Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-06-2021 01
Exécuté par adrie (administrateur) sur LAPTOP-UK29JPFN (LENOVO 80E3) (05-06-2021 22:29:38)
Exécuté depuis C:\Users\adrie\Downloads
Profils chargés: adrie
Platform: Windows 10 Home Version 1909 18363.1556 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUSrv.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskService.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskServiceTray.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\dglvrsvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\certutil.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1555_none_16e7312f2a3a7b19\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\Shelblock.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\ShelblockSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Yahoo! Inc. -> Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{92EB3A32-1EF5-0C4C-B8F2-2847D0239AB0}\YSearchUtilSVC.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029064 2016-12-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [164808 2021-05-04] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2138448 2021-04-08] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-27] (Adobe Inc. -> Adobe)
HKLM\...\Windows x64\Print Processors\Canon MG5300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAT.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\WINDOWS\system32\CNMLMAT.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-05] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C3C287F-A9FB-4E69-A0CF-3BD70D364795} - System32\Tasks\App Explorer => C:\Users\adrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {0D1A0BCC-32DB-430F-BAF2-88E2782C36CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {12862EB8-4A66-4639-AADF-73BFBD1262C9} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [270272 2015-08-07] (LENOVO -> Lenovo)
Task: {138F48D8-7A7A-4CA0-985E-2073703E50EC} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {1544CB9B-CDEF-4E4D-BD6B-82A13CA8E015} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384 2015-08-07] (LENOVO -> Lenovo)
Task: {15F8AE93-4616-49BC-86FA-A95FFBE16104} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3fa6aa7d-d1a5-4a1b-a8ad-637454e0bd0a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {30429249-24B1-414D-8BD7-F6124F8222FA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-06] (LENOVO -> Lenovo)
Task: {462C23E2-9918-4EED-B1AD-5CCFBE0D4B89} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-27] (Adobe Inc. -> Adobe)
Task: {46629569-507D-4A38-9067-532F4E918FEA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {4B96F9EE-F40A-45C9-8CC4-142B36B036CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-26] (Google Inc -> Google Inc.)
Task: {4F47FA4F-CCBB-4778-BF7F-51C5A50A7402} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\33ac25b3-b92a-493d-b789-6ae4277db8cb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {53BB9461-8E26-415E-9E5D-0BAC2A128D49} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-09-11] (CyberLink Corp. -> CyberLink Corp.)
Task: {54AAB4CE-805C-467A-8242-104FC988E205} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {599E80F5-0B42-4177-96F2-1927FBD17F25} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {7EDE49BE-344C-4FF5-860D-D1FFC8015411} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9bb193af-e6c9-4993-b45c-1d1551c93b78 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {8837678C-328D-4F94-8C9F-E5D301A667DB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 65115EB12293C96F => C:\Users\adrie\AppData\Local\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-29] (Mozilla Corporation -> Mozilla Foundation) <==== ATTENTION
Task: {A8894E0C-2BEC-4576-B22B-CF6D1D10D6E8} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9476544 2015-08-07] (LENOVO -> )
Task: {B9BC5353-B84A-4844-B77B-1F163919B636} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {BE73296B-C53C-4BF7-84E5-CFEAD5B2CFAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-26] (Google Inc -> Google Inc.)
Task: {C3B0211E-9B53-4FF3-A997-79EE1E867669} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C9BDEA1B-DF52-4A3A-A5FE-C29F82CBE3B8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b3277656-c0de-434a-a3a9-6fa0196024b0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {D6833818-7385-4940-92C4-C49352A5B0D3} - System32\Tasks\Microsoft\Windows\PLA\spacedesk_log => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1473024 2021-05-30] (Microsoft Windows -> Microsoft Corporation)
Task: {F2DBFC2F-25E5-47AF-B403-851D9B439833} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {F4F6E937-FABD-471C-8B95-B1A5B3250BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-03-02] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy est activé.
ProxyEnable: [HKLM-x32] => Proxy est activé.
ProxyServer: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyServer: [HKLM-x32] => http=127.0.0.1:48080;https=127.0.0.1:48080
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{84346582-3a2f-4cd9-b208-9f43c3f95ccf}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d4580938-9c82-4840-9d72-4e7775d5b311}: [DhcpNameServer] 150.210.1.2
ManualProxies: 1http=127.0.0.1:48080;https=127.0.0.1:48080
Edge:
=======
DownloadDir: C:\Users\adrie\Downloads
Edge Notifications: HKU\S-1-5-21-559716797-1808254368-773481850-1002 -> hxxps://topflownews.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\adrie\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-05]
FireFox:
========
FF DefaultProfile: 3dy0dzkw.default
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\3dy0dzkw.default [2019-11-27]
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\8vfbhnmq.default-release [2021-06-05]
FF user.js: detected! => C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\8vfbhnmq.default-release\user.js [2021-06-05]
FF NetworkProxy: Mozilla\Firefox\Profiles\8vfbhnmq.default-release -> type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-29] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR Profile: C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default [2021-06-05]
CHR StartupUrls: Default -> "hxxps://www.bing.com/?FORM=SLBRDF&PC=SL07"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?FORM=SLBRDF&PC=SL08&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Docs) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-25]
CHR Extension: (YouTube) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-28]
CHR Extension: (Avira Password Manager) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-06-04]
CHR Extension: (Yahoo Partner) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdbpcigaolookbahgdofnimidinicfid [2020-05-01]
CHR Extension: (Sheets) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Protection Web Avira) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-29]
CHR Extension: (Plus) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlihfhenloklceecaibhfbjppmleoiob [2021-05-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07]
CHR Extension: (Gmail) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fdbpcigaolookbahgdofnimidinicfid]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [117976 2015-06-02] (Realtek Semiconductor Corp -> )
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 dglvrsvc; C:\WINDOWS\dglvrsvc.exe [40928 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2954416 2021-05-04] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2954416 2021-05-04] (ESET, spol. s r.o. -> ESET)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-08-07] (LENOVO -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-04] (Malwarebytes Inc -> Malwarebytes)
