Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2021
Exécuté par moi (administrateur) sur MOI-PC (Gigabyte Technology Co., Ltd. M68MT-S2) (25-06-2021 01:40:15)
Exécuté depuis C:\Users\moi\Downloads
Profils chargés: moi & UpdatusUser
Platform: Windows 10 Home Version 21H1 19043.1081 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() Q:\140061.fra\Office14\WINWORD.EXE
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Microsoft Corporation -> ) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Orange -> ) [Fichier non signé] C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Combo Cleaner] => C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe [1701504 2021-06-10] (RCS LT, UAB -> RCS LT)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.) [Fichier non signé]
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe
HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [Opera Browser Assistant] => C:\Users\moi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3989200 2021-06-24] (Opera Software AS -> Opera Software)
HKLM\Software\...\AppCompatFlags\Custom\chrome.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\explorer.zza: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0278EC9C-0BD6-4188-A436-6CA8074AF528} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {05685331-67F3-4233-A9B7-FB1ABB4FF737} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {05AE6109-A89C-4F82-B35A-72E75A52DF6A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {101E155B-4414-4E85-AA27-BF9CD0514D3E} - System32\Tasks\RealDownloader Update Check => c:\program files (x86)\real\RealDownloader\downloader2.exe
Task: {1249C864-ED11-4273-B748-B8CA9E8614D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14D639B0-F15E-4976-A8ED-00EFE850104E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {15B8693F-1621-42E2-9AAD-3FF1EBD8CF6F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {15CB8862-40C8-4754-9235-32FB211801DE} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {2506C499-6B09-449D-85C4-776CCBF56D8D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {28CBA467-23A2-4FA6-9B3E-EBEC4054D9DF} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2E8130CA-89A5-45F8-A386-2B21A86A54F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC)
Task: {2F1C3797-4A07-4AF9-889A-E7FCC45CE9A7} - System32\Tasks\Secure BrowserUpdateTaskMachineUA => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
Task: {309ED0E7-6EAB-4FB0-85D6-2779405276A9} - System32\Tasks\Opera scheduled Autoupdate 1571582613 => c:\users\moi\appdata\local\programs\opera\launcher.exe [2264784 2021-06-17] (Opera Software AS -> Opera Software)
Task: {32A8CC5E-F00C-4265-AD32-3FFCC00D3CF6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {39E465DC-1CFA-4A58-9849-6395918CE7AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {62E904FE-32FF-455F-AB65-66B41278A202} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {68BC91F3-DB22-4359-893B-918326C5D5A3} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6CD68257-D9CE-46C6-8760-89A1C26DB1B5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {7A238231-F831-4D28-A4D9-C998DBEE9AE4} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7DDFF20F-58FA-436F-ADD5-53870073DAC8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7EC84B97-F85C-4975-9DFB-6A9A6A7860E7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {82D46979-C5D9-4E27-93B7-B1C4557FB999} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [476760 2015-01-19] (Orange -> ) [Fichier non signé]
Task: {891D8D62-64EF-4523-B87E-9C8C09AE561A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {8930A908-0AA8-4C7B-8130-5E6E4287026E} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {91989ABE-BBCB-4B7F-8032-18DE9522C7D6} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4903192 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
Task: {9F825A1D-6A51-46B4-AF86-2DE606A86BC2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A34B0A24-C433-4EBF-91F0-0BBD47C8FA1E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A5CD17AE-5C13-41D0-A266-F44F411FDF5F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-08-21] (Garmin International, Inc. -> )
Task: {A8AD99F4-BD3F-4DB2-8B4A-8A5315345FAD} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {AE55F22F-D018-447C-9390-2FE53570CB1D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B1B3837B-B006-4811-8FB2-73F3B5ADF880} - System32\Tasks\Secure BrowserUpdateTaskMachineCore => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
Task: {B2822E94-BC2E-45E6-A5F2-7F69CA5AB3A0} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {B71B459F-80D2-4E6C-90F4-763F41C9164F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B7F6C889-BD94-4581-B82B-ABE6B0EE8A4F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BFC563E9-3BED-4D5F-A081-986A203EA24A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C91CCADC-542D-44A7-8371-8537401F0CB7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CC702477-5015-4D22-9D7D-F655A44C20C2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D3FCB0F3-43E8-4764-8969-81FCCA487985} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {D5BDD582-D3AC-4C1A-9E52-E96E6B0F7425} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D8881843-4654-4CF9-88C5-9B02029969EA} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {E31CEDC2-FD9F-4EAE-A75A-5C3E7B344731} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC)
Task: {E6DBBF28-D23D-4AD4-A506-AC80B1E9934E} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EAD573D9-F730-48A3-A992-6914C7A06F2C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {F5D0FE22-7958-44CF-9FBE-47EB461C73A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F5DF1119-F34D-4727-AA01-A99E9DDFC418} - System32\Tasks\Opera scheduled assistant Autoupdate 1582719313 => C:\Users\moi\AppData\Local\Programs\Opera\launcher.exe [2264784 2021-06-17] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\moi\AppData\Local\Programs\Opera\assistant" $(Arg0)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CF0925DE-66AD-4B7A-BD28-10A491805895}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-25]
Edge Extension: (Outlook) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-05]
Edge Extension: (Word) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-05]
Edge Extension: (Excel) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-05]
Edge Extension: (PowerPoint) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-05]
FireFox:
========
FF DefaultProfile: 1mm71d5j.default-1504352958828
FF ProfilePath: C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 [2021-06-25]
FF user.js: detected! => C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\user.js [2019-03-16]
FF Homepage: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> hxxps://r.orange.fr/r/Oodc_oi_promoHP?ref=O_OI_defaultPage_FFe64_w10e64_promoHP
FF NetworkProxy: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> type", 0
FF Session Restore: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> est activé.
