000000 ____D C:\Users\jpb10\AppData\Local\WhatsApp
2021-05-05 22:43 - 2020-10-31 03:51 - 000004268 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-05 22:43 - 2020-10-31 03:51 - 000004036 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-05-04 23:16 - 2018-01-26 19:08 - 000000000 ____D C:\Users\jpb10\AppData\Local\PlaceholderTileLogoFolder
2021-04-30 14:58 - 2020-11-11 19:51 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Advance
2021-04-26 12:05 - 2020-10-31 06:33 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6af27c8b652b4
2021-04-26 12:05 - 2020-10-31 03:51 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-21 21:35 - 2020-08-22 21:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-21 13:57 - 2020-10-31 03:51 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-21 13:57 - 2020-10-31 03:51 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2016-12-17 18:39 - 2018-06-08 17:14 - 003232128 _____ () C:\Users\jpb10\ZHPCleaner.exe
2021-05-17 12:36 - 2021-05-17 12:55 - 000038692 _____ () C:\Users\jpb10\AppData\Roaming\Valeurs séparées par une virgule.ADR
2018-06-11 00:18 - 2021-05-17 11:47 - 002155427 _____ () C:\Users\jpb10\AppData\Local\BTServer.log
2017-01-16 16:36 - 2020-12-15 15:36 - 000007656 _____ () C:\Users\jpb10\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2020-02-12 20:30 - 2020-02-12 20:30 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2014-09-08 14:37 - 2014-09-08 14:37 - 000072192 _____ C:\WINDOWS\system32\CDASpl.dll
2015-07-10 13:00 - 2015-07-10 13:00 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2015-07-10 13:01 - 2015-07-10 13:01 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcComImplementations.dll
2017-04-11 23:53 - 2017-03-28 07:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2018-03-27 13:01 - 2016-08-10 13:07 - 002847744 _____ C:\WINDOWS\system32\DlgSearchEngine.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001210368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dml.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-03-27 13:00 - 2017-07-10 14:08 - 001848320 _____ C:\WINDOWS\system32\eed_ec.dll
2018-07-11 00:01 - 2018-06-15 19:30 - 001308672 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemonitor.dll
2019-09-27 11:30 - 2019-06-13 09:48 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2017-05-12 00:03 - 2017-03-04 08:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPPMon.dll
2018-07-11 00:01 - 2018-07-06 09:00 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Core.dll
2018-04-11 00:06 - 2018-03-30 05:28 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2018-01-04 00:59 - 2019-03-16 19:33 - 000117248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000049664 _____ C:\WINDOWS\system32\PerceptionSimulationInput.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneDataSync.dll
2015-10-08 23:16 - 2015-01-26 18:35 - 000040516 _____ C:\WINDOWS\system32\rlt8723a_chip_bt40_fw_asic_rom_patch.dll
2015-10-08 23:16 - 2015-03-19 17:26 - 000048116 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048276 _____ C:\WINDOWS\system32\rtl8761a_bcut_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048276 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048192 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000049088 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2015-10-08 23:16 - 2015-02-03 11:56 - 000045868 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-04-02 17:25 - 000034840 _____ C:\WINDOWS\system32\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvcPAL.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe
2015-07-10 13:00 - 2015-07-10 13:00 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmClientApi.dll
2018-05-17 10:07 - 2018-05-17 10:07 - 000087552 _____ C:\WINDOWS\system32\ssdevm64.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VrdUmed.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedic.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Sets.dll
2016-08-29 23:45 - 2015-12-11 09:57 - 001920624 _____ C:\WINDOWS\ampa.exe
2003-10-17 12:44 - 2003-10-17 12:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cflapi.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellExtFramework.dll
2015-07-10 13:01 - 2015-07-10 13:01 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2017-03-05 16:38 - 1999-01-20 06:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL
2016-09-05 12:06 - 2016-08-10 13:07 - 002094592 _____ C:\WINDOWS\SysWOW64\DlgSearchEngine.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001161216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dml.dll
1999-04-08 15:47 - 1999-04-08 15:47 - 000036864 _____ C:\WINDOWS\SysWOW64\FViGxDS1.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamemonitor.dll
1998-11-23 13:57 - 1998-11-23 13:57 - 000940304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Igx42.dll
1998-06-16 21:00 - 1998-06-16 21:00 - 000995383 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Igx43.dll
2000-05-17 11:13 - 2000-05-17 11:13 - 000339968 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\Igxbm40.dll
1999-05-03 12:12 - 1999-05-03 12:12 - 000038400 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\Igxfrm2x.dll
2001-03-07 17:10 - 2001-03-07 17:10 - 000139264 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\IGXFRM40.dll
