Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02
Exécuté par mon (administrateur) sur CMOH (MSI MS-7699) (23-09-2021 00:25:11)
Exécuté depuis C:\Users\mon\Desktop
Profils chargés: mon
Platform: Windows 7 Home Premium N Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <120>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Image-Line) [Fichier non signé] C:\Program Files (x86)\Image-Line\FL Studio 20BIS\FL64.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avpui.exe
(Learnpulse SAS -> Learnpulse) C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FXSSVC.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [Screenpresso] => C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [16882416 2021-08-06] (Learnpulse SAS -> Learnpulse)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-01-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\System32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP C611 Status Monitor: C:\Windows\System32\hpinkstsC611LM.dll [333344 2013-05-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 4630 series): C:\Windows\System32\HPDiscoPMC611.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-15] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\mon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk [2021-08-28]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 4630 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN444392490628;CONNECTION=USB;MONITOR=1;
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1C6D9B2F-328B-48D0-A159-FA6C4689838A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7347928 2017-02-08] (Piriform Ltd -> Piriform Ltd)
Task: {3D9D1CAD-DB54-4452-A14C-F88EC2E2A574} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3DECA236-2DC9-4C4C-A272-985DAEB80EFB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A1361C9-E6E8-4DB0-AE47-FD99117360B9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1542080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F13501B-52E4-4840-BD92-3910BE56F304} - System32\Tasks\HPCustPartic.exe_{ACBEDD4C-7C06-440E-BD2E-815121DA1076} => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {6B0343F2-51A0-4DD7-9581-63599FD11979} - System32\Tasks\AdobeAAMUpdater-1.0-mon-PC-mon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {713FA77D-D358-4171-B62D-ADD2F3F96696} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8207BC22-9C15-4517-BC40-73A58A8C07DA} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {86795BA1-D20B-415E-A519-EACDF05ADAE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)
Task: {8A07D386-7B37-4CDC-BD2B-2C704DA3EDED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [960448 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9392F29-310B-4A72-A6CD-EA2F26B84E48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4BB44D2-AE8A-48F6-A3CA-EC789039959A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6309AE2-57FD-419D-9855-898B776AC531} - System32\Tasks\HPCustParticipation HP Officejet 4630 series => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {DB6F9F29-95CC-449B-9738-0E1281C8D89F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)
Task: {EED40F34-2885-4818-B696-3BAE56CF9D92} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F244E365-3DF6-4F29-B02E-0AB0C6822311} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1D107173-5407-43E9-BB24-2E5FB493B098}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{A4983D26-298D-4536-A3F6-76300EC9D9F5}: [NameServer] 8.8.8.8,8.8.4.4
Edge:
=======
Edge Profile: C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-23]
Edge HomePage: Default -> hxxp://google/
Edge Extension: (Kaspersky Protection) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-29]
Edge Extension: (Kaspersky Protection 20.0) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-06-29]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
FireFox:
========
FF DefaultProfile: j4g180nl.default
FF ProfilePath: C:\Users\mon\AppData\Roaming\Mozilla\Firefox\Profiles\j4g180nl.default [2021-09-22]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-09-01] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-09-01] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default [2021-09-23]