FF Extension: (Facebook Container) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@contain-facebook.xpi [2021-05-07]
FF Extension: (Google Maps Sidebar) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@GoogleMaps.Sidebar.xpi [2020-12-13]
FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@windscribeff.xpi [2021-05-19]
FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-15]
FF Extension: (AdBlocker for YouTube™) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-05-18]
FF Extension: (uBlock Origin) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\uBlock0@raymondhill.net.xpi [2021-06-23]
FF Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\wrc@avast.com.xpi [2021-02-17]
FF Extension: (GoogleMaps-IT) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{9eb970a1-335d-4af6-916c-ea5b38cef08b}.xpi [2020-12-13]
FF Extension: (Flash and Video Download) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-06-09]
FF Extension: (Video DownloadHelper) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-16]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-20]
FF HKLM\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default [2021-06-24]
CHR HomePage: Default -> hxxp://www.fr-gogo.com/
CHR StartupUrls: Default -> "hxxp://www.fr-gogo.com/"
CHR Extension: (Slides) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-25]
CHR Extension: (Docs) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-25]
CHR Extension: (Google Drive) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-25]
CHR Extension: (YouTube) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-12-25]
CHR Extension: (Gmail) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-25]
CHR HKU\S-1-5-21-7480761-4120596894-250065351-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
Opera:
=======
OPR Profile: C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable [2021-06-25]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2020-11-20]
OPR Extension: (Rich Hints Agent) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-18]
OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2021-05-19]
Brave:
=======
BRA Profile: C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-24]
BRA Extension: (Brave Tracking Protection Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-01-11]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-01-11]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-01-11]
BRA Extension: (Brave Ad Block Updater (FRA: EasyList Liste FR)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2019-01-11]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-01-11]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8249936 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [625432 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [373528 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé]
R2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [141440 2021-06-10] (RCS LT, UAB -> RCS LT)
R2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [150144 2021-06-10] (RCS LT, UAB -> RCS LT)
S3 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] (NVIDIA Corporation -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-01] (Malwarebytes Inc -> Malwarebytes)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] (NVIDIA Corporation -> )
S2 Secure Browser; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
S3 Secure Browserm; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\NisSrv.exe [2169576 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\MsMpEng.exe [128376 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL -> BitDefender LLC)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-09] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-09] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-06-15] (Adlice -> )
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [78232 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [430312 2020-07-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98544 2020-07-22] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-25 01:40 - 2021-06-25 01:41 - 000031059 _____ C:\Users\moi\Downloads\FRST.txt
2021-06-25 01:38 - 2021-06-25 01:38 - 002300416 _____ (Farbar) C:\Users\moi\Downloads\FRST64.exe
2021-06-24 19:10 - 2021-06-24 19:10 - 000002114 _____ C:\Users\moi\Desktop\ZHPCleaner (S).txt
2021-06-24 18:26 - 2021-06-24 18:26 - 000010071 _____ C:\Users\moi\Downloads\ZHPCleaner-[R]-24062021-18_24_19.html
2021-06-24 18:24 - 2021-06-24 18:24 - 000010071 _____ C:\Users\moi\Desktop\ZHPCleaner (R).html
2021-06-24 18:24 - 2021-06-24 18:24 - 000003185 _____ C:\Users\moi\Desktop\ZHPCleaner (R).txt
2021-06-24 18:16 - 2021-06-24 19:10 - 000008591 _____ C:\Users\moi\Desktop\ZHPCleaner (S).html
2021-06-24 18:16 - 2021-06-24 18:16 - 000002984 _____ C:\Users\Public\Desktop\ZHPCleaner (S).txt
2021-06-24 17:57 - 2021-06-24 17:57 - 000000873 _____ C:\Users\moi\Desktop\ZHPCleaner.lnk
2021-06-24 17:29 - 2021-06-24 17:29 - 003257496 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPCleaner.exe
2021-06-23 23:31 - 2021-06-23 23:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-23 21:58 - 2021-06-24 10:52 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-23 01:21 - 2021-06-23 01:21 - 000000000 ____D C:\Users\moi\AppData\Local\RCS_LT
2021-06-23 01:20 - 2021-06-23 01:30 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2021-06-23 01:20 - 2021-06-23 01:20 - 000001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2021-06-23 01:20 - 2021-06-23 01:20 - 000001949 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk
2021-06-23 01:16 - 2021-06-23 01:16 - 003590288 _____ (RCS LT) C:\Users\moi\Downloads\CCSetup(1).exe
2021-06-22 23:22 - 2021-06-22 23:22 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-22 23:22 - 2021-06-22 23:22 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-22 23:21 - 2021-06-22 23:21 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-22 23:21 - 2021-06-22 23:21 - 000011333 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-22 23:20 - 2021-06-22 23:20 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-22 23:20 - 2021-06-22 23:20 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-22 23:20 - 2021-06-22 23:20 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-22 23:20 - 2021-06-22 23:20 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-22 23:20 - 2021-06-22 23:20 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-21 22:02 - 2021-06-21 22:02 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-06-21 22:02 - 2021-06-21 22:02 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-06-15 16:16 - 2021-06-15 16:16 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2021-06-14 13:20 - 2021-06-14 13:21 - 041840176 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup (1).exe
2021-06-13 00:07 - 2021-06-13 00:07 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2(2).exe
2021-06-13 00:02 - 2021-06-13 00:08 - 000000000 ____D C:\Users\moi\Downloads\inc ca
2021-06-11 22:37 - 2021-06-11 22:39 - 047622883 _____ (Oleg N. Scherbakov) C:\Users\moi\Downloads\captvty-2.9.3.2-autoextract.exe
2021-06-10 10:35 - 2021-06-10 10:35 - 000711203 _____ C:\Users\moi\Downloads\Déclaration de sinistre .docx.pdf