2001-04-18 17:41 - 2001-04-18 17:41 - 001015808 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\igxSpud.dll
2000-06-02 08:57 - 2000-06-02 08:57 - 000049152 _____ (Micrografx) C:\WINDOWS\SysWOW64\igxwlcm2.dll
2017-03-15 11:43 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 13:44 - 2016-07-17 00:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2015-10-01 18:05 - 2010-12-01 11:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2015-05-22 03:00 - 2015-05-22 03:00 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000034304 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfbmp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfcal10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000266752 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfcmp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000077824 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lffax10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000100352 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lffpx10n.dll
1997-11-21 18:03 - 1997-11-21 18:03 - 000338944 _____ () C:\WINDOWS\SysWOW64\Lffpx7.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000041472 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfgif10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000046592 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfica10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfimg10n.dll
1997-09-30 14:30 - 1997-09-30 14:30 - 000122880 _____ () C:\WINDOWS\SysWOW64\Lfkodak.dll
1998-11-30 13:52 - 1998-11-30 13:52 - 000031744 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lflmb10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000025600 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfmac10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfmsp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpcd10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000031232 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpct10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000033280 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpcx10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000134144 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpng10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000056320 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpsd10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfras10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027648 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lftga10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000122368 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lftif10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfwfx10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000257024 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltann10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000231424 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltdis10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000103424 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltfil10n.dll
1998-11-30 13:09 - 1998-11-30 13:09 - 000114176 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltimg10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000297472 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltkrn10n.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsTelemetry.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2004-02-20 16:15 - 2004-02-20 16:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2003-10-17 12:44 - 2003-10-17 12:44 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2004-02-20 16:47 - 2004-02-20 16:47 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
2015-07-10 13:01 - 2016-09-18 15:12 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-09-18 15:09 - 2016-09-07 06:08 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-07-10 13:01 - 2016-09-18 15:12 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
1998-02-25 11:45 - 1998-02-25 11:45 - 000212480 _____ (Eastman Kodak) C:\WINDOWS\SysWOW64\PcdLib32.dll
2015-10-01 18:05 - 2012-02-14 21:37 - 000594432 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\SysWOW64\Rtlihvs.dll
2018-05-17 10:07 - 2018-05-17 10:07 - 000094208 _____ C:\WINDOWS\SysWOW64\Ssdevm.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2017-09-29 15:42 - 2017-09-29 15:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tier2punctuations.dll
2016-12-17 18:39 - 2018-06-08 17:14 - 003232128 _____ C:\Users\jpb10\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{7e498e4d-8afd-11eb-a534-806e6f6e6963}
{7e498e4e-8afd-11eb-a534-806e6f6e6963}
{7e498e4f-8afd-11eb-a534-806e6f6e6963}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume4
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4d-8afd-11eb-a534-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4e-8afd-11eb-a534-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4f-8afd-11eb-a534-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{06a7dbf8-1b1a-11eb-b991-ea69155be80a}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{06a7dbf8-1b1a-11eb-b991-ea69155be80a}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {4e1c06bb-0c0f-4156-9949-e0f4fcaa16e0}
device ramdisk=[unknown]\Aomei\AomeiBoot.wim,{ea94d232-c61b-4a61-9287-45f9790d404b}