R2 ShelblockSvc; C:\Program Files\Shelblock\ShelblockSvc.exe [4097736 2021-06-03] (SHELBLOCK -> Shelblock)
R2 spacedeskService; C:\WINDOWS\system32\spacedeskService.exe [1079720 2020-07-30] (Datronicsoft, Inc. -> )
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-11-11] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{92EB3A32-1EF5-0C4C-B8F2-2847D0239AB0}\YSearchUtilSvc.exe [182736 2017-01-19] (Yahoo! Inc. -> Yahoo Inc.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv_bgp64; C:\Program Files\BlueStacks_bgp64\BstkDrv_bgp64.sys [315976 2020-04-07] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-11] (Microsoft Corporation) [Fichier non signé]
R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [95248 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 dglvrbus; C:\WINDOWS\System32\drivers\dglvrbus.sys [85984 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrkdod; C:\WINDOWS\system32\DRIVERS\dglvrkdod.sys [45536 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrmflt; C:\WINDOWS\System32\drivers\dglvrmflt.sys [27104 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [169400 2021-05-04] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [112576 2021-05-04] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-05-04] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [192624 2021-05-04] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43832 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70160 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107400 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-06-04] (Malwarebytes Inc -> Malwarebytes)
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [60944 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421112 2021-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-05 22:29 - 2021-06-05 22:36 - 000025705 _____ C:\Users\adrie\Downloads\FRST.txt
2021-06-05 22:22 - 2021-06-05 22:22 - 000000000 ____D C:\Users\adrie\Downloads\FRST-OlderVersion
2021-06-05 22:21 - 2021-06-05 22:33 - 000000000 ____D C:\FRST
2021-06-05 22:20 - 2021-06-05 22:22 - 002300416 _____ (Farbar) C:\Users\adrie\Downloads\FRST64-2.1.exe
2021-06-05 22:17 - 2021-06-05 22:17 - 000321260 _____ C:\Users\adrie\Desktop\ZHPDiag.txt
2021-06-05 21:57 - 2021-06-05 21:57 - 000000872 _____ C:\Users\adrie\Desktop\ZHPSuite.lnk
2021-06-05 21:53 - 2021-06-05 21:56 - 003471512 _____ (Nicolas Coolman) C:\Users\adrie\Desktop\ZHPSuite.exe
2021-06-05 20:48 - 2021-06-05 20:48 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-05 20:48 - 2021-06-05 20:48 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-05 20:48 - 2021-06-05 20:48 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-05 20:47 - 2021-06-05 20:57 - 000000000 ____D C:\Users\Public\spacedesk_logs
2021-06-05 20:20 - 2021-06-05 20:21 - 000000000 ___HD C:\$WINDOWS.~BT
2021-06-05 20:01 - 2021-06-05 20:01 - 000000882 _____ C:\Users\adrie\Desktop\ZHPCleaner.lnk
2021-06-05 19:47 - 2021-06-05 20:48 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\IGDump
2021-06-05 01:06 - 2021-06-05 01:06 - 000000000 ___HD C:\$WinREAgent
2021-06-04 23:59 - 2021-06-05 00:01 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix(1).exe
2021-06-04 23:54 - 2021-06-04 23:57 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix.exe
2021-06-04 22:44 - 2021-06-05 22:17 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ZHP
2021-06-04 22:44 - 2021-06-05 21:57 - 000000000 ____D C:\Users\adrie\AppData\Local\ZHP
2021-06-04 22:44 - 2021-06-04 22:44 - 000000872 _____ C:\Users\adrie\Desktop\ZHPDiag.lnk
2021-06-04 22:41 - 2021-06-04 22:41 - 000011289 _____ C:\Users\adrie\Desktop\premierscan.txt
2021-06-04 22:12 - 2021-06-04 22:14 - 003275416 _____ (Nicolas Coolman) C:\Users\adrie\Downloads\ZHPDiag3.exe
2021-06-04 21:43 - 2021-06-04 21:43 - 000000000 ____D C:\Users\adrie\AppData\Local\mbam
2021-06-04 21:42 - 2021-06-05 17:32 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-04 21:42 - 2021-06-05 17:30 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-04 21:42 - 2021-06-04 21:42 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-04 21:42 - 2021-06-04 21:42 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-04 21:41 - 2021-06-04 21:41 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-06-04 21:41 - 2021-06-04 21:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-04 21:41 - 2021-06-04 21:40 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-06-04 21:35 - 2021-06-04 21:35 - 000002023 _____ C:\Users\Public\Desktop\ESET Protection des transactions bancaires.lnk
2021-06-04 21:30 - 2021-06-04 21:30 - 000000000 ____D C:\Users\adrie\AppData\Local\ESET
2021-06-04 20:36 - 2021-06-04 20:36 - 000000000 ____D C:\Users\adrie\AppData\Local\D3DSCache
2021-06-04 20:26 - 2021-06-05 17:30 - 000364670 _____ C:\WINDOWS\ntbtlog.txt
2021-06-04 20:26 - 2021-06-04 20:26 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-06-02 22:25 - 2021-06-02 22:28 - 000003671 _____ C:\Clean_DNS.txt
2021-06-02 22:25 - 2021-06-02 22:28 - 000000000 ____D C:\Clean_Dns
2021-06-02 22:22 - 2021-06-02 22:23 - 003279088 _____ (SosVirus) C:\Users\adrie\Downloads\Clean_Dns.exe
2021-06-02 21:39 - 2021-06-02 22:34 - 000000000 ____D C:\Users\adrie\AppData\Local\FSDART
2021-06-02 21:39 - 2021-06-02 21:55 - 000000000 ____D C:\ProgramData\F-Secure
2021-06-02 21:39 - 2021-06-02 21:39 - 000000000 ____D C:\Users\adrie\AppData\Local\F-Secure
2021-06-02 21:38 - 2021-06-02 21:38 - 012401864 _____ (F-Secure Corporation) C:\Users\adrie\Downloads\F-SecureOnlineScanner.exe
2021-06-02 21:29 - 2021-06-02 21:29 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-02 21:28 - 2021-06-02 21:28 - 002080712 _____ (Malwarebytes) C:\Users\adrie\Downloads\MBSetup.exe
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\ProgramData\ESET
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\Program Files\ESET
2021-06-02 21:15 - 2021-06-02 21:16 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_internet_security_live_installer.exe
2021-05-30 17:11 - 2021-05-30 17:12 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_nod32_antivirus_live_installer.exe
2021-05-30 10:06 - 2021-05-30 10:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-30 10:06 - 2021-05-30 10:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-30 10:06 - 2021-05-30 10:06 - 001282360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-30 10:06 - 2021-05-30 10:06 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth19.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-05-30 10:05 - 2021-05-30 10:05 - 000861696 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-30 10:03 - 2021-05-30 10:03 - 001758672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-30 10:03 - 2021-05-30 10:03 - 001365640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-30 10:03 - 2021-05-30 10:03 - 000232760 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-05-30 09:25 - 2021-05-30 09:25 - 000000000 ____D C:\Users\adrie\AppData\Local\ElevatedDiagnostics
2021-05-29 21:06 - 2021-05-29 21:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-29 19:10 - 2021-05-29 19:10 - 000000000 ____D C:\Users\adrie\AppData\Roaming\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\Program Files\WinRAR
2021-05-29 19:08 - 2021-05-29 19:08 - 077325099 _____ C:\Users\adrie\Downloads\CrackByFrizy.zip
2021-05-29 18:57 - 2021-05-29 18:57 - 003440528 _____ (Alexander Roshal) C:\Users\adrie\Downloads\winrar-x64-601fr.exe