CHR Notifications: Default -> hxxps://bricolage.linternaute.com; hxxps://digitalpainting.school; hxxps://drive.google.com; hxxps://forum-auto.caradisiac.com; hxxps://fr.aliexpress.com; hxxps://mail.google.com; hxxps://outlook.live.com; hxxps://web.whatsapp.com; hxxps://www.zbrushcentral.com
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01]
CHR Extension: (Dark Reader) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2021-09-21]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-10]
CHR Extension: (Video Speed Controller) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2021-08-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-12]
CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-26]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-12-19] (Autodesk, Inc. -> Autodesk Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [Fichier non signé]
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2021-04-08] (Shenzhen Moyea Software -> Leawo Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-06-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-03-01] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-29] (Malwarebytes Inc -> Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [118184 2018-05-14] (Alcorlink Corp. -> )
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [245752 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [283144 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [108600 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [216576 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S4 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbs64.sys [14848 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-11] (Malwarebytes Inc -> Malwarebytes)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corp.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 00:25 - 2021-09-23 00:28 - 000023748 _____ C:\Users\mon\Desktop\FRST.txt
2021-09-22 23:21 - 2021-09-23 00:26 - 000000000 ____D C:\FRST
2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe
2021-09-22 22:10 - 2021-09-22 22:10 - 000361077 _____ C:\Users\mon\Desktop\ZHPDiag.txt
2021-09-22 21:51 - 2021-09-22 21:51 - 000000000 ____D C:\Users\mon\AppData\Local\ZHP
2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe
2021-09-19 13:19 - 2021-09-20 12:35 - 000262144 ____H C:\Windows\MEMORY.DMP
2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ C:\Users\mon\AppData\Local\recently-used.xbel
2021-09-15 19:22 - 2021-09-15 19:22 - 000283144 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000245752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000216576 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000108600 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2021-09-07 23:18 - 2021-09-07 23:42 - 000000276 _____ C:\Users\mon\Desktop\MEMORY.txt
2021-08-27 00:52 - 2021-09-03 13:19 - 000000000 ____D C:\Users\mon\.dvdcss
2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ C:\Users\mon\AppData\Local\kritadisplayrc
2021-08-07 21:50 - 2021-08-07 21:50 - 000000000 ____D C:\Program Files (x86)\winmorphh
2021-08-06 03:20 - 2021-07-06 18:07 - 000493283 _____ C:\Users\mon\Downloads\High-profile-hat_Template.psd
2021-08-06 03:20 - 2021-07-06 18:07 - 000122159 _____ C:\Users\mon\Downloads\High-profile-hat_Template.ai
2021-08-06 01:18 - 2021-08-06 01:18 - 000000000 ____D C:\Users\mon\Downloads\Nouveau dossier (5)
2021-08-01 01:05 - 2021-08-01 01:05 - 000000000 _____ C:\Users\mon\Desktop\Nouveau document texte.txt
2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ C:\Users\mon\AppData\Roaming\PureRef.ini
2021-07-11 20:05 - 2021-07-11 20:05 - 000000000 ___RD C:\Users\mon\Documents\Scanned Documents
2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\ProgramData\Desktop\Kaspersky Password Manager.lnk
2021-07-08 21:40 - 2021-07-08 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2021-06-30 23:39 - 2021-09-20 02:50 - 000001484 _____ C:\Users\mon\Desktop\Installez Kaspersky VPN Secure Connection de version 21.3.10.391.lnk
2021-06-29 23:40 - 2021-06-29 23:40 - 000230441 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL (1).pdf
2021-06-29 23:10 - 2021-06-29 23:10 - 000198846 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 00:18 - 2017-01-10 17:31 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-22 22:10 - 2019-06-27 23:06 - 000000000 ____D C:\Users\mon\AppData\Roaming\ZHP