description Aomei PE
osdevice ramdisk=[unknown]\Aomei\AomeiBoot.wim,{ea94d232-c61b-4a61-9287-45f9790d404b}
systemroot \Windows
nx OptIn
detecthal Yes
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {7236fdc6-a755-11e6-8469-9ad89f94e757}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7236fdc7-a755-11e6-8469-9ad89f94e757}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7236fdc7-a755-11e6-8469-9ad89f94e757}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {8d7f0cc6-879e-47f6-a767-0ed8fd3b0659}
device ramdisk=[\Device\HarddiskVolume8]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d}
path \windows\system32\winload.efi
description MEDION Recovery Environment
osdevice ramdisk=[\Device\HarddiskVolume8]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {ccd76c08-b477-11e5-9bd8-b8aeedfb3989}
device unknown
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice unknown
systemroot \WINDOWS
resumeobject {ccd76c07-b477-11e5-9bd8-b8aeedfb3989}
nx OptIn
bootmenupolicy Standard
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {4a338979-6889-11e5-a27d-b48d5be9d7c7}
device unknown
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ccd76c04-b477-11e5-9bd8-b8aeedfb3989}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice unknown
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume4
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
integrityservices Enable
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {06a7dbf8-1b1a-11eb-b991-ea69155be80a}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume7
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {572bcd56-ffa7-11d9-aae0-0007e994107d}
description Ramdisk Options
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \boot\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {ea94d232-c61b-4a61-9287-45f9790d404b}
ramdisksdidevice unknown
ramdisksdipath \Aomei\AomeiBoot.sdi
==================== Fin de FRST.txt ========================
Exécuté par jpb10 (administrateur) sur DESKTOP-JPB (MEDION Akoya P5321 I/C067) (17-05-2021 14:02:11)
Exécuté depuis D:\Dossier mail et système\Bureau\bureau
Profils chargés: jpb10
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_724e05bd98458fe4\RstMwService.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\TPMProvisioningService.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(LogMeIn, Inc. -> LastPass) C:\Program Files (x86)\LastPass\nplastpass.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(QuestSoft) [Fichier non signé] D:\Dossier JPB\Download\Qtranslate\QTranslate.6.8.0.1\QTranslate.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR) D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\dexpot.exe
(Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR) D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\Dexpot64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16695816 2016-08-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795704 2015-08-07] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [228568 2015-01-15] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-10-21] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-30] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8172264 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ABNotify] => C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe [89968 2016-12-30] (CHENGDU AOMEI Tech Co., Ltd. -> )
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1971560 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [Dexpot] => D:\Dossier JPB\Download\Dexpot (Pour les bureaux virtuels)\dexpot.exe [1843704 2016-07-19] (Sebastian Brands und Patrick Dubbert (Dexpot GbR) -> Dexpot GbR)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [64464 2021-04-26] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --no-default-browser-check --no-displaying-insecure-content --no-first-run --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\kis\S- (l'élément de données a 202 caractères en plus).
HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\ssy5cPC: C:\Windows\System32\spool\prtprocs\x64\ssy5cpc.dll [43520 2017-07-10] (Windows (R) Codename Longhorn DDK provider) [Fichier non signé]
HKLM\...\Print\Monitors\Adobe PDF Port: C:\Windows\system32\AdobePDF64.dll [35928 2007-03-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [117248 2019-03-16] (pdfforge GmbH) [Fichier non signé]
HKLM\...\Print\Monitors\ssy5c Langmon: C:\Windows\system32\ssy5clm.dll [22528 2017-07-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us013 Langmon: C:\Windows\system32\us013lm.dll [22528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
Startup: C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2021-05-02]
ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lancer QTranslate.lnk [2020-10-31]
ShortcutTarget: Lancer QTranslate.lnk -> D:\Dossier JPB\Download\Qtranslate\QTranslate.6.8.0.1\QTranslate.exe (QuestSoft) [Fichier non signé]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EB9BE20-5FD4-4746-A106-9C71E2AB1290} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-06] (Google Inc -> Google Inc.)
Task: {146F338B-99DF-41A9-94EC-9AD8B1029737} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {42BFD79B-FE16-4283-8279-0C0477BC1B39} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-06] (Google Inc -> Google Inc.)