2021-05-29 18:16 - 2021-05-29 19:19 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:17 - 000000000 ____D C:\Users\adrie\AppData\Roaming\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:16 - 000001174 _____ C:\Users\adrie\Desktop\PhotoFiltre 7.lnk
2021-05-29 18:16 - 2021-05-29 18:16 - 000000000 ____D C:\Program Files (x86)\PhotoFiltre 7
2021-05-29 18:15 - 2021-05-29 18:15 - 005239812 _____ C:\Users\adrie\Downloads\photofiltre-7-2-1-en-win.exe
2021-05-29 18:09 - 2021-05-29 18:11 - 030940926 _____ (PhotoFiltre ) C:\Users\adrie\Downloads\photofiltre-studio-11-2.exe
2021-05-29 17:10 - 2021-06-04 21:22 - 000000000 ____D C:\Users\adrie\AppData\Local\Mozilla Firefox
2021-05-29 16:36 - 2021-05-29 16:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-559716797-1808254368-773481850-1002
2021-05-28 21:00 - 2021-05-29 18:38 - 000000000 ____D C:\Users\adrie\Desktop\ROBLOX
2021-05-28 20:59 - 2021-05-29 18:38 - 000000000 ____D C:\Users\adrie\Desktop\filmora
2021-05-04 13:13 - 2021-05-04 13:13 - 000192624 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000169400 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000112576 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000107400 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000070160 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000043832 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2021-05-04 09:56 - 2021-05-04 09:56 - 000015824 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2021-04-09 15:26 - 2021-05-29 04:10 - 000000000 ____D C:\Program Files\BlueStacks
2021-04-09 15:26 - 2021-04-09 15:32 - 000000000 ____D C:\ProgramData\BlueStacks
2021-04-09 10:53 - 2021-04-09 10:53 - 000000000 ____D C:\Users\adrie\AppData\Local\ManyCam
2021-04-09 10:49 - 2021-05-29 03:53 - 000000000 ____D C:\ProgramData\ManyCam
2021-04-09 10:49 - 2021-05-29 03:53 - 000000000 ____D C:\Program Files (x86)\ManyCam
2021-04-09 10:49 - 2021-05-29 03:52 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ManyCam
2021-03-29 15:23 - 2021-03-29 17:48 - 000019858 _____ C:\Users\adrie\Desktop\devoir SVT 1.odt
2021-03-27 19:52 - 2021-03-27 19:52 - 001236448 _____ (BlueStack Systems Inc.) C:\Users\adrie\Downloads\BlueStacksInstaller_4.280.0.1022_native_65043953bc5a054afe9d483c915d449e.exe
2021-03-27 19:44 - 2021-06-04 22:14 - 000000000 ____D C:\ProgramData\Shelblock
2021-03-27 19:28 - 2021-03-27 19:29 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-27 19:14 - 2021-03-27 19:14 - 000000000 ____D C:\Users\adrie\AppData\Local\Steam
2021-03-27 18:59 - 2021-03-27 18:59 - 001770744 _____ C:\Users\adrie\Downloads\SteamSetup.exe
2021-03-27 18:58 - 2021-03-27 19:29 - 000000000 ___HD C:\Users\adrie\.opera
2021-03-27 18:58 - 2021-03-27 18:58 - 000000000 ___HD C:\Users\adrie\Downloads\.opera
2021-03-27 18:58 - 2021-03-27 18:58 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Opera Software
2021-03-27 18:57 - 2021-03-27 18:57 - 002406264 _____ (Opera Software) C:\Users\adrie\Downloads\OperaSetup.exe
2021-03-15 16:39 - 2021-03-15 16:39 - 000000000 ____D C:\Users\adrie\AppData\Local\Shelblock
2021-03-15 16:38 - 2021-03-15 16:38 - 000000959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shelblock.lnk
2021-03-15 16:37 - 2021-06-04 22:00 - 000000000 ____D C:\Program Files\Shelblock
2021-03-15 16:37 - 2021-03-15 16:37 - 000000000 ____D C:\ProgramData\AppoloTeam
2021-03-15 16:35 - 2021-03-15 16:36 - 010823000 _____ (Shelblock) C:\Users\adrie\Downloads\shelblock_installer-2.3.44-8914110331654796.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-05 21:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-05 21:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-05 21:10 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-05 20:58 - 2019-11-27 18:03 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\Mozilla
2021-06-05 20:58 - 2019-11-27 18:03 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-05 20:47 - 2019-11-11 16:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-05 20:46 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-05 20:46 - 2017-11-05 00:28 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-06-05 20:35 - 2019-11-11 16:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-05 20:29 - 2019-10-06 12:59 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-05 17:26 - 2017-01-26 22:48 - 000000000 ____D C:\Users\adrie\AppData\Local\Host App Service
2021-06-04 21:41 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-04 20:26 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-06-02 22:44 - 2019-11-11 16:26 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-02 22:44 - 2019-03-19 14:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-02 22:44 - 2019-03-19 14:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-02 22:06 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-30 15:29 - 2017-01-26 22:51 - 000000000 ____D C:\Users\adrie\AppData\Local\Packages
2021-05-30 15:23 - 2019-11-11 16:44 - 000000000 ____D C:\Users\adrie\AppData\Local\PackageStaging
2021-05-30 15:22 - 2019-04-28 17:44 - 000000000 ___RD C:\Users\adrie\3D Objects
2021-05-30 15:22 - 2015-11-03 21:24 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-05-30 15:14 - 2019-11-11 16:01 - 000305880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-05-30 15:07 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2021-05-30 10:35 - 2021-02-15 17:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-30 10:34 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-30 10:32 - 2017-01-28 23:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-30 10:25 - 2017-01-28 23:25 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-29 21:06 - 2019-11-27 18:03 - 000001280 _____ C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-29 09:27 - 2019-11-11 16:40 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559716797-1808254368-773481850-1002
2021-05-29 09:27 - 2019-11-11 16:15 - 000002408 _____ C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-29 09:27 - 2017-01-26 22:57 - 000000000 ___RD C:\Users\adrie\OneDrive
2021-05-29 09:21 - 2019-11-11 16:15 - 000000000 ____D C:\Users\adrie
2021-05-29 04:40 - 2020-07-05 16:50 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-29 04:40 - 2020-07-05 16:50 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-29 04:17 - 2018-03-03 14:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-29 04:16 - 2020-07-05 16:49 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-29 04:16 - 2020-07-05 16:49 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-29 04:16 - 2019-11-11 16:40 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-29 04:16 - 2019-11-11 16:40 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-29 03:57 - 2019-03-19 14:00 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Portable Devices
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-05-29 03:56 - 2019-03-19 14:01 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-29 03:56 - 2019-03-19 14:00 - 000000000 ____D C:\WINDOWS\system32\fr
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\downlevel
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\IME
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-05-29 03:53 - 2020-06-25 10:23 - 000000000 ____D C:\Users\adrie\Documents\Wondershare Filmora 9
2021-05-29 03:53 - 2020-06-25 10:23 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2021-05-29 03:53 - 2019-11-11 16:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-05-29 03:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Containers