2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-09-22 12:25 - 2017-01-12 04:19 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-22 02:14 - 2019-02-02 03:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-09-18 22:28 - 2017-01-07 16:19 - 000000000 ____D C:\Users\mon
2021-09-18 02:45 - 2020-04-09 19:23 - 000000000 ____D C:\Users\mon\AppData\Roaming\Adobe
2021-09-18 02:45 - 2017-01-30 23:14 - 000000000 ____D C:\Users\mon\AppData\Local\Adobe
2021-09-17 12:52 - 2021-04-08 22:14 - 000000000 ____D C:\Users\mon\AppData\Roaming\vlc
2021-09-17 12:52 - 2019-12-10 01:03 - 000000000 ____D C:\Users\mon\Documents\My CamStudio Videos
2021-09-17 00:24 - 2020-06-26 13:38 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-09-15 22:12 - 2017-01-17 12:22 - 000000000 ____D C:\Windows\system32\MRT
2021-09-15 22:02 - 2017-01-17 12:22 - 135637312 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-09-15 02:17 - 2017-08-30 23:03 - 000000132 _____ C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs
2021-09-07 22:14 - 2018-02-19 00:21 - 000000757 _____ C:\Users\mon\Desktop\futurs achats.txt
2021-08-30 22:45 - 2017-01-12 20:53 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-28 19:33 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-26 21:47 - 2019-06-05 01:41 - 000000000 ____D C:\Users\mon\AppData\Roaming\dvdcss
2021-08-24 00:44 - 2020-12-27 02:58 - 000000000 ____D C:\Users\mon\Documents\KINGSIZEFIGS DOCUMENTATION
==================== Fichiers à la racine de certains dossiers ========
2020-12-03 03:51 - 2020-12-03 03:51 - 018398304 _____ (Learnpulse) C:\Users\mon\Screenpresso.exe
2021-04-08 22:16 - 2021-04-08 22:16 - 042585440 _____ () C:\Users\mon\vlc-3.0.12-win64.exe
2017-01-12 02:36 - 2018-09-30 20:02 - 000532184 _____ (Alexander Roshal) C:\Program Files (x86)\RarExt.dll
2021-03-29 00:05 - 2021-03-29 00:31 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe OpenEXR Format CS5 Prefs
2017-08-30 23:03 - 2021-09-15 02:17 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs
2018-04-02 00:56 - 2020-09-05 22:24 - 000065588 _____ () C:\Users\mon\AppData\Roaming\CamData.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000096 _____ () C:\Users\mon\AppData\Roaming\CamData.ini.BackupByCamStudioPortable
2018-04-02 00:56 - 2020-09-05 22:24 - 000135089 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini.BackupByCamStudioPortable
2018-04-02 00:56 - 2020-09-05 22:24 - 002274213 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini.BackupByCamStudioPortable
2018-04-01 23:03 - 2020-09-05 22:24 - 000004538 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg
2018-04-01 23:03 - 2018-04-05 19:06 - 000004522 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg.BackupByCamStudioPortable
2018-04-08 09:12 - 2018-04-08 09:12 - 000006927 _____ () C:\Users\mon\AppData\Roaming\CamStudio.ini
2018-04-08 09:12 - 2013-02-07 07:20 - 000000000 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.Data.ini
2018-04-08 09:12 - 2013-02-07 07:20 - 000001206 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.ini
2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ () C:\Users\mon\AppData\Roaming\PureRef.ini
2018-04-08 09:12 - 2020-09-05 22:24 - 000000096 _____ () C:\Users\mon\AppData\Roaming\version2.xml
2017-08-25 23:37 - 2020-05-07 23:04 - 000001456 _____ () C:\Users\mon\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2017-01-10 17:36 - 2017-01-10 17:36 - 000000036 _____ () C:\Users\mon\AppData\Local\housecall.guid.cache
2021-02-07 20:01 - 2021-02-07 20:01 - 000000356 _____ () C:\Users\mon\AppData\Local\karboncalligraphyrc
2019-05-16 02:19 - 2019-05-16 02:40 - 000003394 _____ () C:\Users\mon\AppData\Local\kdenliverc
2021-01-12 01:21 - 2021-01-12 01:21 - 000000037 _____ () C:\Users\mon\AppData\Local\klanguageoverridesrc
2021-01-11 22:04 - 2021-08-07 22:08 - 000002586 _____ () C:\Users\mon\AppData\Local\krita-sysinfo.log
2021-01-11 22:04 - 2021-08-07 22:15 - 000158955 _____ () C:\Users\mon\AppData\Local\krita.log
2021-02-07 20:07 - 2021-02-07 20:09 - 000002959 _____ () C:\Users\mon\AppData\Local\kritacrash.log
2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ () C:\Users\mon\AppData\Local\kritadisplayrc
2021-01-11 22:04 - 2021-08-07 22:15 - 000031604 _____ () C:\Users\mon\AppData\Local\kritarc
2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ () C:\Users\mon\AppData\Local\recently-used.xbel
2017-01-07 17:53 - 2017-01-07 17:53 - 000000017 _____ () C:\Users\mon\AppData\Local\resmon.resmoncfg