Task: {45402EA3-F494-440A-A639-8AECC861651F} - System32\Tasks\CCleaner Update => D:\Dossier JPB\Download\CCleaner portable\Version portable 5.71\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform)
Task: {455A429E-2D7E-4559-8278-2943894625A9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EC2C9D8-8607-458A-A2F2-F7B4230A0B78} - System32\Tasks\CCleanerSkipUAC => D:\Dossier JPB\Download\CCleaner portable\Version portable 5.71\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8CEF93EC-3826-450C-A786-FE6BC1947963} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {972C11D9-94CF-45FA-9FE7-2A9DA79369EA} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2832240 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {AFF0B693-52EB-4809-BA3C-5296941446EE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {B31D08DE-DA2E-4108-A48D-A86BB5FFE01D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {D23E2F25-9913-4057-B931-E0E3ECF8C753} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3A04C86-A864-425E-856B-2A93ABFACBE3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6593D5B-9177-48B9-B48B-5BD45AE20D61} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c1e91334-e9db-47f6-ac5a-350a9b1dfec2}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{e0da4f99-dcd7-4767-bd19-1b98ecabad97}: [DhcpNameServer] 192.168.0.254
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\jpb10\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-17]
Edge HKU\S-1-5-21-3326691530-1372380808-3353578716-1003\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2020-11-07] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-08-04] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-08-04] (LastPass (Marvasol Inc) -> LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default [2021-05-17]
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxps://www.google.ch/?gws_rd=ssl"
CHR DefaultSearchURL: Default -> hxxps://forum.doctsf.com/uploads/default/optimized/3X/3/c/3cfc505d116b45f4466a43e77fb617611b6dc121_2_512x512.png
CHR Extension: (Google Traduction) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Slides) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Kaspersky Protection) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-04-16]
CHR Extension: (Docs) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Google Drive) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-06]
CHR Extension: (Sticky Password gestionnaire de mots de passe) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2021-04-15]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2016-12-21]
CHR Extension: (Sheets) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-11]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-05-06]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Forum doctsf) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\paaojjndkeadcnchnegdbccaghkdemej [2021-05-08]
CHR Extension: (Gmail) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-05-16]
CHR Profile: C:\Users\jpb10\AppData\Local\Google\Chrome\User Data\System Profile [2021-05-16]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [384280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [122728 2016-12-30] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [108248 2015-03-06] (Realtek Semiconductor Corp -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-21] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44272 2021-05-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.073.0411.0002\FileSyncHelper.exe [2098024 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2016-12-12] (Macrovision Europe Ltd.) [Fichier non signé]
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-12-08] (Mixbyte Inc -> Freemake)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-12-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.073.0411.0002\OneDriveUpdaterService.exe [2560376 2021-05-08] (Microsoft Corporation -> Microsoft Corporation)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] (Realtek Semiconductor Corp -> )
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2018-03-27] (Samsung Electronics CO., LTD. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 ampa; C:\Windows\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Fichier non signé]
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [38320 2016-12-22] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [245304 2021-04-12] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [96008 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-13] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-16] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-05-17] (Malwarebytes Inc -> Malwarebytes)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [177880 2014-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [59608 2014-05-23] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [69848 2013-06-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [50848 2019-01-09] (WDKTestCert myang,131801675084663740 -> Synaptics Incorporated)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-03-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-03-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-17 12:36 - 2021-05-17 12:55 - 000038692 _____ C:\Users\jpb10\AppData\Roaming\Valeurs séparées par une virgule.ADR