2021-05-29 03:53 - 2017-11-05 00:28 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-28 22:22 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\registration
2021-05-28 22:00 - 2017-11-05 00:24 - 000000000 ____D C:\ProgramData\Lenovo
2021-05-28 20:56 - 2020-06-16 21:12 - 000000000 ____D C:\Users\adrie\Desktop\youtube
==================== Fichiers à la racine de certains dossiers ========
2017-01-28 18:24 - 2017-01-28 18:26 - 000000251 _____ () C:\Program Files (x86)\Common Files\eInstruction.ini
2017-01-26 22:51 - 2021-06-05 20:49 - 000961308 _____ () C:\Users\adrie\AppData\Local\BTServer.log
==================== SigCheckExt =========================
2017-04-23 11:52 - 2017-03-04 07:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2016-06-27 00:07 - 2015-01-26 17:35 - 000040516 _____ C:\WINDOWS\system32\rlt8723a_chip_bt40_fw_asic_rom_patch.dll
2016-06-27 00:07 - 2015-05-12 16:11 - 000050920 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050144 _____ C:\WINDOWS\system32\rtl8761a_bcut_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050144 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050060 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050956 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000047692 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-05-27 18:53 - 000036040 _____ C:\WINDOWS\system32\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2016-06-27 00:09 - 2014-03-24 12:37 - 000422400 _____ (Realtek) C:\WINDOWS\SwUSB.exe
2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2016-06-27 00:06 - 2015-10-30 09:18 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEShims.dll
2016-06-27 00:09 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-01-28 19:51 - 2015-10-30 04:40 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-01-28 19:51 - 2015-10-30 04:30 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2019-04-28 18:02 - 2019-11-11 17:43 - 001701376 _____ (TODO:) C:\WINDOWS\SysWOW64\RebootPrompt.exe
2019-04-28 18:02 - 2019-11-11 17:43 - 000105984 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2021-06-05 21:53 - 2021-06-05 21:56 - 003471512 _____ (Nicolas Coolman) C:\Users\adrie\Desktop\ZHPSuite.exe
2021-06-04 23:59 - 2021-06-05 00:01 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix(1).exe
2021-06-04 23:54 - 2021-06-04 23:57 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix.exe
2017-01-28 18:31 - 2017-01-28 18:34 - 132368998 _____ C:\Users\adrie\Downloads\Apache_OpenOffice_4.1.3_Win_x86_install_fr.exe
2018-12-14 22:31 - 2018-12-14 22:37 - 132403128 _____ C:\Users\adrie\Downloads\Apache_OpenOffice_4.1.5_Win_x86_install_fr.exe
2021-06-02 22:22 - 2021-06-02 22:23 - 003279088 _____ (SosVirus) C:\Users\adrie\Downloads\Clean_Dns.exe
2021-06-05 22:20 - 2021-06-05 22:22 - 002300416 _____ (Farbar) C:\Users\adrie\Downloads\FRST64-2.1.exe
2018-09-28 21:19 - 2018-09-28 21:27 - 063796336 _____ (International GeoGebra Institute) C:\Users\adrie\Downloads\geogebra_6-0-489-0_fr_14087.exe
2021-05-29 18:15 - 2021-05-29 18:15 - 005239812 _____ C:\Users\adrie\Downloads\photofiltre-7-2-1-en-win.exe
2021-05-29 18:09 - 2021-05-29 18:11 - 030940926 _____ (PhotoFiltre ) C:\Users\adrie\Downloads\photofiltre-studio-11-2.exe
2021-06-04 22:12 - 2021-06-04 22:14 - 003275416 _____ (Nicolas Coolman) C:\Users\adrie\Downloads\ZHPDiag3.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{1a15cddb-3c32-11e6-b47a-806e6f6e6963}
{1a15cddc-3c32-11e6-b47a-806e6f6e6963}
{1a15cdd9-3c32-11e6-b47a-806e6f6e6963}
{1a15cdda-3c32-11e6-b47a-806e6f6e6963}
timeout 2
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdd9-3c32-11e6-b47a-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdda-3c32-11e6-b47a-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddb-3c32-11e6-b47a-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddc-3c32-11e6-b47a-806e6f6e6963}
device partition=\Device\HarddiskVolume7
path \EFI\Microsoft\Boot\LrsBootMgr.efi
description Lenovo Recovery System
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddd-3c32-11e6-b47a-806e6f6e6963}
description EFI Network 0 for IPv4 (C8-5B-76-28-9B-58)
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdde-3c32-11e6-b47a-806e6f6e6963}
description EFI Network 0 for IPv6 (C8-5B-76-28-9B-58)
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{87fbb02d-048b-11ea-9f5c-efe2e2e72736}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{87fbb02d-048b-11ea-9f5c-efe2e2e72736}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {87fbb02d-048b-11ea-9f5c-efe2e2e72736}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par adrie (administrateur) sur LAPTOP-UK29JPFN (LENOVO 80E3) (05-06-2021 22:29:38)
Exécuté depuis C:\Users\adrie\Downloads
Profils chargés: adrie
Platform: Windows 10 Home Version 1909 18363.1556 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Conexant Systems, Inc.) [Fichier non signé] C:\Windows\SysWOW64\UIUSrv.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskService.exe
(Datronicsoft, Inc. -> ) C:\Windows\System32\spacedeskServiceTray.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\dglvrsvc.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\certutil.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1555_none_16e7312f2a3a7b19\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\Shelblock.exe
(SHELBLOCK -> Shelblock) C:\Program Files\Shelblock\ShelblockSvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Yahoo! Inc. -> Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{92EB3A32-1EF5-0C4C-B8F2-2847D0239AB0}\YSearchUtilSVC.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029064 2016-12-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [164808 2021-05-04] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink Corp. -> CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2138448 2021-04-08] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-559716797-1808254368-773481850-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-27] (Adobe Inc. -> Adobe)
HKLM\...\Windows x64\Print Processors\Canon MG5300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAT.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\WINDOWS\system32\CNMLMAT.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-05] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C3C287F-A9FB-4E69-A0CF-3BD70D364795} - System32\Tasks\App Explorer => C:\Users\adrie\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {0D1A0BCC-32DB-430F-BAF2-88E2782C36CB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {12862EB8-4A66-4639-AADF-73BFBD1262C9} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [270272 2015-08-07] (LENOVO -> Lenovo)
Task: {138F48D8-7A7A-4CA0-985E-2073703E50EC} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {1544CB9B-CDEF-4E4D-BD6B-82A13CA8E015} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384 2015-08-07] (LENOVO -> Lenovo)
Task: {15F8AE93-4616-49BC-86FA-A95FFBE16104} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3fa6aa7d-d1a5-4a1b-a8ad-637454e0bd0a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {30429249-24B1-414D-8BD7-F6124F8222FA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-06] (LENOVO -> Lenovo)
Task: {462C23E2-9918-4EED-B1AD-5CCFBE0D4B89} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_293_Plugin.exe [1457720 2019-11-27] (Adobe Inc. -> Adobe)
Task: {46629569-507D-4A38-9067-532F4E918FEA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {4B96F9EE-F40A-45C9-8CC4-142B36B036CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-26] (Google Inc -> Google Inc.)