2019-05-16 02:19 - 2019-05-16 02:19 - 000000533 _____ () C:\Users\mon\AppData\Local\user-places.xbel
2019-05-16 02:19 - 2019-05-16 02:19 - 000000000 _____ () C:\Users\mon\AppData\Local\user-places.xbel.tbcache
==================== FLock ==============================
2021-09-20 12:35 C:\Windows\MEMORY.DMP
==================== SigCheckExt =========================
2012-05-04 16:37 - 2012-05-04 16:37 - 016209920 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2012-05-04 16:38 - 2012-05-04 16:38 - 000074240 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000061952 _____ C:\Windows\system32\OVDecode64.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 000146432 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerAg.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 003507712 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerBe.dll
2012-05-04 16:36 - 2012-05-04 16:36 - 012992000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2019-11-13 21:03 - 2006-04-30 06:33 - 000053248 _____ () C:\Windows\SysWOW64\CommonDL.dll
2006-02-28 13:41 - 2006-02-28 13:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe
2006-02-28 13:41 - 2006-02-28 13:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll
2017-01-12 02:00 - 2006-05-03 21:14 - 000372736 _____ (Intel Corporation) C:\Windows\SysWOW64\ijl15.dll
2019-05-16 01:18 - 2015-02-27 11:33 - 000244776 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgaout.dll
2019-05-16 01:18 - 2015-02-27 11:33 - 000020520 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgvout.dll
2019-11-13 21:03 - 2011-05-06 11:37 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcm90.dll
2019-11-13 21:03 - 2005-09-29 23:39 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2003-04-18 16:29 - 2003-04-18 16:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000064000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000054784 _____ C:\Windows\SysWOW64\OVDecode.dll
2019-01-06 23:46 - 2006-06-20 10:56 - 000225280 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 000122880 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerAg.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 002463744 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerBe.dll
2013-09-18 13:17 - 2013-09-18 13:17 - 000234496 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec32.dll
2013-09-18 13:18 - 2013-09-18 13:18 - 000270848 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec64.dll
2013-11-26 09:41 - 2013-11-26 09:41 - 000602624 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid.dll
2013-11-26 09:41 - 2013-11-26 09:41 - 000630272 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid64.dll
2007-04-03 06:31 - 2007-04-03 06:31 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL
2007-04-03 06:31 - 2007-04-03 06:31 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE
2007-04-03 06:31 - 2007-04-03 06:31 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE
2017-01-12 02:00 - 2006-05-03 21:13 - 000119568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6fr.DLL
2021-04-08 23:17 - 2019-12-16 14:08 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmasf.dll
2021-04-08 23:17 - 2019-12-16 14:08 - 002330624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvcore.dll
2020-11-01 21:10 - 2020-11-01 21:11 - 012939302 _____ (POS-X ) C:\Users\Invité\Downloads\Thermal_Printer_Drivers_4.57.exe
2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe
2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=C:
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale fr-FR
inherit {bootloadersettings}
recoverysequence {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
nx OptIn
Chargeur de d‚marrage Windows
-----------------------------
identificateur {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17}
device ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
systemroot \windows
nx OptIn
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems Yes
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\boot.sdi
LastRegBack: 2021-04-20 04:26
==================== Fin de FRST.txt ========================
Exécuté par mon (administrateur) sur CMOH (MSI MS-7699) (23-09-2021 00:25:11)
Exécuté depuis C:\Users\mon\Desktop
Profils chargés: mon