2021-05-17 11:47 - 2021-05-17 11:47 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-05-17 11:47 - 2021-05-17 11:47 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-05-17 11:47 - 2021-05-17 11:47 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-05-16 21:19 - 2021-05-16 21:19 - 000001997 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-16 21:19 - 2021-05-16 21:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-16 21:18 - 2021-05-16 21:18 - 000000000 ____D C:\Program Files\Malwarebytes
2021-05-16 21:17 - 2021-05-16 21:17 - 002078632 _____ (Malwarebytes) C:\Users\jpb10\Downloads\MBSetup (1).exe
2021-05-16 21:08 - 2021-05-16 21:13 - 000000000 ____D C:\AdwCleaner
2021-05-16 15:58 - 2021-05-17 14:02 - 000000000 ____D C:\FRST
2021-05-16 14:57 - 2021-05-16 14:57 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-05-16 14:57 - 2021-05-16 14:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-05-16 14:53 - 2021-05-16 14:53 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-05-14 11:36 - 2021-05-14 11:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-05-13 18:54 - 2021-05-13 18:54 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 18:54 - 2021-05-13 18:54 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 18:54 - 2021-05-13 18:54 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 18:54 - 2021-05-13 18:54 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 18:53 - 2021-05-13 18:53 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 18:53 - 2021-05-13 18:53 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 18:53 - 2021-05-13 18:53 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 18:53 - 2021-05-13 18:53 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-05-11 23:25 - 2021-05-11 23:25 - 000044272 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-05-08 00:54 - 2021-05-08 00:54 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2021-05-06 00:40 - 2021-05-06 00:40 - 000000000 ____D C:\Users\jpb10\AppData\Local\Lamantine
2021-05-06 00:40 - 2021-05-06 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sticky Password
2021-04-14 10:28 - 2021-04-14 10:28 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-13 12:19 - 2021-04-13 12:19 - 000309104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2021-04-13 12:18 - 2021-04-13 16:11 - 000224880 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2021-04-13 12:18 - 2021-04-13 12:18 - 000263888 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2021-04-13 12:18 - 2021-04-13 12:18 - 000115744 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2021-03-21 19:17 - 2021-03-21 19:17 - 002323741 _____ C:\Users\jpb10\Documents\xxx.prn
2021-03-18 00:37 - 2021-03-18 00:37 - 000000000 ____H C:\Users\jpb10\Documents\Default.rdp
2021-03-11 22:03 - 2021-03-11 22:03 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 22:03 - 2021-03-11 22:03 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-05 21:37 - 2021-03-05 21:37 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-04 20:17 - 2021-03-04 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2021-03-04 13:58 - 2021-03-04 13:58 - 000000000 ____D C:\WINDOWS\Panther
2021-03-03 17:45 - 2021-03-21 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FriTax 2020
2021-03-03 17:44 - 2021-03-21 17:38 - 000000000 ____D C:\ProgramData\FriTax 2020
2021-03-03 17:44 - 2021-03-21 17:38 - 000000000 ____D C:\Program Files (x86)\FriTax 2020
2021-02-24 00:39 - 2021-05-06 01:02 - 000000000 ___SD C:\Users\jpb10\Documents\Sticky Passwords
2021-02-24 00:39 - 2021-05-06 00:40 - 000000000 ____D C:\Program Files (x86)\Sticky Password
2021-02-19 22:08 - 2021-02-19 22:08 - 000250032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys
2021-02-19 22:08 - 2021-02-19 22:08 - 000041656 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klelam.sys
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-05-17 13:57 - 2020-02-29 19:20 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\ZHP
2021-05-17 13:51 - 2020-12-15 17:47 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\iMazing
2021-05-17 13:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-17 11:52 - 2020-10-31 03:50 - 002654916 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-17 11:52 - 2020-10-31 03:23 - 000732278 _____ C:\WINDOWS\system32\perfh007.dat
2021-05-17 11:52 - 2020-10-31 03:23 - 000149678 _____ C:\WINDOWS\system32\perfc007.dat
2021-05-17 11:52 - 2019-12-07 16:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-17 11:52 - 2019-12-07 16:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-17 11:52 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-17 11:47 - 2020-10-31 03:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-17 11:47 - 2017-08-21 18:24 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-17 11:47 - 2017-02-04 17:56 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-05-17 11:47 - 2016-10-07 17:58 - 000000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2021-05-17 11:46 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-16 23:07 - 2020-10-31 03:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-16 21:28 - 2019-02-02 14:20 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Innovative Solutions
2021-05-16 21:28 - 2019-02-02 14:20 - 000000000 ____D C:\Users\jpb10\AppData\Local\Innovative Solutions
2021-05-16 21:23 - 2016-10-11 01:37 - 000000000 ____D C:\Users\jpb10\AppData\Local\CrashDumps
2021-05-16 21:19 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-16 20:50 - 2020-02-29 19:20 - 000000000 ____D C:\Users\jpb10\AppData\Local\ZHP
2021-05-16 20:46 - 2016-08-28 15:55 - 000000000 ____D C:\Users\jpb10\Documents\CyberLink
2021-05-16 20:46 - 2015-10-01 18:24 - 000000000 ____D C:\Users\Public\CyberLink