2021-06-10 09:50 - 2021-06-10 09:50 - 000163095 _____ C:\Users\moi\Downloads\Déclaration de sinistre-LOYERS IMPAYES.docx.pdf
2021-06-09 16:48 - 2021-06-09 16:48 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2.exe
2021-06-09 13:06 - 2021-06-09 13:06 - 000366745 _____ C:\Users\moi\Downloads\AXA mutuelle pieces jointes_09_06_2021.zip
2021-06-09 12:25 - 2021-06-09 12:25 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-09 12:25 - 2021-06-09 12:25 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-08 08:04 - 2021-06-08 08:04 - 000088906 _____ C:\Users\moi\Downloads\CANAL+ LETTRE CHANGEMENT DE CONFIGURATION AVEC CONTRAT - 2021-06-05.pdf
2021-06-05 23:02 - 2021-06-05 23:02 - 000001399 _____ C:\Users\Public\Desktop\Music Search MP3.lnk
2021-06-05 23:02 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL
2021-06-05 22:56 - 2021-06-05 23:02 - 000001255 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2021-06-05 22:56 - 2021-06-05 22:56 - 000000000 ____D C:\Program Files (x86)\DsNET Corp
2021-06-05 22:49 - 2021-06-25 01:44 - 000003502 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineUA
2021-06-05 22:49 - 2021-06-25 01:44 - 000003278 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineCore
2021-06-05 22:49 - 2021-06-07 00:20 - 000000000 ____D C:\Program Files (x86)\Secure Browser
2021-06-05 22:44 - 2021-06-05 22:44 - 026194208 _____ (DsNET Corp ) C:\Users\moi\Downloads\aTube_Catcher.exe
2021-06-04 19:38 - 2021-06-04 19:41 - 000030936 _____ C:\Users\moi\Downloads\Addition.txt
2021-06-04 19:34 - 2021-06-25 01:41 - 000000000 ____D C:\FRST
2021-06-04 17:52 - 2021-06-24 19:10 - 000000000 ____D C:\Users\moi\AppData\Roaming\ZHP
2021-06-03 13:41 - 2021-06-03 13:41 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-06-02 19:42 - 2021-06-02 19:42 - 000181124 _____ C:\Users\moi\Downloads\DG SwissLife Retraités .pdf
2021-05-27 16:34 - 2021-05-27 16:34 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-05-27 16:34 - 2021-05-27 16:34 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-05-27 16:34 - 2021-05-27 16:34 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-05-27 16:34 - 2021-05-27 16:34 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-05-27 16:32 - 2021-05-27 16:32 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-05-27 16:32 - 2021-05-27 16:32 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-05-27 16:32 - 2021-05-27 16:32 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-05-27 16:31 - 2021-05-27 16:31 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-05-27 16:31 - 2021-05-27 16:31 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-05-26 11:52 - 2021-06-25 01:44 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-26 11:52 - 2021-06-25 01:44 - 000003352 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-30 23:00 - 2021-04-30 23:00 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-04-30 22:59 - 2021-04-30 22:59 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-04-30 22:59 - 2021-04-30 22:59 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-04-30 22:57 - 2021-04-30 22:57 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-04-30 22:57 - 2021-04-30 22:57 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-04-22 13:20 - 2021-04-22 13:21 - 040488656 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup.exe
2021-04-20 22:43 - 2021-04-20 22:43 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2(1).exe
2021-04-15 12:07 - 2021-04-15 12:07 - 000139003 _____ C:\Users\moi\Downloads\Analyse du 14 avril 2021.pdf
2021-04-14 13:22 - 2021-04-14 13:23 - 018044070 _____ C:\Users\moi\Downloads\Vidéo compressé.zip
2021-04-14 12:09 - 2021-04-14 12:09 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-07 18:14 - 2021-04-07 18:15 - 000000000 ____D C:\Users\moi\Downloads\Pfizer
2021-04-01 12:11 - 2021-04-01 12:11 - 000074483 _____ C:\Users\moi\Downloads\Attestation Renault Assurance logement.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-25 01:45 - 2018-03-27 16:23 - 000000000 ____D C:\Users\moi\AppData\Local\AVAST Software
2021-06-25 01:44 - 2020-08-06 11:13 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-25 01:44 - 2020-08-06 11:13 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-25 01:44 - 2020-07-27 18:46 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-25 01:44 - 2020-07-27 18:46 - 000002290 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-25 01:44 - 2020-06-01 23:20 - 000003768 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582719313
2021-06-25 01:44 - 2020-06-01 23:20 - 000003634 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1571582613
2021-06-25 01:44 - 2020-06-01 23:20 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-25 01:44 - 2020-06-01 23:20 - 000002906 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-7480761-4120596894-250065351-1000
2021-06-25 01:44 - 2020-06-01 23:20 - 000002804 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-06-25 01:44 - 2020-06-01 23:20 - 000002554 _____ C:\WINDOWS\system32\Tasks\RealDownloader Update Check
2021-06-25 01:44 - 2020-06-01 23:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-06-25 01:38 - 2014-10-29 12:43 - 000000000 ____D C:\Users\moi\Documents\1Fichiers Word
2021-06-25 01:25 - 2019-01-30 15:00 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-25 01:24 - 2020-01-30 23:29 - 000000000 ____D C:\Users\moi\AppData\LocalLow\Mozilla
2021-06-25 01:13 - 2020-07-27 18:46 - 000000000 ____D C:\Program Files\CCleaner
2021-06-25 01:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-25 01:10 - 2020-06-01 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-25 00:29 - 2020-07-22 14:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-06-25 00:28 - 2014-10-29 11:22 - 000000000 ____D C:\ProgramData\AVAST Software
2021-06-25 00:27 - 2020-06-01 23:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-25 00:26 - 2020-06-01 22:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-24 22:09 - 2020-06-01 21:33 - 000000000 ____D C:\Users\UpdatusUser.000
2021-06-24 22:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-24 22:08 - 2014-10-29 11:29 - 000000000 ____D C:\Users\moi\AppData\Roaming\SoftGrid Client
2021-06-24 18:24 - 2017-05-13 13:16 - 000000000 ____D C:\ProgramData\IObit
2021-06-24 11:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-24 11:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-24 10:52 - 2017-11-15 18:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-24 02:04 - 2017-05-03 17:54 - 000001039 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-06-24 02:04 - 2017-05-03 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-06-24 00:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-23 23:31 - 2014-10-29 11:14 - 000001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-23 01:54 - 2020-06-01 23:11 - 001924704 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-23 01:54 - 2019-12-07 16:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-23 01:54 - 2019-12-07 16:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-23 01:20 - 2014-10-29 11:05 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-23 00:11 - 2020-06-01 22:57 - 000388248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-22 23:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-21 22:02 - 2020-10-13 12:13 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-06-21 22:02 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-21 22:01 - 2020-07-22 14:28 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-06-21 12:26 - 2019-10-20 16:43 - 000001395 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-06-19 21:28 - 2020-08-06 11:13 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-19 12:35 - 2014-10-29 14:24 - 000000000 ____D C:\Users\moi\Documents\Articles scannés récents