Platform: Windows 7 Home Premium N Service Pack 1 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <120>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Image-Line) [Fichier non signé] C:\Program Files (x86)\Image-Line\FL Studio 20BIS\FL64.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avpui.exe
(Learnpulse SAS -> Learnpulse) C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FXSSVC.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [Screenpresso] => C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [16882416 2021-08-06] (Learnpulse SAS -> Learnpulse)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-01-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\System32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP C611 Status Monitor: C:\Windows\System32\hpinkstsC611LM.dll [333344 2013-05-06] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 4630 series): C:\Windows\System32\HPDiscoPMC611.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-15] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\mon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk [2021-08-28]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 4630 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN444392490628;CONNECTION=USB;MONITOR=1;
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1C6D9B2F-328B-48D0-A159-FA6C4689838A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7347928 2017-02-08] (Piriform Ltd -> Piriform Ltd)
Task: {3D9D1CAD-DB54-4452-A14C-F88EC2E2A574} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3DECA236-2DC9-4C4C-A272-985DAEB80EFB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A1361C9-E6E8-4DB0-AE47-FD99117360B9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1542080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F13501B-52E4-4840-BD92-3910BE56F304} - System32\Tasks\HPCustPartic.exe_{ACBEDD4C-7C06-440E-BD2E-815121DA1076} => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {6B0343F2-51A0-4DD7-9581-63599FD11979} - System32\Tasks\AdobeAAMUpdater-1.0-mon-PC-mon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {713FA77D-D358-4171-B62D-ADD2F3F96696} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8207BC22-9C15-4517-BC40-73A58A8C07DA} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {86795BA1-D20B-415E-A519-EACDF05ADAE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)
Task: {8A07D386-7B37-4CDC-BD2B-2C704DA3EDED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [960448 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9392F29-310B-4A72-A6CD-EA2F26B84E48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4BB44D2-AE8A-48F6-A3CA-EC789039959A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6309AE2-57FD-419D-9855-898B776AC531} - System32\Tasks\HPCustParticipation HP Officejet 4630 series => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP)
Task: {DB6F9F29-95CC-449B-9738-0E1281C8D89F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)
Task: {EED40F34-2885-4818-B696-3BAE56CF9D92} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F244E365-3DF6-4F29-B02E-0AB0C6822311} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1D107173-5407-43E9-BB24-2E5FB493B098}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{A4983D26-298D-4536-A3F6-76300EC9D9F5}: [NameServer] 8.8.8.8,8.8.4.4
Edge:
=======
Edge Profile: C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-23]
Edge HomePage: Default -> hxxp://google/
Edge Extension: (Kaspersky Protection) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-29]
Edge Extension: (Kaspersky Protection 20.0) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-06-29]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk]
FireFox:
========
FF DefaultProfile: j4g180nl.default
FF ProfilePath: C:\Users\mon\AppData\Roaming\Mozilla\Firefox\Profiles\j4g180nl.default [2021-09-22]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-09-01] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-09-01] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default [2021-09-23]
CHR Notifications: Default -> hxxps://bricolage.linternaute.com; hxxps://digitalpainting.school; hxxps://drive.google.com; hxxps://forum-auto.caradisiac.com; hxxps://fr.aliexpress.com; hxxps://mail.google.com; hxxps://outlook.live.com; hxxps://web.whatsapp.com; hxxps://www.zbrushcentral.com
CHR Session Restore: Default -> est activé.