2021-05-16 20:46 - 2015-10-01 18:23 - 000000000 ____D C:\ProgramData\CyberLink
2021-05-16 20:46 - 2015-10-01 18:23 - 000000000 ____D C:\ProgramData\CLSK
2021-05-16 20:46 - 2015-07-25 19:19 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-05-16 17:26 - 2016-10-07 17:58 - 000000000 ____D C:\ProgramData\AomeiBR
2021-05-16 16:46 - 2016-10-07 17:58 - 000001024 ____H C:\SYSTAG.BIN
2021-05-16 15:19 - 2020-10-31 03:40 - 000467040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-16 14:57 - 2016-08-31 00:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-05-16 14:53 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-05-15 14:49 - 2020-07-26 12:57 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-15 14:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-15 14:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-15 00:32 - 2020-12-14 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2021-05-15 00:31 - 2020-12-15 01:19 - 000000000 ____D C:\Users\jpb10\AppData\Local\Freemake Music Box
2021-05-14 11:36 - 2019-04-21 22:33 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-05-14 11:35 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-14 00:32 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 00:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 18:56 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 18:56 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 18:43 - 2016-08-28 16:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 18:41 - 2016-08-28 16:22 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-13 00:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-10 13:53 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-08 18:00 - 2019-09-27 11:21 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-05-08 00:13 - 2020-10-31 03:51 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-05-08 00:13 - 2019-09-27 11:21 - 000002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-06 16:16 - 2017-10-26 00:03 - 000000000 ____D C:\Users\jpb10\Documents\Fichiers Outlook
2021-05-06 13:48 - 2019-04-21 22:33 - 000001208 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-06 13:48 - 2019-04-21 22:33 - 000001204 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-06 01:01 - 2020-10-31 03:43 - 000000000 ____D C:\Users\jpb10
2021-05-05 22:45 - 2019-04-21 18:30 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\WhatsApp
2021-05-05 22:45 - 2019-04-21 18:30 - 000000000 ____D C:\Users\jpb10\AppData\Local\WhatsApp
2021-05-05 22:43 - 2020-10-31 03:51 - 000004268 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-05 22:43 - 2020-10-31 03:51 - 000004036 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-05-04 23:16 - 2018-01-26 19:08 - 000000000 ____D C:\Users\jpb10\AppData\Local\PlaceholderTileLogoFolder
2021-04-30 14:58 - 2020-11-11 19:51 - 000000000 ____D C:\Users\jpb10\AppData\Roaming\Advance
2021-04-26 12:05 - 2020-10-31 06:33 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6af27c8b652b4
2021-04-26 12:05 - 2020-10-31 03:51 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-21 21:35 - 2020-08-22 21:26 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-21 13:57 - 2020-10-31 03:51 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-21 13:57 - 2020-10-31 03:51 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2016-12-17 18:39 - 2018-06-08 17:14 - 003232128 _____ () C:\Users\jpb10\ZHPCleaner.exe
2021-05-17 12:36 - 2021-05-17 12:55 - 000038692 _____ () C:\Users\jpb10\AppData\Roaming\Valeurs séparées par une virgule.ADR
2018-06-11 00:18 - 2021-05-17 11:47 - 002155427 _____ () C:\Users\jpb10\AppData\Local\BTServer.log
2017-01-16 16:36 - 2020-12-15 15:36 - 000007656 _____ () C:\Users\jpb10\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2019-03-19 06:45 - 2019-03-19 06:45 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionMgr.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2020-02-12 20:30 - 2020-02-12 20:30 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\canonurl.dll
2014-09-08 14:37 - 2014-09-08 14:37 - 000072192 _____ C:\WINDOWS\system32\CDASpl.dll
2015-07-10 13:00 - 2015-07-10 13:00 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2019-03-19 06:45 - 2019-03-19 06:45 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CMFNVSDeviceBridge.dll
2015-07-10 13:01 - 2015-07-10 13:01 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcComImplementations.dll
2017-04-11 23:53 - 2017-03-28 07:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2018-03-27 13:01 - 2016-08-10 13:07 - 002847744 _____ C:\WINDOWS\system32\DlgSearchEngine.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001210368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dml.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-03-27 13:00 - 2017-07-10 14:08 - 001848320 _____ C:\WINDOWS\system32\eed_ec.dll
2018-07-11 00:01 - 2018-06-15 19:30 - 001308672 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemonitor.dll
2019-09-27 11:30 - 2019-06-13 09:48 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2017-05-12 00:03 - 2017-03-04 08:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPPMon.dll
2018-07-11 00:01 - 2018-07-06 09:00 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Core.dll
2018-04-11 00:06 - 2018-03-30 05:28 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2019-03-19 06:43 - 2019-03-19 06:43 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mitigationscanner.exe