Task: {4F47FA4F-CCBB-4778-BF7F-51C5A50A7402} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\33ac25b3-b92a-493d-b789-6ae4277db8cb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {53BB9461-8E26-415E-9E5D-0BAC2A128D49} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-09-11] (CyberLink Corp. -> CyberLink Corp.)
Task: {54AAB4CE-805C-467A-8242-104FC988E205} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {599E80F5-0B42-4177-96F2-1927FBD17F25} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {7EDE49BE-344C-4FF5-860D-D1FFC8015411} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9bb193af-e6c9-4993-b45c-1d1551c93b78 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {8837678C-328D-4F94-8C9F-E5D301A667DB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 65115EB12293C96F => C:\Users\adrie\AppData\Local\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-29] (Mozilla Corporation -> Mozilla Foundation) <==== ATTENTION
Task: {A8894E0C-2BEC-4576-B22B-CF6D1D10D6E8} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9476544 2015-08-07] (LENOVO -> )
Task: {B9BC5353-B84A-4844-B77B-1F163919B636} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {BE73296B-C53C-4BF7-84E5-CFEAD5B2CFAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-26] (Google Inc -> Google Inc.)
Task: {C3B0211E-9B53-4FF3-A997-79EE1E867669} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {C9BDEA1B-DF52-4A3A-A5FE-C29F82CBE3B8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b3277656-c0de-434a-a3a9-6fa0196024b0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
Task: {D6833818-7385-4940-92C4-C49352A5B0D3} - System32\Tasks\Microsoft\Windows\PLA\spacedesk_log => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1473024 2021-05-30] (Microsoft Windows -> Microsoft Corporation)
Task: {F2DBFC2F-25E5-47AF-B403-851D9B439833} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo)
Task: {F4F6E937-FABD-471C-8B95-B1A5B3250BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-03-02] (Lenovo -> Lenovo Group Ltd.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy est activé.
ProxyEnable: [HKLM-x32] => Proxy est activé.
ProxyServer: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyServer: [HKLM-x32] => http=127.0.0.1:48080;https=127.0.0.1:48080
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{84346582-3a2f-4cd9-b208-9f43c3f95ccf}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d4580938-9c82-4840-9d72-4e7775d5b311}: [DhcpNameServer] 150.210.1.2
ManualProxies: 1http=127.0.0.1:48080;https=127.0.0.1:48080
Edge:
=======
DownloadDir: C:\Users\adrie\Downloads
Edge Notifications: HKU\S-1-5-21-559716797-1808254368-773481850-1002 -> hxxps://topflownews.com
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\adrie\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-05]
FireFox:
========
FF DefaultProfile: 3dy0dzkw.default
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\3dy0dzkw.default [2019-11-27]
FF ProfilePath: C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\8vfbhnmq.default-release [2021-06-05]
FF user.js: detected! => C:\Users\adrie\AppData\Roaming\Mozilla\Firefox\Profiles\8vfbhnmq.default-release\user.js [2021-06-05]
FF NetworkProxy: Mozilla\Firefox\Profiles\8vfbhnmq.default-release -> type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_293.dll [2019-11-27] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-29] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR Profile: C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default [2021-06-05]
CHR StartupUrls: Default -> "hxxps://www.bing.com/?FORM=SLBRDF&PC=SL07"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?FORM=SLBRDF&PC=SL08&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}
CHR Extension: (Docs) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Google Drive) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-25]
CHR Extension: (YouTube) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-28]
CHR Extension: (Avira Password Manager) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-06-04]
CHR Extension: (Yahoo Partner) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdbpcigaolookbahgdofnimidinicfid [2020-05-01]
CHR Extension: (Sheets) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Protection Web Avira) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2021-06-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-29]
CHR Extension: (Plus) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlihfhenloklceecaibhfbjppmleoiob [2021-05-29]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07]
CHR Extension: (Gmail) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\adrie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-05]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [fdbpcigaolookbahgdofnimidinicfid]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [117976 2015-06-02] (Realtek Semiconductor Corp -> )
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 dglvrsvc; C:\WINDOWS\dglvrsvc.exe [40928 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2954416 2021-05-04] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2954416 2021-05-04] (ESET, spol. s r.o. -> ESET)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-08-07] (LENOVO -> Lenovo)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-04] (Malwarebytes Inc -> Malwarebytes)
R2 ShelblockSvc; C:\Program Files\Shelblock\ShelblockSvc.exe [4097736 2021-06-03] (SHELBLOCK -> Shelblock)
R2 spacedeskService; C:\WINDOWS\system32\spacedeskService.exe [1079720 2020-07-30] (Datronicsoft, Inc. -> )
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-11-11] (Conexant Systems, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-05-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{92EB3A32-1EF5-0C4C-B8F2-2847D0239AB0}\YSearchUtilSvc.exe [182736 2017-01-19] (Yahoo! Inc. -> Yahoo Inc.)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv_bgp64; C:\Program Files\BlueStacks_bgp64\BstkDrv_bgp64.sys [315976 2020-04-07] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-11] (Microsoft Corporation) [Fichier non signé]
R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [95248 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 dglvrbus; C:\WINDOWS\System32\drivers\dglvrbus.sys [85984 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrkdod; C:\WINDOWS\system32\DRIVERS\dglvrkdod.sys [45536 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 dglvrmflt; C:\WINDOWS\System32\drivers\dglvrmflt.sys [27104 2016-09-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [169400 2021-05-04] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [112576 2021-05-04] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-05-04] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [192624 2021-05-04] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43832 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70160 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107400 2021-05-04] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-06-04] (Malwarebytes Inc -> Malwarebytes)