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01]
CHR Extension: (Dark Reader) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2021-09-21]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-10]
CHR Extension: (Video Speed Controller) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2021-08-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-12]
CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-26]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-12-19] (Autodesk, Inc. -> Autodesk Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [Fichier non signé]
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2021-04-08] (Shenzhen Moyea Software -> Leawo Software)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-06-08] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-03-01] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-29] (Malwarebytes Inc -> Malwarebytes)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [118184 2018-05-14] (Alcorlink Corp. -> )
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [245752 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [283144 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [108600 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [216576 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S4 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbs64.sys [14848 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-11] (Malwarebytes Inc -> Malwarebytes)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corp.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 00:25 - 2021-09-23 00:28 - 000023748 _____ C:\Users\mon\Desktop\FRST.txt
2021-09-22 23:21 - 2021-09-23 00:26 - 000000000 ____D C:\FRST
2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe
2021-09-22 22:10 - 2021-09-22 22:10 - 000361077 _____ C:\Users\mon\Desktop\ZHPDiag.txt
2021-09-22 21:51 - 2021-09-22 21:51 - 000000000 ____D C:\Users\mon\AppData\Local\ZHP
2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe
2021-09-19 13:19 - 2021-09-20 12:35 - 000262144 ____H C:\Windows\MEMORY.DMP
2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ C:\Users\mon\AppData\Local\recently-used.xbel
2021-09-15 19:22 - 2021-09-15 19:22 - 000283144 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000245752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000216576 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2021-09-15 19:21 - 2021-09-15 19:21 - 000108600 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2021-09-07 23:18 - 2021-09-07 23:42 - 000000276 _____ C:\Users\mon\Desktop\MEMORY.txt
2021-08-27 00:52 - 2021-09-03 13:19 - 000000000 ____D C:\Users\mon\.dvdcss
2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ C:\Users\mon\AppData\Local\kritadisplayrc
2021-08-07 21:50 - 2021-08-07 21:50 - 000000000 ____D C:\Program Files (x86)\winmorphh
2021-08-06 03:20 - 2021-07-06 18:07 - 000493283 _____ C:\Users\mon\Downloads\High-profile-hat_Template.psd
2021-08-06 03:20 - 2021-07-06 18:07 - 000122159 _____ C:\Users\mon\Downloads\High-profile-hat_Template.ai
2021-08-06 01:18 - 2021-08-06 01:18 - 000000000 ____D C:\Users\mon\Downloads\Nouveau dossier (5)
2021-08-01 01:05 - 2021-08-01 01:05 - 000000000 _____ C:\Users\mon\Desktop\Nouveau document texte.txt
2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ C:\Users\mon\AppData\Roaming\PureRef.ini
2021-07-11 20:05 - 2021-07-11 20:05 - 000000000 ___RD C:\Users\mon\Documents\Scanned Documents
2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk
2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\ProgramData\Desktop\Kaspersky Password Manager.lnk
2021-07-08 21:40 - 2021-07-08 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2021-06-30 23:39 - 2021-09-20 02:50 - 000001484 _____ C:\Users\mon\Desktop\Installez Kaspersky VPN Secure Connection de version 21.3.10.391.lnk
2021-06-29 23:40 - 2021-06-29 23:40 - 000230441 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL (1).pdf
2021-06-29 23:10 - 2021-06-29 23:10 - 000198846 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-09-23 00:18 - 2017-01-10 17:31 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-22 22:10 - 2019-06-27 23:06 - 000000000 ____D C:\Users\mon\AppData\Roaming\ZHP