2018-01-04 00:59 - 2019-03-16 19:33 - 000117248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000049664 _____ C:\WINDOWS\system32\PerceptionSimulationInput.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneDataSync.dll
2015-10-08 23:16 - 2015-01-26 18:35 - 000040516 _____ C:\WINDOWS\system32\rlt8723a_chip_bt40_fw_asic_rom_patch.dll
2015-10-08 23:16 - 2015-03-19 17:26 - 000048116 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048276 _____ C:\WINDOWS\system32\rtl8761a_bcut_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048276 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000048192 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2015-10-08 23:16 - 2015-02-03 11:55 - 000049088 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2015-10-08 23:16 - 2015-02-03 11:56 - 000045868 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-08 23:16 - 2015-04-02 17:25 - 000034840 _____ C:\WINDOWS\system32\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvcPAL.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe
2015-07-10 13:00 - 2015-07-10 13:00 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmClientApi.dll
2018-05-17 10:07 - 2018-05-17 10:07 - 000087552 _____ C:\WINDOWS\system32\ssdevm64.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2017-09-29 15:41 - 2017-09-29 15:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VrdUmed.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedic.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2019-03-19 06:44 - 2019-03-19 06:44 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.ShellPosition.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Sets.dll
2016-08-29 23:45 - 2015-12-11 09:57 - 001920624 _____ C:\WINDOWS\ampa.exe
2003-10-17 12:44 - 2003-10-17 12:44 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2019-03-19 06:45 - 2019-03-19 06:45 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\canonurl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cflapi.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellExtFramework.dll
2015-07-10 13:01 - 2015-07-10 13:01 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2017-03-05 16:38 - 1999-01-20 06:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL
2016-09-05 12:06 - 2016-08-10 13:07 - 002094592 _____ C:\WINDOWS\SysWOW64\DlgSearchEngine.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001161216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dml.dll
1999-04-08 15:47 - 1999-04-08 15:47 - 000036864 _____ C:\WINDOWS\SysWOW64\FViGxDS1.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamemonitor.dll
1998-11-23 13:57 - 1998-11-23 13:57 - 000940304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Igx42.dll
1998-06-16 21:00 - 1998-06-16 21:00 - 000995383 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Igx43.dll
2000-05-17 11:13 - 2000-05-17 11:13 - 000339968 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\Igxbm40.dll
1999-05-03 12:12 - 1999-05-03 12:12 - 000038400 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\Igxfrm2x.dll
2001-03-07 17:10 - 2001-03-07 17:10 - 000139264 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\IGXFRM40.dll
2001-04-18 17:41 - 2001-04-18 17:41 - 001015808 _____ (Micrografx, Inc.) C:\WINDOWS\SysWOW64\igxSpud.dll
2000-06-02 08:57 - 2000-06-02 08:57 - 000049152 _____ (Micrografx) C:\WINDOWS\SysWOW64\igxwlcm2.dll
2017-03-15 11:43 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 13:44 - 2016-07-17 00:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2015-10-01 18:05 - 2010-12-01 11:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2015-05-22 03:00 - 2015-05-22 03:00 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000034304 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfbmp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfcal10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000266752 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfcmp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000077824 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lffax10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000100352 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lffpx10n.dll
1997-11-21 18:03 - 1997-11-21 18:03 - 000338944 _____ () C:\WINDOWS\SysWOW64\Lffpx7.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000041472 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfgif10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000046592 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfica10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfimg10n.dll
1997-09-30 14:30 - 1997-09-30 14:30 - 000122880 _____ () C:\WINDOWS\SysWOW64\Lfkodak.dll
1998-11-30 13:52 - 1998-11-30 13:52 - 000031744 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lflmb10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000025600 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfmac10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfmsp10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpcd10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000031232 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpct10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000033280 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpcx10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000134144 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpng10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000056320 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfpsd10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000026112 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfras10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027648 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lftga10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000122368 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lftif10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000027136 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Lfwfx10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000257024 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltann10n.dll