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156880 2021-06-05] (Malwarebytes Inc -> Malwarebytes)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [60944 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-05-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421112 2021-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-29] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-05 22:29 - 2021-06-05 22:36 - 000025705 _____ C:\Users\adrie\Downloads\FRST.txt
2021-06-05 22:22 - 2021-06-05 22:22 - 000000000 ____D C:\Users\adrie\Downloads\FRST-OlderVersion
2021-06-05 22:21 - 2021-06-05 22:33 - 000000000 ____D C:\FRST
2021-06-05 22:20 - 2021-06-05 22:22 - 002300416 _____ (Farbar) C:\Users\adrie\Downloads\FRST64-2.1.exe
2021-06-05 22:17 - 2021-06-05 22:17 - 000321260 _____ C:\Users\adrie\Desktop\ZHPDiag.txt
2021-06-05 21:57 - 2021-06-05 21:57 - 000000872 _____ C:\Users\adrie\Desktop\ZHPSuite.lnk
2021-06-05 21:53 - 2021-06-05 21:56 - 003471512 _____ (Nicolas Coolman) C:\Users\adrie\Desktop\ZHPSuite.exe
2021-06-05 20:48 - 2021-06-05 20:48 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-05 20:48 - 2021-06-05 20:48 - 000156880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-05 20:48 - 2021-06-05 20:48 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-05 20:47 - 2021-06-05 20:57 - 000000000 ____D C:\Users\Public\spacedesk_logs
2021-06-05 20:20 - 2021-06-05 20:21 - 000000000 ___HD C:\$WINDOWS.~BT
2021-06-05 20:01 - 2021-06-05 20:01 - 000000882 _____ C:\Users\adrie\Desktop\ZHPCleaner.lnk
2021-06-05 19:47 - 2021-06-05 20:48 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\IGDump
2021-06-05 01:06 - 2021-06-05 01:06 - 000000000 ___HD C:\$WinREAgent
2021-06-04 23:59 - 2021-06-05 00:01 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix(1).exe
2021-06-04 23:54 - 2021-06-04 23:57 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix.exe
2021-06-04 22:44 - 2021-06-05 22:17 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ZHP
2021-06-04 22:44 - 2021-06-05 21:57 - 000000000 ____D C:\Users\adrie\AppData\Local\ZHP
2021-06-04 22:44 - 2021-06-04 22:44 - 000000872 _____ C:\Users\adrie\Desktop\ZHPDiag.lnk
2021-06-04 22:41 - 2021-06-04 22:41 - 000011289 _____ C:\Users\adrie\Desktop\premierscan.txt
2021-06-04 22:12 - 2021-06-04 22:14 - 003275416 _____ (Nicolas Coolman) C:\Users\adrie\Downloads\ZHPDiag3.exe
2021-06-04 21:43 - 2021-06-04 21:43 - 000000000 ____D C:\Users\adrie\AppData\Local\mbam
2021-06-04 21:42 - 2021-06-05 17:32 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-04 21:42 - 2021-06-05 17:30 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-04 21:42 - 2021-06-04 21:42 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-04 21:42 - 2021-06-04 21:42 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-06-04 21:41 - 2021-06-04 21:41 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-06-04 21:41 - 2021-06-04 21:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-06-04 21:41 - 2021-06-04 21:40 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-06-04 21:35 - 2021-06-04 21:35 - 000002023 _____ C:\Users\Public\Desktop\ESET Protection des transactions bancaires.lnk
2021-06-04 21:30 - 2021-06-04 21:30 - 000000000 ____D C:\Users\adrie\AppData\Local\ESET
2021-06-04 20:36 - 2021-06-04 20:36 - 000000000 ____D C:\Users\adrie\AppData\Local\D3DSCache
2021-06-04 20:26 - 2021-06-05 17:30 - 000364670 _____ C:\WINDOWS\ntbtlog.txt
2021-06-04 20:26 - 2021-06-04 20:26 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2021-06-02 22:25 - 2021-06-02 22:28 - 000003671 _____ C:\Clean_DNS.txt
2021-06-02 22:25 - 2021-06-02 22:28 - 000000000 ____D C:\Clean_Dns
2021-06-02 22:22 - 2021-06-02 22:23 - 003279088 _____ (SosVirus) C:\Users\adrie\Downloads\Clean_Dns.exe
2021-06-02 21:39 - 2021-06-02 22:34 - 000000000 ____D C:\Users\adrie\AppData\Local\FSDART
2021-06-02 21:39 - 2021-06-02 21:55 - 000000000 ____D C:\ProgramData\F-Secure
2021-06-02 21:39 - 2021-06-02 21:39 - 000000000 ____D C:\Users\adrie\AppData\Local\F-Secure
2021-06-02 21:38 - 2021-06-02 21:38 - 012401864 _____ (F-Secure Corporation) C:\Users\adrie\Downloads\F-SecureOnlineScanner.exe
2021-06-02 21:29 - 2021-06-02 21:29 - 000000000 ____D C:\Program Files\Malwarebytes
2021-06-02 21:28 - 2021-06-02 21:28 - 002080712 _____ (Malwarebytes) C:\Users\adrie\Downloads\MBSetup.exe
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\ProgramData\ESET
2021-06-02 21:19 - 2021-06-02 21:19 - 000000000 ____D C:\Program Files\ESET
2021-06-02 21:15 - 2021-06-02 21:16 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_internet_security_live_installer.exe
2021-05-30 17:11 - 2021-05-30 17:12 - 008703024 _____ (ESET) C:\Users\adrie\Downloads\eset_nod32_antivirus_live_installer.exe
2021-05-30 10:06 - 2021-05-30 10:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-30 10:06 - 2021-05-30 10:06 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-30 10:06 - 2021-05-30 10:06 - 001282360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-30 10:06 - 2021-05-30 10:06 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth19.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-05-30 10:06 - 2021-05-30 10:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-05-30 10:05 - 2021-05-30 10:05 - 000861696 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-30 10:03 - 2021-05-30 10:03 - 001758672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-30 10:03 - 2021-05-30 10:03 - 001365640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-30 10:03 - 2021-05-30 10:03 - 000232760 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-05-30 09:25 - 2021-05-30 09:25 - 000000000 ____D C:\Users\adrie\AppData\Local\ElevatedDiagnostics
2021-05-29 21:06 - 2021-05-29 21:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-05-29 19:10 - 2021-05-29 19:10 - 000000000 ____D C:\Users\adrie\AppData\Roaming\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-29 19:09 - 2021-05-29 19:09 - 000000000 ____D C:\Program Files\WinRAR
2021-05-29 19:08 - 2021-05-29 19:08 - 077325099 _____ C:\Users\adrie\Downloads\CrackByFrizy.zip
2021-05-29 18:57 - 2021-05-29 18:57 - 003440528 _____ (Alexander Roshal) C:\Users\adrie\Downloads\winrar-x64-601fr.exe