2021-06-18 23:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-18 20:12 - 2021-02-19 22:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-18 01:48 - 2021-02-28 12:02 - 000002407 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-18 01:48 - 2020-02-03 18:45 - 000000000 ___RD C:\Users\moi\OneDrive
2021-06-11 22:42 - 2017-06-14 12:48 - 000000000 ____D C:\Users\moi\Desktop\Captvty
2021-06-10 17:33 - 2014-10-29 11:50 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2021-06-10 16:23 - 2015-08-05 16:19 - 000000000 ____D C:\Users\moi\AppData\Local\ElevatedDiagnostics
2021-06-10 08:33 - 2017-04-12 12:17 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-08 21:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-08 20:18 - 2014-10-29 12:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-08 20:11 - 2014-10-29 12:42 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-07 18:18 - 2020-06-01 21:33 - 000000000 ____D C:\Users\moi
2021-06-05 23:02 - 2020-02-07 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2021-06-04 17:52 - 2017-04-13 12:58 - 000000000 ____D C:\Users\moi\AppData\Local\ZHP
2021-06-01 12:55 - 2020-09-03 17:04 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-01 12:55 - 2020-09-03 17:04 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-26 12:01 - 2015-06-01 11:24 - 000000000 ____D C:\Program Files (x86)\Google
==================== Fichiers à la racine de certains dossiers ========
2014-11-06 16:13 - 2014-11-06 16:13 - 000003584 _____ () C:\Users\moi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-12-26 16:21 - 2019-12-26 16:21 - 000000017 _____ () C:\Users\moi\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2014-10-29 13:53 - 2014-10-29 13:53 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-29 11:04 - 2010-03-04 12:05 - 000758272 ____R (NVIDIA Corporation) C:\WINDOWS\system32\cohelper.dll
2020-01-15 13:01 - 2019-12-17 02:14 - 001359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-02-18 11:55 - 2015-02-18 11:55 - 007639952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2009-07-13 23:59 - 2009-07-14 03:41 - 004326912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2014-10-29 12:20 - 2012-08-21 23:01 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\OxpsConverter.exe
2015-02-11 12:29 - 2015-01-09 05:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll
2017-04-12 17:11 - 2016-03-24 00:40 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2014-10-29 12:02 - 2012-04-26 07:34 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrmemptylst.exe
2014-10-29 15:15 - 2013-10-02 02:15 - 001057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2019-08-16 17:28 - 2019-07-13 10:14 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sipnotify.exe
2019-08-16 17:37 - 2018-08-16 04:18 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2014-10-29 12:15 - 2012-11-29 00:56 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wdfres.dll
2019-08-16 17:37 - 2019-04-09 16:52 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-29 11:50 - 2007-12-13 23:16 - 000073728 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2.dll
2014-10-29 11:50 - 2007-12-13 23:16 - 000005120 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2L.dll
2014-10-29 11:50 - 2010-01-22 16:34 - 000003072 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2S.dll
2014-10-29 11:50 - 2010-02-05 12:42 - 000180224 _____ (Brother Industries, Ltd.) C:\WINDOWS\SysWOW64\BroSNMP.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000249856 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartCertificate.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000401408 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSecure2.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000440320 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSock.dll
2021-06-05 23:02 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL
2014-10-29 13:59 - 2014-10-29 13:59 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsIntl.dll
2012-11-16 10:53 - 2012-11-16 10:53 - 000434176 _____ (The cURL library, hxxp://curl.haxx.se/) C:\WINDOWS\SysWOW64\libcurld.dll
2020-01-15 13:01 - 2019-12-17 02:00 - 001155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2014-10-29 11:50 - 2010-02-09 18:11 - 000217088 _____ (brother) C:\WINDOWS\SysWOW64\NSSearch.dll
2015-02-18 11:56 - 2015-02-18 11:56 - 006295288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2009-07-13 23:59 - 2009-07-14 03:41 - 003128320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-04-18 06:31 - 2014-04-18 06:31 - 000053299 _____ C:\WINDOWS\SysWOW64\pthreadVC.dll
2014-10-29 15:14 - 2012-08-23 13:12 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp_winip.dll
2014-10-29 15:15 - 2013-10-02 01:08 - 000855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2012-11-16 10:53 - 2012-11-16 10:53 - 000079360 _____ (GnuWin32) C:\WINDOWS\SysWOW64\regex2.dll
2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2018-02-11 16:51 - 2017-05-18 15:36 - 001352192 _____ C:\Users\moi\Desktop\EJmiB6N87eh_SFTGC.exe
2019-09-28 18:08 - 2019-09-28 18:11 - 132856894 _____ C:\Users\moi\Downloads\Apache_OpenOffice_4.1.7_Win_x86_install_fr.exe
2021-06-11 22:37 - 2021-06-11 22:39 - 047622883 _____ (Oleg N. Scherbakov) C:\Users\moi\Downloads\captvty-2.9.3.2-autoextract.exe
2021-06-25 01:38 - 2021-06-25 01:38 - 002300416 _____ (Farbar) C:\Users\moi\Downloads\FRST64.exe
2019-07-18 20:04 - 2019-07-18 19:23 - 017055510 _____ (Youtomato ) C:\Users\moi\Downloads\yt-downloader-setup.exe
2021-06-24 17:29 - 2021-06-24 17:29 - 003257496 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {14721e42-5f49-11e4-8762-97596efeb681}
device ramdisk=[C:]\Recovery\14721e42-5f49-11e4-8762-97596efeb681\Winre.wim,{14721e43-5f49-11e4-8762-97596efeb681}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\14721e42-5f49-11e4-8762-97596efeb681\Winre.wim,{14721e43-5f49-11e4-8762-97596efeb681}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
truncatememory 0x200000000
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
nx OptIn
numproc 2
bootmenupolicy Standard
usefirmwarepcisettings No
Chargeur de d‚marrage Windows
-----------------------------
identificateur {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {14721e43-5f49-11e4-8762-97596efeb681}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\14721e42-5f49-11e4-8762-97596efeb681\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par moi (administrateur) sur MOI-PC (Gigabyte Technology Co., Ltd. M68MT-S2) (25-06-2021 01:40:15)