1999-03-29 12:04 - 1999-03-29 12:04 - 000231424 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltdis10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000103424 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltfil10n.dll
1998-11-30 13:09 - 1998-11-30 13:09 - 000114176 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltimg10n.dll
1998-12-01 13:58 - 1998-12-01 13:58 - 000297472 _____ (LEAD Technologies, Inc.) C:\WINDOWS\SysWOW64\Ltkrn10n.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsTelemetry.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2004-02-20 16:15 - 2004-02-20 16:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2003-10-17 12:44 - 2003-10-17 12:44 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2004-02-20 16:15 - 2004-02-20 16:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2004-02-20 16:47 - 2004-02-20 16:47 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
2015-07-10 13:01 - 2016-09-18 15:12 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-09-18 15:09 - 2016-09-07 06:08 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-07-10 13:01 - 2016-09-18 15:12 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2003-10-17 12:44 - 2003-10-17 12:44 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
1998-02-25 11:45 - 1998-02-25 11:45 - 000212480 _____ (Eastman Kodak) C:\WINDOWS\SysWOW64\PcdLib32.dll
2015-10-01 18:05 - 2012-02-14 21:37 - 000594432 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\SysWOW64\Rtlihvs.dll
2018-05-17 10:07 - 2018-05-17 10:07 - 000094208 _____ C:\WINDOWS\SysWOW64\Ssdevm.dll
2017-09-29 15:42 - 2017-09-29 15:42 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2017-09-29 15:42 - 2017-09-29 15:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tier2punctuations.dll
2016-12-17 18:39 - 2018-06-08 17:14 - 003232128 _____ C:\Users\jpb10\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{7e498e4d-8afd-11eb-a534-806e6f6e6963}
{7e498e4e-8afd-11eb-a534-806e6f6e6963}
{7e498e4f-8afd-11eb-a534-806e6f6e6963}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume4
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4d-8afd-11eb-a534-806e6f6e6963}
description UEFI:CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4e-8afd-11eb-a534-806e6f6e6963}
description UEFI:Removable Device
Application logicielle (101fffff)
--------------------------------
identificateur {7e498e4f-8afd-11eb-a534-806e6f6e6963}
description UEFI:Network Device
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{06a7dbf8-1b1a-11eb-b991-ea69155be80a}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{06a7dbf8-1b1a-11eb-b991-ea69155be80a}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {4e1c06bb-0c0f-4156-9949-e0f4fcaa16e0}
device ramdisk=[unknown]\Aomei\AomeiBoot.wim,{ea94d232-c61b-4a61-9287-45f9790d404b}
description Aomei PE
osdevice ramdisk=[unknown]\Aomei\AomeiBoot.wim,{ea94d232-c61b-4a61-9287-45f9790d404b}
systemroot \Windows
nx OptIn
detecthal Yes
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {7236fdc6-a755-11e6-8469-9ad89f94e757}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7236fdc7-a755-11e6-8469-9ad89f94e757}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{7236fdc7-a755-11e6-8469-9ad89f94e757}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {8d7f0cc6-879e-47f6-a767-0ed8fd3b0659}
device ramdisk=[\Device\HarddiskVolume8]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d}
path \windows\system32\winload.efi
description MEDION Recovery Environment
osdevice ramdisk=[\Device\HarddiskVolume8]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {ccd76c08-b477-11e5-9bd8-b8aeedfb3989}
device unknown
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice unknown
systemroot \WINDOWS
resumeobject {ccd76c07-b477-11e5-9bd8-b8aeedfb3989}
nx OptIn
bootmenupolicy Standard
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {06a7dbf5-1b1a-11eb-b991-ea69155be80a}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {06a7dbf7-1b1a-11eb-b991-ea69155be80a}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {4a338979-6889-11e5-a27d-b48d5be9d7c7}
device unknown
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {ccd76c04-b477-11e5-9bd8-b8aeedfb3989}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice unknown
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume4
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
integrityservices Enable
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {06a7dbf8-1b1a-11eb-b991-ea69155be80a}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume7
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {572bcd56-ffa7-11d9-aae0-0007e994107d}
description Ramdisk Options
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \boot\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {ea94d232-c61b-4a61-9287-45f9790d404b}
ramdisksdidevice unknown
ramdisksdipath \Aomei\AomeiBoot.sdi
==================== Fin de FRST.txt ========================