2021-05-29 18:16 - 2021-05-29 19:19 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:17 - 000000000 ____D C:\Users\adrie\AppData\Roaming\PhotoFiltre 7
2021-05-29 18:16 - 2021-05-29 18:16 - 000001174 _____ C:\Users\adrie\Desktop\PhotoFiltre 7.lnk
2021-05-29 18:16 - 2021-05-29 18:16 - 000000000 ____D C:\Program Files (x86)\PhotoFiltre 7
2021-05-29 18:15 - 2021-05-29 18:15 - 005239812 _____ C:\Users\adrie\Downloads\photofiltre-7-2-1-en-win.exe
2021-05-29 18:09 - 2021-05-29 18:11 - 030940926 _____ (PhotoFiltre ) C:\Users\adrie\Downloads\photofiltre-studio-11-2.exe
2021-05-29 17:10 - 2021-06-04 21:22 - 000000000 ____D C:\Users\adrie\AppData\Local\Mozilla Firefox
2021-05-29 16:36 - 2021-05-29 16:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-559716797-1808254368-773481850-1002
2021-05-28 21:00 - 2021-05-29 18:38 - 000000000 ____D C:\Users\adrie\Desktop\ROBLOX
2021-05-28 20:59 - 2021-05-29 18:38 - 000000000 ____D C:\Users\adrie\Desktop\filmora
2021-05-04 13:13 - 2021-05-04 13:13 - 000192624 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000169400 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000112576 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000107400 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000070160 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2021-05-04 13:13 - 2021-05-04 13:13 - 000043832 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2021-05-04 09:56 - 2021-05-04 09:56 - 000015824 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2021-04-09 15:26 - 2021-05-29 04:10 - 000000000 ____D C:\Program Files\BlueStacks
2021-04-09 15:26 - 2021-04-09 15:32 - 000000000 ____D C:\ProgramData\BlueStacks
2021-04-09 10:53 - 2021-04-09 10:53 - 000000000 ____D C:\Users\adrie\AppData\Local\ManyCam
2021-04-09 10:49 - 2021-05-29 03:53 - 000000000 ____D C:\ProgramData\ManyCam
2021-04-09 10:49 - 2021-05-29 03:53 - 000000000 ____D C:\Program Files (x86)\ManyCam
2021-04-09 10:49 - 2021-05-29 03:52 - 000000000 ____D C:\Users\adrie\AppData\Roaming\ManyCam
2021-03-29 15:23 - 2021-03-29 17:48 - 000019858 _____ C:\Users\adrie\Desktop\devoir SVT 1.odt
2021-03-27 19:52 - 2021-03-27 19:52 - 001236448 _____ (BlueStack Systems Inc.) C:\Users\adrie\Downloads\BlueStacksInstaller_4.280.0.1022_native_65043953bc5a054afe9d483c915d449e.exe
2021-03-27 19:44 - 2021-06-04 22:14 - 000000000 ____D C:\ProgramData\Shelblock
2021-03-27 19:28 - 2021-03-27 19:29 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-03-27 19:14 - 2021-03-27 19:14 - 000000000 ____D C:\Users\adrie\AppData\Local\Steam
2021-03-27 18:59 - 2021-03-27 18:59 - 001770744 _____ C:\Users\adrie\Downloads\SteamSetup.exe
2021-03-27 18:58 - 2021-03-27 19:29 - 000000000 ___HD C:\Users\adrie\.opera
2021-03-27 18:58 - 2021-03-27 18:58 - 000000000 ___HD C:\Users\adrie\Downloads\.opera
2021-03-27 18:58 - 2021-03-27 18:58 - 000000000 ____D C:\Users\adrie\AppData\Roaming\Opera Software
2021-03-27 18:57 - 2021-03-27 18:57 - 002406264 _____ (Opera Software) C:\Users\adrie\Downloads\OperaSetup.exe
2021-03-15 16:39 - 2021-03-15 16:39 - 000000000 ____D C:\Users\adrie\AppData\Local\Shelblock
2021-03-15 16:38 - 2021-03-15 16:38 - 000000959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shelblock.lnk
2021-03-15 16:37 - 2021-06-04 22:00 - 000000000 ____D C:\Program Files\Shelblock
2021-03-15 16:37 - 2021-03-15 16:37 - 000000000 ____D C:\ProgramData\AppoloTeam
2021-03-15 16:35 - 2021-03-15 16:36 - 010823000 _____ (Shelblock) C:\Users\adrie\Downloads\shelblock_installer-2.3.44-8914110331654796.exe
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-05 21:14 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-05 21:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-05 21:10 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-05 20:58 - 2019-11-27 18:03 - 000000000 ____D C:\Users\adrie\AppData\LocalLow\Mozilla
2021-06-05 20:58 - 2019-11-27 18:03 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-05 20:47 - 2019-11-11 16:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-05 20:46 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-06-05 20:46 - 2017-11-05 00:28 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-06-05 20:35 - 2019-11-11 16:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-05 20:29 - 2019-10-06 12:59 - 000000000 ___DC C:\WINDOWS\Panther
2021-06-05 17:26 - 2017-01-26 22:48 - 000000000 ____D C:\Users\adrie\AppData\Local\Host App Service
2021-06-04 21:41 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-04 20:26 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2021-06-02 22:44 - 2019-11-11 16:26 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-02 22:44 - 2019-03-19 14:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-02 22:44 - 2019-03-19 14:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-02 22:06 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-05-30 15:29 - 2017-01-26 22:51 - 000000000 ____D C:\Users\adrie\AppData\Local\Packages
2021-05-30 15:23 - 2019-11-11 16:44 - 000000000 ____D C:\Users\adrie\AppData\Local\PackageStaging
2021-05-30 15:22 - 2019-04-28 17:44 - 000000000 ___RD C:\Users\adrie\3D Objects
2021-05-30 15:22 - 2015-11-03 21:24 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-05-30 15:14 - 2019-11-11 16:01 - 000305880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-30 15:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-05-30 15:07 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-05-30 15:07 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2021-05-30 10:35 - 2021-02-15 17:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-30 10:34 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-30 10:32 - 2017-01-28 23:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-30 10:25 - 2017-01-28 23:25 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-29 21:06 - 2019-11-27 18:03 - 000001280 _____ C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-29 09:27 - 2019-11-11 16:40 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-559716797-1808254368-773481850-1002
2021-05-29 09:27 - 2019-11-11 16:15 - 000002408 _____ C:\Users\adrie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-29 09:27 - 2017-01-26 22:57 - 000000000 ___RD C:\Users\adrie\OneDrive
2021-05-29 09:21 - 2019-11-11 16:15 - 000000000 ____D C:\Users\adrie