2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-09-22 12:25 - 2017-01-12 04:19 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-22 02:14 - 2019-02-02 03:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-09-18 22:28 - 2017-01-07 16:19 - 000000000 ____D C:\Users\mon
2021-09-18 02:45 - 2020-04-09 19:23 - 000000000 ____D C:\Users\mon\AppData\Roaming\Adobe
2021-09-18 02:45 - 2017-01-30 23:14 - 000000000 ____D C:\Users\mon\AppData\Local\Adobe
2021-09-17 12:52 - 2021-04-08 22:14 - 000000000 ____D C:\Users\mon\AppData\Roaming\vlc
2021-09-17 12:52 - 2019-12-10 01:03 - 000000000 ____D C:\Users\mon\Documents\My CamStudio Videos
2021-09-17 00:24 - 2020-06-26 13:38 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-09-15 22:12 - 2017-01-17 12:22 - 000000000 ____D C:\Windows\system32\MRT
2021-09-15 22:02 - 2017-01-17 12:22 - 135637312 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-09-15 02:17 - 2017-08-30 23:03 - 000000132 _____ C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs
2021-09-07 22:14 - 2018-02-19 00:21 - 000000757 _____ C:\Users\mon\Desktop\futurs achats.txt
2021-08-30 22:45 - 2017-01-12 20:53 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-08-28 19:33 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-26 21:47 - 2019-06-05 01:41 - 000000000 ____D C:\Users\mon\AppData\Roaming\dvdcss
2021-08-24 00:44 - 2020-12-27 02:58 - 000000000 ____D C:\Users\mon\Documents\KINGSIZEFIGS DOCUMENTATION
==================== Fichiers à la racine de certains dossiers ========
2020-12-03 03:51 - 2020-12-03 03:51 - 018398304 _____ (Learnpulse) C:\Users\mon\Screenpresso.exe
2021-04-08 22:16 - 2021-04-08 22:16 - 042585440 _____ () C:\Users\mon\vlc-3.0.12-win64.exe
2017-01-12 02:36 - 2018-09-30 20:02 - 000532184 _____ (Alexander Roshal) C:\Program Files (x86)\RarExt.dll
2021-03-29 00:05 - 2021-03-29 00:31 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe OpenEXR Format CS5 Prefs
2017-08-30 23:03 - 2021-09-15 02:17 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs
2018-04-02 00:56 - 2020-09-05 22:24 - 000065588 _____ () C:\Users\mon\AppData\Roaming\CamData.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000096 _____ () C:\Users\mon\AppData\Roaming\CamData.ini.BackupByCamStudioPortable
2018-04-02 00:56 - 2020-09-05 22:24 - 000135089 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini.BackupByCamStudioPortable
2018-04-02 00:56 - 2020-09-05 22:24 - 002274213 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini
2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini.BackupByCamStudioPortable
2018-04-01 23:03 - 2020-09-05 22:24 - 000004538 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg
2018-04-01 23:03 - 2018-04-05 19:06 - 000004522 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg.BackupByCamStudioPortable
2018-04-08 09:12 - 2018-04-08 09:12 - 000006927 _____ () C:\Users\mon\AppData\Roaming\CamStudio.ini
2018-04-08 09:12 - 2013-02-07 07:20 - 000000000 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.Data.ini
2018-04-08 09:12 - 2013-02-07 07:20 - 000001206 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.ini
2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ () C:\Users\mon\AppData\Roaming\PureRef.ini
2018-04-08 09:12 - 2020-09-05 22:24 - 000000096 _____ () C:\Users\mon\AppData\Roaming\version2.xml
2017-08-25 23:37 - 2020-05-07 23:04 - 000001456 _____ () C:\Users\mon\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs
2017-01-10 17:36 - 2017-01-10 17:36 - 000000036 _____ () C:\Users\mon\AppData\Local\housecall.guid.cache
2021-02-07 20:01 - 2021-02-07 20:01 - 000000356 _____ () C:\Users\mon\AppData\Local\karboncalligraphyrc
2019-05-16 02:19 - 2019-05-16 02:40 - 000003394 _____ () C:\Users\mon\AppData\Local\kdenliverc
2021-01-12 01:21 - 2021-01-12 01:21 - 000000037 _____ () C:\Users\mon\AppData\Local\klanguageoverridesrc
2021-01-11 22:04 - 2021-08-07 22:08 - 000002586 _____ () C:\Users\mon\AppData\Local\krita-sysinfo.log
2021-01-11 22:04 - 2021-08-07 22:15 - 000158955 _____ () C:\Users\mon\AppData\Local\krita.log
2021-02-07 20:07 - 2021-02-07 20:09 - 000002959 _____ () C:\Users\mon\AppData\Local\kritacrash.log
2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ () C:\Users\mon\AppData\Local\kritadisplayrc
2021-01-11 22:04 - 2021-08-07 22:15 - 000031604 _____ () C:\Users\mon\AppData\Local\kritarc