Exécuté depuis C:\Users\moi\Downloads
Profils chargés: moi & UpdatusUser
Platform: Windows 10 Home Version 21H1 19043.1081 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() Q:\140061.fra\Office14\WINWORD.EXE
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Microsoft Corporation -> ) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVH.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Orange -> ) [Fichier non signé] C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe
(RCS LT, UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Combo Cleaner] => C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe [1701504 2021-06-10] (RCS LT, UAB -> RCS LT)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.) [Fichier non signé]
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe
HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-7480761-4120596894-250065351-1000\...\Run: [Opera Browser Assistant] => C:\Users\moi\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3989200 2021-06-24] (Opera Software AS -> Opera Software)
HKLM\Software\...\AppCompatFlags\Custom\chrome.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\explorer.zza: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0278EC9C-0BD6-4188-A436-6CA8074AF528} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {05685331-67F3-4233-A9B7-FB1ABB4FF737} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {05AE6109-A89C-4F82-B35A-72E75A52DF6A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {101E155B-4414-4E85-AA27-BF9CD0514D3E} - System32\Tasks\RealDownloader Update Check => c:\program files (x86)\real\RealDownloader\downloader2.exe
Task: {1249C864-ED11-4273-B748-B8CA9E8614D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14D639B0-F15E-4976-A8ED-00EFE850104E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {15B8693F-1621-42E2-9AAD-3FF1EBD8CF6F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {15CB8862-40C8-4754-9235-32FB211801DE} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {2506C499-6B09-449D-85C4-776CCBF56D8D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {28CBA467-23A2-4FA6-9B3E-EBEC4054D9DF} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2E8130CA-89A5-45F8-A386-2B21A86A54F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC)
Task: {2F1C3797-4A07-4AF9-889A-E7FCC45CE9A7} - System32\Tasks\Secure BrowserUpdateTaskMachineUA => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
Task: {309ED0E7-6EAB-4FB0-85D6-2779405276A9} - System32\Tasks\Opera scheduled Autoupdate 1571582613 => c:\users\moi\appdata\local\programs\opera\launcher.exe [2264784 2021-06-17] (Opera Software AS -> Opera Software)
Task: {32A8CC5E-F00C-4265-AD32-3FFCC00D3CF6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {39E465DC-1CFA-4A58-9849-6395918CE7AE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {62E904FE-32FF-455F-AB65-66B41278A202} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {68BC91F3-DB22-4359-893B-918326C5D5A3} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {6CD68257-D9CE-46C6-8760-89A1C26DB1B5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {7A238231-F831-4D28-A4D9-C998DBEE9AE4} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7DDFF20F-58FA-436F-ADD5-53870073DAC8} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7EC84B97-F85C-4975-9DFB-6A9A6A7860E7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {82D46979-C5D9-4E27-93B7-B1C4557FB999} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [476760 2015-01-19] (Orange -> ) [Fichier non signé]
Task: {891D8D62-64EF-4523-B87E-9C8C09AE561A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {8930A908-0AA8-4C7B-8130-5E6E4287026E} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {91989ABE-BBCB-4B7F-8032-18DE9522C7D6} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4903192 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
Task: {9F825A1D-6A51-46B4-AF86-2DE606A86BC2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A34B0A24-C433-4EBF-91F0-0BBD47C8FA1E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A5CD17AE-5C13-41D0-A266-F44F411FDF5F} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-08-21] (Garmin International, Inc. -> )
Task: {A8AD99F4-BD3F-4DB2-8B4A-8A5315345FAD} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [Fichier non signé]
Task: {AE55F22F-D018-447C-9390-2FE53570CB1D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B1B3837B-B006-4811-8FB2-73F3B5ADF880} - System32\Tasks\Secure BrowserUpdateTaskMachineCore => C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
Task: {B2822E94-BC2E-45E6-A5F2-7F69CA5AB3A0} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {B71B459F-80D2-4E6C-90F4-763F41C9164F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B7F6C889-BD94-4581-B82B-ABE6B0EE8A4F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BFC563E9-3BED-4D5F-A081-986A203EA24A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C91CCADC-542D-44A7-8371-8537401F0CB7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CC702477-5015-4D22-9D7D-F655A44C20C2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D3FCB0F3-43E8-4764-8969-81FCCA487985} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {D5BDD582-D3AC-4C1A-9E52-E96E6B0F7425} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D8881843-4654-4CF9-88C5-9B02029969EA} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {E31CEDC2-FD9F-4EAE-A75A-5C3E7B344731} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-05-26] (Google Inc -> Google LLC)
Task: {E6DBBF28-D23D-4AD4-A506-AC80B1E9934E} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EAD573D9-F730-48A3-A992-6914C7A06F2C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {F5D0FE22-7958-44CF-9FBE-47EB461C73A2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F5DF1119-F34D-4727-AA01-A99E9DDFC418} - System32\Tasks\Opera scheduled assistant Autoupdate 1582719313 => C:\Users\moi\AppData\Local\Programs\Opera\launcher.exe [2264784 2021-06-17] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\moi\AppData\Local\Programs\Opera\assistant" $(Arg0)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CF0925DE-66AD-4B7A-BD28-10A491805895}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-25]
Edge Extension: (Outlook) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-10-05]
Edge Extension: (Word) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-05]
Edge Extension: (Excel) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-05]
Edge Extension: (PowerPoint) - C:\Users\moi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-10-05]
FireFox:
========
FF DefaultProfile: 1mm71d5j.default-1504352958828
FF ProfilePath: C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 [2021-06-25]
FF user.js: detected! => C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\user.js [2019-03-16]
FF Homepage: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> hxxps://r.orange.fr/r/Oodc_oi_promoHP?ref=O_OI_defaultPage_FFe64_w10e64_promoHP
FF NetworkProxy: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> type", 0
FF Session Restore: Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828 -> est activé.