2021-05-29 04:40 - 2020-07-05 16:50 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-29 04:40 - 2020-07-05 16:50 - 000002287 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-29 04:17 - 2018-03-03 14:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-29 04:16 - 2020-07-05 16:49 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-29 04:16 - 2020-07-05 16:49 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-29 04:16 - 2019-11-11 16:40 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-29 04:16 - 2019-11-11 16:40 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-29 03:57 - 2019-03-19 14:00 - 000000000 ____D C:\WINDOWS\SysWOW64\fr
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-05-29 03:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Portable Devices
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-05-29 03:56 - 2019-03-19 14:02 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2021-05-29 03:56 - 2019-03-19 14:01 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-29 03:56 - 2019-03-19 14:00 - 000000000 ____D C:\WINDOWS\system32\fr
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\dsc
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\downlevel
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\IME
2021-05-29 03:56 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-05-29 03:53 - 2020-06-25 10:23 - 000000000 ____D C:\Users\adrie\Documents\Wondershare Filmora 9
2021-05-29 03:53 - 2020-06-25 10:23 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2021-05-29 03:53 - 2019-11-11 16:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-05-29 03:53 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Containers
2021-05-29 03:53 - 2017-11-05 00:28 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-28 22:22 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\registration
2021-05-28 22:00 - 2017-11-05 00:24 - 000000000 ____D C:\ProgramData\Lenovo
2021-05-28 20:56 - 2020-06-16 21:12 - 000000000 ____D C:\Users\adrie\Desktop\youtube
==================== Fichiers à la racine de certains dossiers ========
2017-01-28 18:24 - 2017-01-28 18:26 - 000000251 _____ () C:\Program Files (x86)\Common Files\eInstruction.ini
2017-01-26 22:51 - 2021-06-05 20:49 - 000961308 _____ () C:\Users\adrie\AppData\Local\BTServer.log
==================== SigCheckExt =========================
2017-04-23 11:52 - 2017-03-04 07:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2016-06-27 00:07 - 2015-01-26 17:35 - 000040516 _____ C:\WINDOWS\system32\rlt8723a_chip_bt40_fw_asic_rom_patch.dll
2016-06-27 00:07 - 2015-05-12 16:11 - 000050920 _____ C:\WINDOWS\system32\rtl8723b_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050144 _____ C:\WINDOWS\system32\rtl8761a_bcut_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050144 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192ee_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050060 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8192eu_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000050956 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_8812ae_new.dll
2016-06-27 00:07 - 2015-04-23 13:45 - 000047692 _____ C:\WINDOWS\system32\rtl8761a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2016-06-27 00:07 - 2015-05-27 18:53 - 000036040 _____ C:\WINDOWS\system32\rtl8821a_mp_chip_bt40_fw_asic_rom_patch_new.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2016-06-27 00:09 - 2014-03-24 12:37 - 000422400 _____ (Realtek) C:\WINDOWS\SwUSB.exe
2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2016-06-27 00:06 - 2015-10-30 09:18 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEShims.dll
2016-06-27 00:09 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-01-28 19:51 - 2015-10-30 04:40 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2017-01-28 19:51 - 2015-10-30 04:30 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2019-04-28 18:02 - 2019-11-11 17:43 - 001701376 _____ (TODO:
2019-04-28 18:02 - 2019-11-11 17:43 - 000105984 _____ (Conexant Systems, Inc.) C:\WINDOWS\SysWOW64\UIUSrv.exe
2021-06-05 21:53 - 2021-06-05 21:56 - 003471512 _____ (Nicolas Coolman) C:\Users\adrie\Desktop\ZHPSuite.exe
2021-06-04 23:59 - 2021-06-05 00:01 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix(1).exe
2021-06-04 23:54 - 2021-06-04 23:57 - 005912816 _____ (SOSVirus) C:\Users\adrie\Downloads\AdsFix.exe
2017-01-28 18:31 - 2017-01-28 18:34 - 132368998 _____ C:\Users\adrie\Downloads\Apache_OpenOffice_4.1.3_Win_x86_install_fr.exe
2018-12-14 22:31 - 2018-12-14 22:37 - 132403128 _____ C:\Users\adrie\Downloads\Apache_OpenOffice_4.1.5_Win_x86_install_fr.exe
2021-06-02 22:22 - 2021-06-02 22:23 - 003279088 _____ (SosVirus) C:\Users\adrie\Downloads\Clean_Dns.exe
2021-06-05 22:20 - 2021-06-05 22:22 - 002300416 _____ (Farbar) C:\Users\adrie\Downloads\FRST64-2.1.exe
2018-09-28 21:19 - 2018-09-28 21:27 - 063796336 _____ (International GeoGebra Institute) C:\Users\adrie\Downloads\geogebra_6-0-489-0_fr_14087.exe
2021-05-29 18:15 - 2021-05-29 18:15 - 005239812 _____ C:\Users\adrie\Downloads\photofiltre-7-2-1-en-win.exe
2021-05-29 18:09 - 2021-05-29 18:11 - 030940926 _____ (PhotoFiltre ) C:\Users\adrie\Downloads\photofiltre-studio-11-2.exe
2021-06-04 22:12 - 2021-06-04 22:14 - 003275416 _____ (Nicolas Coolman) C:\Users\adrie\Downloads\ZHPDiag3.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{1a15cddb-3c32-11e6-b47a-806e6f6e6963}
{1a15cddc-3c32-11e6-b47a-806e6f6e6963}
{1a15cdd9-3c32-11e6-b47a-806e6f6e6963}
{1a15cdda-3c32-11e6-b47a-806e6f6e6963}
timeout 2
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 0
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdd9-3c32-11e6-b47a-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdda-3c32-11e6-b47a-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddb-3c32-11e6-b47a-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddc-3c32-11e6-b47a-806e6f6e6963}
device partition=\Device\HarddiskVolume7
path \EFI\Microsoft\Boot\LrsBootMgr.efi
description Lenovo Recovery System
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cddd-3c32-11e6-b47a-806e6f6e6963}
description EFI Network 0 for IPv4 (C8-5B-76-28-9B-58)
Application logicielle (101fffff)
--------------------------------
identificateur {1a15cdde-3c32-11e6-b47a-806e6f6e6963}
description EFI Network 0 for IPv6 (C8-5B-76-28-9B-58)
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{87fbb02d-048b-11ea-9f5c-efe2e2e72736}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{87fbb02d-048b-11ea-9f5c-efe2e2e72736}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {87fbb02a-048b-11ea-9f5c-efe2e2e72736}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {87fbb02c-048b-11ea-9f5c-efe2e2e72736}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {87fbb02d-048b-11ea-9f5c-efe2e2e72736}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================