2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ () C:\Users\mon\AppData\Local\recently-used.xbel
2017-01-07 17:53 - 2017-01-07 17:53 - 000000017 _____ () C:\Users\mon\AppData\Local\resmon.resmoncfg
2019-05-16 02:19 - 2019-05-16 02:19 - 000000533 _____ () C:\Users\mon\AppData\Local\user-places.xbel
2019-05-16 02:19 - 2019-05-16 02:19 - 000000000 _____ () C:\Users\mon\AppData\Local\user-places.xbel.tbcache
==================== FLock ==============================
2021-09-20 12:35 C:\Windows\MEMORY.DMP
==================== SigCheckExt =========================
2012-05-04 16:37 - 2012-05-04 16:37 - 016209920 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2012-05-04 16:38 - 2012-05-04 16:38 - 000074240 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000061952 _____ C:\Windows\system32\OVDecode64.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 000146432 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerAg.dll
2011-11-15 19:58 - 2011-11-15 19:58 - 003507712 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerBe.dll
2012-05-04 16:36 - 2012-05-04 16:36 - 012992000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2019-11-13 21:03 - 2006-04-30 06:33 - 000053248 _____ () C:\Windows\SysWOW64\CommonDL.dll
2006-02-28 13:41 - 2006-02-28 13:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe
2006-02-28 13:41 - 2006-02-28 13:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll
2017-01-12 02:00 - 2006-05-03 21:14 - 000372736 _____ (Intel Corporation) C:\Windows\SysWOW64\ijl15.dll
2019-05-16 01:18 - 2015-02-27 11:33 - 000244776 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgaout.dll
2019-05-16 01:18 - 2015-02-27 11:33 - 000020520 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgvout.dll
2019-11-13 21:03 - 2011-05-06 11:37 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcm90.dll
2019-11-13 21:03 - 2005-09-29 23:39 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2003-04-18 16:29 - 2003-04-18 16:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000064000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2012-05-04 16:37 - 2012-05-04 16:37 - 000054784 _____ C:\Windows\SysWOW64\OVDecode.dll
2019-01-06 23:46 - 2006-06-20 10:56 - 000225280 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 000122880 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerAg.dll
2011-11-15 19:57 - 2011-11-15 19:57 - 002463744 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerBe.dll
2013-09-18 13:17 - 2013-09-18 13:17 - 000234496 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec32.dll
2013-09-18 13:18 - 2013-09-18 13:18 - 000270848 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec64.dll
2013-11-26 09:41 - 2013-11-26 09:41 - 000602624 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid.dll
2013-11-26 09:41 - 2013-11-26 09:41 - 000630272 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid64.dll
2007-04-03 06:31 - 2007-04-03 06:31 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL
2007-04-03 06:31 - 2007-04-03 06:31 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE
2007-04-03 06:31 - 2007-04-03 06:31 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE
2017-01-12 02:00 - 2006-05-03 21:13 - 000119568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6fr.DLL
2021-04-08 23:17 - 2019-12-16 14:08 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmasf.dll
2021-04-08 23:17 - 2019-12-16 14:08 - 002330624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvcore.dll
2020-11-01 21:10 - 2020-11-01 21:11 - 012939302 _____ (POS-X ) C:\Users\Invité\Downloads\Thermal_Printer_Drivers_4.57.exe
2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe
2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=C:
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale fr-FR
inherit {bootloadersettings}
recoverysequence {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
nx OptIn
Chargeur de d‚marrage Windows
-----------------------------
identificateur {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17}
device ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
systemroot \windows
nx OptIn
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems Yes
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\boot.sdi
LastRegBack: 2021-04-20 04:26
==================== Fin de FRST.txt ========================