FF Extension: (Facebook Container) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@contain-facebook.xpi [2021-05-07]
FF Extension: (Google Maps Sidebar) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@GoogleMaps.Sidebar.xpi [2020-12-13]
FF Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\@windscribeff.xpi [2021-05-19]
FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-15]
FF Extension: (AdBlocker for YouTube™) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-05-18]
FF Extension: (uBlock Origin) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\uBlock0@raymondhill.net.xpi [2021-06-23]
FF Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\wrc@avast.com.xpi [2021-02-17]
FF Extension: (GoogleMaps-IT) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{9eb970a1-335d-4af6-916c-ea5b38cef08b}.xpi [2020-12-13]
FF Extension: (Flash and Video Download) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-06-09]
FF Extension: (Video DownloadHelper) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-16]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\1mm71d5j.default-1504352958828\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-20]
FF HKLM\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [{b84eec0c-f44b-420f-b2ee-db2a585be7fc}] - C:\Program Files (x86)\vondos\smartdefender\FF\smart_defender-1.0.0-an+fx.xpi => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default [2021-06-24]
CHR HomePage: Default -> hxxp://www.fr-gogo.com/
CHR StartupUrls: Default -> "hxxp://www.fr-gogo.com/"
CHR Extension: (Slides) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-25]
CHR Extension: (Docs) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-25]
CHR Extension: (Google Drive) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-25]
CHR Extension: (YouTube) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-12-25]
CHR Extension: (Gmail) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\moi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-25]
CHR HKU\S-1-5-21-7480761-4120596894-250065351-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
Opera:
=======
OPR Profile: C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable [2021-06-25]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Avast Online Security) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2020-11-20]
OPR Extension: (Rich Hints Agent) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-06-18]
OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\moi\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2021-05-19]
Brave:
=======
BRA Profile: C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-24]
BRA Extension: (Brave Tracking Protection Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2019-01-11]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2019-01-11]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2019-01-11]
BRA Extension: (Brave Ad Block Updater (FRA: EasyList Liste FR)) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2019-01-11]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\moi\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2019-01-11]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8249936 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [625432 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [373528 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Fichier non signé]
R2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [141440 2021-06-10] (RCS LT, UAB -> RCS LT)
R2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [150144 2021-06-10] (RCS LT, UAB -> RCS LT)
S3 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] (NVIDIA Corporation -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-01] (Malwarebytes Inc -> Malwarebytes)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] (NVIDIA Corporation -> )
S2 Secure Browser; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
S3 Secure Browserm; C:\Program Files (x86)\Secure Browser\Update\Secure BrowserUpdate.exe [124560 2021-06-05] (Secured Browser -> Secure Browser.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\NisSrv.exe [2169576 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.6-0\MsMpEng.exe [128376 2020-07-22] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-21] (Avast Software s.r.o. -> AVAST Software)
R3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195224 2020-09-03] (Bitdefender SRL -> BitDefender LLC)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-09] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-09] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2014-04-18] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-06-15] (Adlice -> )
R3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [641736 2021-02-26] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [78232 2020-07-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [430312 2020-07-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98544 2020-07-22] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-25 01:40 - 2021-06-25 01:41 - 000031059 _____ C:\Users\moi\Downloads\FRST.txt
2021-06-25 01:38 - 2021-06-25 01:38 - 002300416 _____ (Farbar) C:\Users\moi\Downloads\FRST64.exe
2021-06-24 19:10 - 2021-06-24 19:10 - 000002114 _____ C:\Users\moi\Desktop\ZHPCleaner (S).txt
2021-06-24 18:26 - 2021-06-24 18:26 - 000010071 _____ C:\Users\moi\Downloads\ZHPCleaner-[R]-24062021-18_24_19.html
2021-06-24 18:24 - 2021-06-24 18:24 - 000010071 _____ C:\Users\moi\Desktop\ZHPCleaner (R).html
2021-06-24 18:24 - 2021-06-24 18:24 - 000003185 _____ C:\Users\moi\Desktop\ZHPCleaner (R).txt
2021-06-24 18:16 - 2021-06-24 19:10 - 000008591 _____ C:\Users\moi\Desktop\ZHPCleaner (S).html
2021-06-24 18:16 - 2021-06-24 18:16 - 000002984 _____ C:\Users\Public\Desktop\ZHPCleaner (S).txt
2021-06-24 17:57 - 2021-06-24 17:57 - 000000873 _____ C:\Users\moi\Desktop\ZHPCleaner.lnk
2021-06-24 17:29 - 2021-06-24 17:29 - 003257496 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPCleaner.exe
2021-06-23 23:31 - 2021-06-23 23:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-23 21:58 - 2021-06-24 10:52 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-06-23 01:21 - 2021-06-23 01:21 - 000000000 ____D C:\Users\moi\AppData\Local\RCS_LT
2021-06-23 01:20 - 2021-06-23 01:30 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2021-06-23 01:20 - 2021-06-23 01:20 - 000001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2021-06-23 01:20 - 2021-06-23 01:20 - 000001949 _____ C:\Users\Public\Desktop\Combo Cleaner.lnk
2021-06-23 01:16 - 2021-06-23 01:16 - 003590288 _____ (RCS LT) C:\Users\moi\Downloads\CCSetup(1).exe
2021-06-22 23:22 - 2021-06-22 23:22 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2021-06-22 23:22 - 2021-06-22 23:22 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-06-22 23:22 - 2021-06-22 23:22 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-06-22 23:21 - 2021-06-22 23:21 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-22 23:21 - 2021-06-22 23:21 - 000011333 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-22 23:20 - 2021-06-22 23:20 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-06-22 23:20 - 2021-06-22 23:20 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-22 23:20 - 2021-06-22 23:20 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-22 23:20 - 2021-06-22 23:20 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-06-22 23:20 - 2021-06-22 23:20 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-06-21 22:02 - 2021-06-21 22:02 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-06-21 22:02 - 2021-06-21 22:02 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-06-15 16:16 - 2021-06-15 16:16 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2021-06-14 13:20 - 2021-06-14 13:21 - 041840176 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup (1).exe
2021-06-13 00:07 - 2021-06-13 00:07 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2(2).exe
2021-06-13 00:02 - 2021-06-13 00:08 - 000000000 ____D C:\Users\moi\Downloads\inc ca
2021-06-11 22:37 - 2021-06-11 22:39 - 047622883 _____ (Oleg N. Scherbakov) C:\Users\moi\Downloads\captvty-2.9.3.2-autoextract.exe
2021-06-10 10:35 - 2021-06-10 10:35 - 000711203 _____ C:\Users\moi\Downloads\Déclaration de sinistre .docx.pdf
2021-06-10 09:50 - 2021-06-10 09:50 - 000163095 _____ C:\Users\moi\Downloads\Déclaration de sinistre-LOYERS IMPAYES.docx.pdf
2021-06-09 16:48 - 2021-06-09 16:48 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2.exe
2021-06-09 13:06 - 2021-06-09 13:06 - 000366745 _____ C:\Users\moi\Downloads\AXA mutuelle pieces jointes_09_06_2021.zip
2021-06-09 12:25 - 2021-06-09 12:25 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-09 12:25 - 2021-06-09 12:25 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-08 20:55 - 2021-06-08 20:55 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-08 08:04 - 2021-06-08 08:04 - 000088906 _____ C:\Users\moi\Downloads\CANAL+ LETTRE CHANGEMENT DE CONFIGURATION AVEC CONTRAT - 2021-06-05.pdf
2021-06-05 23:02 - 2021-06-05 23:02 - 000001399 _____ C:\Users\Public\Desktop\Music Search MP3.lnk
2021-06-05 23:02 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL
2021-06-05 22:56 - 2021-06-05 23:02 - 000001255 _____ C:\Users\Public\Desktop\aTube Catcher.lnk
2021-06-05 22:56 - 2021-06-05 22:56 - 000000000 ____D C:\Program Files (x86)\DsNET Corp
2021-06-05 22:49 - 2021-06-25 01:44 - 000003502 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineUA
2021-06-05 22:49 - 2021-06-25 01:44 - 000003278 _____ C:\WINDOWS\system32\Tasks\Secure BrowserUpdateTaskMachineCore
2021-06-05 22:49 - 2021-06-07 00:20 - 000000000 ____D C:\Program Files (x86)\Secure Browser
2021-06-05 22:44 - 2021-06-05 22:44 - 026194208 _____ (DsNET Corp ) C:\Users\moi\Downloads\aTube_Catcher.exe
2021-06-04 19:38 - 2021-06-04 19:41 - 000030936 _____ C:\Users\moi\Downloads\Addition.txt
2021-06-04 19:34 - 2021-06-25 01:41 - 000000000 ____D C:\FRST
2021-06-04 17:52 - 2021-06-24 19:10 - 000000000 ____D C:\Users\moi\AppData\Roaming\ZHP
2021-06-03 13:41 - 2021-06-03 13:41 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-06-02 19:42 - 2021-06-02 19:42 - 000181124 _____ C:\Users\moi\Downloads\DG SwissLife Retraités .pdf
2021-05-27 16:34 - 2021-05-27 16:34 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-05-27 16:34 - 2021-05-27 16:34 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-05-27 16:34 - 2021-05-27 16:34 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-05-27 16:34 - 2021-05-27 16:34 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-05-27 16:32 - 2021-05-27 16:32 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-05-27 16:32 - 2021-05-27 16:32 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-05-27 16:32 - 2021-05-27 16:32 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-05-27 16:31 - 2021-05-27 16:31 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-05-27 16:31 - 2021-05-27 16:31 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-05-26 11:52 - 2021-06-25 01:44 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-26 11:52 - 2021-06-25 01:44 - 000003352 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-30 23:00 - 2021-04-30 23:00 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-04-30 22:59 - 2021-04-30 22:59 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-04-30 22:59 - 2021-04-30 22:59 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-04-30 22:57 - 2021-04-30 22:57 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-04-30 22:57 - 2021-04-30 22:57 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-04-22 13:20 - 2021-04-22 13:21 - 040488656 _____ (Adlice Software ) C:\Users\moi\Downloads\RogueKiller_setup.exe
2021-04-20 22:43 - 2021-04-20 22:43 - 008534696 _____ (Malwarebytes) C:\Users\moi\Downloads\adwcleaner_8.2(1).exe
2021-04-15 12:07 - 2021-04-15 12:07 - 000139003 _____ C:\Users\moi\Downloads\Analyse du 14 avril 2021.pdf
2021-04-14 13:22 - 2021-04-14 13:23 - 018044070 _____ C:\Users\moi\Downloads\Vidéo compressé.zip
2021-04-14 12:09 - 2021-04-14 12:09 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-07 18:14 - 2021-04-07 18:15 - 000000000 ____D C:\Users\moi\Downloads\Pfizer
2021-04-01 12:11 - 2021-04-01 12:11 - 000074483 _____ C:\Users\moi\Downloads\Attestation Renault Assurance logement.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-25 01:45 - 2018-03-27 16:23 - 000000000 ____D C:\Users\moi\AppData\Local\AVAST Software
2021-06-25 01:44 - 2020-08-06 11:13 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-25 01:44 - 2020-08-06 11:13 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-25 01:44 - 2020-07-27 18:46 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-06-25 01:44 - 2020-07-27 18:46 - 000002290 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-06-25 01:44 - 2020-06-01 23:20 - 000003768 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582719313
2021-06-25 01:44 - 2020-06-01 23:20 - 000003634 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1571582613
2021-06-25 01:44 - 2020-06-01 23:20 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-06-25 01:44 - 2020-06-01 23:20 - 000002906 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-7480761-4120596894-250065351-1000
2021-06-25 01:44 - 2020-06-01 23:20 - 000002804 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-06-25 01:44 - 2020-06-01 23:20 - 000002554 _____ C:\WINDOWS\system32\Tasks\RealDownloader Update Check
2021-06-25 01:44 - 2020-06-01 23:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-06-25 01:38 - 2014-10-29 12:43 - 000000000 ____D C:\Users\moi\Documents\1Fichiers Word
2021-06-25 01:25 - 2019-01-30 15:00 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-25 01:24 - 2020-01-30 23:29 - 000000000 ____D C:\Users\moi\AppData\LocalLow\Mozilla
2021-06-25 01:13 - 2020-07-27 18:46 - 000000000 ____D C:\Program Files\CCleaner
2021-06-25 01:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-25 01:10 - 2020-06-01 22:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-25 00:29 - 2020-07-22 14:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-06-25 00:28 - 2014-10-29 11:22 - 000000000 ____D C:\ProgramData\AVAST Software
2021-06-25 00:27 - 2020-06-01 23:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-25 00:26 - 2020-06-01 22:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-24 22:09 - 2020-06-01 21:33 - 000000000 ____D C:\Users\UpdatusUser.000
2021-06-24 22:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-24 22:08 - 2014-10-29 11:29 - 000000000 ____D C:\Users\moi\AppData\Roaming\SoftGrid Client
2021-06-24 18:24 - 2017-05-13 13:16 - 000000000 ____D C:\ProgramData\IObit
2021-06-24 11:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-24 11:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-24 10:52 - 2017-11-15 18:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-24 02:04 - 2017-05-03 17:54 - 000001039 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-06-24 02:04 - 2017-05-03 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-06-24 00:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-23 23:31 - 2014-10-29 11:14 - 000001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-06-23 01:54 - 2020-06-01 23:11 - 001924704 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-23 01:54 - 2019-12-07 16:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat
2021-06-23 01:54 - 2019-12-07 16:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat
2021-06-23 01:20 - 2014-10-29 11:05 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-06-23 00:11 - 2020-06-01 22:57 - 000388248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-06-23 00:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-22 23:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-21 22:02 - 2020-10-13 12:13 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-06-21 22:02 - 2020-07-22 14:29 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-06-21 22:02 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-06-21 22:01 - 2020-07-22 14:28 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-06-21 22:01 - 2020-07-22 14:28 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-06-21 12:26 - 2019-10-20 16:43 - 000001395 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-06-19 21:28 - 2020-08-06 11:13 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-19 12:35 - 2014-10-29 14:24 - 000000000 ____D C:\Users\moi\Documents\Articles scannés récents
2021-06-18 23:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-06-18 20:12 - 2021-02-19 22:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-06-18 01:48 - 2021-02-28 12:02 - 000002407 _____ C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-18 01:48 - 2020-02-03 18:45 - 000000000 ___RD C:\Users\moi\OneDrive
2021-06-11 22:42 - 2017-06-14 12:48 - 000000000 ____D C:\Users\moi\Desktop\Captvty
2021-06-10 17:33 - 2014-10-29 11:50 - 000000434 _____ C:\WINDOWS\BRWMARK.INI
2021-06-10 16:23 - 2015-08-05 16:19 - 000000000 ____D C:\Users\moi\AppData\Local\ElevatedDiagnostics
2021-06-10 08:33 - 2017-04-12 12:17 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-08 21:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-08 20:18 - 2014-10-29 12:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-08 20:11 - 2014-10-29 12:42 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-07 18:18 - 2020-06-01 21:33 - 000000000 ____D C:\Users\moi
2021-06-05 23:02 - 2020-02-07 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2021-06-04 17:52 - 2017-04-13 12:58 - 000000000 ____D C:\Users\moi\AppData\Local\ZHP
2021-06-01 12:55 - 2020-09-03 17:04 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-06-01 12:55 - 2020-09-03 17:04 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-05-27 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-05-26 12:01 - 2015-06-01 11:24 - 000000000 ____D C:\Program Files (x86)\Google
==================== Fichiers à la racine de certains dossiers ========
2014-11-06 16:13 - 2014-11-06 16:13 - 000003584 _____ () C:\Users\moi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-12-26 16:21 - 2019-12-26 16:21 - 000000017 _____ () C:\Users\moi\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2014-10-29 13:53 - 2014-10-29 13:53 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-29 11:04 - 2010-03-04 12:05 - 000758272 ____R (NVIDIA Corporation) C:\WINDOWS\system32\cohelper.dll
2020-01-15 13:01 - 2019-12-17 02:14 - 001359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2015-02-18 11:55 - 2015-02-18 11:55 - 007639952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2009-07-13 23:59 - 2009-07-14 03:41 - 004326912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2014-10-29 12:20 - 2012-08-21 23:01 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\OxpsConverter.exe
2015-02-11 12:29 - 2015-01-09 05:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll
2017-04-12 17:11 - 2016-03-24 00:40 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpGroupPolicyExtension.dll
2014-10-29 12:02 - 2012-04-26 07:34 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrmemptylst.exe
2014-10-29 15:15 - 2013-10-02 02:15 - 001057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2019-08-16 17:28 - 2019-07-13 10:14 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sipnotify.exe
2019-08-16 17:37 - 2018-08-16 04:18 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2014-10-29 12:15 - 2012-11-29 00:56 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wdfres.dll
2019-08-16 17:37 - 2019-04-09 16:52 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-29 13:53 - 2014-10-29 13:53 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-29 11:50 - 2007-12-13 23:16 - 000073728 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2.dll
2014-10-29 11:50 - 2007-12-13 23:16 - 000005120 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2L.dll
2014-10-29 11:50 - 2010-01-22 16:34 - 000003072 _____ (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2S.dll
2014-10-29 11:50 - 2010-02-05 12:42 - 000180224 _____ (Brother Industries, Ltd.) C:\WINDOWS\SysWOW64\BroSNMP.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000249856 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartCertificate.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000401408 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSecure2.dll
2020-02-07 18:40 - 2017-11-09 11:58 - 000440320 _____ (Dart Communications) C:\WINDOWS\SysWOW64\DartSock.dll
2021-06-05 23:02 - 2008-08-18 18:18 - 000077824 _____ (Fox Magic Software) C:\WINDOWS\SysWOW64\fmcodec.DLL
2014-10-29 13:59 - 2014-10-29 13:59 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsIntl.dll
2012-11-16 10:53 - 2012-11-16 10:53 - 000434176 _____ (The cURL library, hxxp://curl.haxx.se/) C:\WINDOWS\SysWOW64\libcurld.dll
2020-01-15 13:01 - 2019-12-17 02:00 - 001155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2014-10-29 11:50 - 2010-02-09 18:11 - 000217088 _____ (brother) C:\WINDOWS\SysWOW64\NSSearch.dll
2015-02-18 11:56 - 2015-02-18 11:56 - 006295288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2009-07-13 23:59 - 2009-07-14 03:41 - 003128320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-04-18 06:31 - 2014-04-18 06:31 - 000053299 _____ C:\WINDOWS\SysWOW64\pthreadVC.dll
2014-10-29 15:14 - 2012-08-23 13:12 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp_winip.dll
2014-10-29 15:15 - 2013-10-02 01:08 - 000855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2012-11-16 10:53 - 2012-11-16 10:53 - 000079360 _____ (GnuWin32
2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2018-02-11 16:51 - 2017-05-18 15:36 - 001352192 _____ C:\Users\moi\Desktop\EJmiB6N87eh_SFTGC.exe
2019-09-28 18:08 - 2019-09-28 18:11 - 132856894 _____ C:\Users\moi\Downloads\Apache_OpenOffice_4.1.7_Win_x86_install_fr.exe
2021-06-11 22:37 - 2021-06-11 22:39 - 047622883 _____ (Oleg N. Scherbakov) C:\Users\moi\Downloads\captvty-2.9.3.2-autoextract.exe
2021-06-25 01:38 - 2021-06-25 01:38 - 002300416 _____ (Farbar) C:\Users\moi\Downloads\FRST64.exe
2019-07-18 20:04 - 2019-07-18 19:23 - 017055510 _____ (Youtomato ) C:\Users\moi\Downloads\yt-downloader-setup.exe
2021-06-24 17:29 - 2021-06-24 17:29 - 003257496 _____ (Nicolas Coolman) C:\Users\moi\Downloads\ZHPCleaner.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {14721e42-5f49-11e4-8762-97596efeb681}
device ramdisk=[C:]\Recovery\14721e42-5f49-11e4-8762-97596efeb681\Winre.wim,{14721e43-5f49-11e4-8762-97596efeb681}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\14721e42-5f49-11e4-8762-97596efeb681\Winre.wim,{14721e43-5f49-11e4-8762-97596efeb681}
systemroot \windows
nx OptIn
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
truncatememory 0x200000000
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
nx OptIn
numproc 2
bootmenupolicy Standard
usefirmwarepcisettings No
Chargeur de d‚marrage Windows
-----------------------------
identificateur {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {a5c900e8-46a0-11ea-b5bb-b7eaa8c99bf7}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {a5c900eb-46a0-11ea-b5bb-b7eaa8c99bf7}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {14721e43-5f49-11e4-8762-97596efeb681}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\14721e42-5f49-11e4-8762-97596efeb681\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {a5c900ec-46a0-11ea-b5bb-b7eaa8c99bf7}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================