Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2022
Exécuté par azarel (administrateur) sur DESKTOP-0D0E4U1 (Dell Inc. Inspiron 3671) (17-01-2022 20:53:43)
Exécuté depuis C:\Users\azare\Desktop
Profils chargés: azarel
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1466 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\Hide.me.exe
(eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\FOXIT READER\FoxitPDFReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Icecream Apps Ltd -> ) C:\Program Files (x86)\Icecream Password Manager\PasswordManager.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ffb22091d2be88a5\IntelCpHDCPSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ffb22091d2be88a5\IntelCpHeciSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe <3>
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_444d52e511fbcc11\WavesSysSvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe [1257032 2021-04-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_444d52e511fbcc11\WavesSvc64.exe [1237696 2020-12-06] (Waves Inc -> Waves Audio Ltd.)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [Icecream Password Manager] => C:\Program Files (x86)\Icecream Password Manager\PasswordManager.exe [3272888 2017-07-11] (Icecream Apps Ltd -> )
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {b266e75d-6afc-11ec-9cf4-1cbfc0dabb9a} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {baa8d931-9aed-11eb-9c96-1cbfc0dabb99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {fd55947c-ff40-11eb-9ce5-1cbfc0dabb9a} - "G:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
Startup: C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2022-01-17]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited -> eVenture Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {38517122-7F6B-45AD-8DE5-C434BABA136B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3E3FA4C6-B5E9-41DE-A45E-F93510755FD8} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.)
Task: {40501CB4-D631-4304-AE89-19484E41CA37} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {43BD3438-CDA9-4724-AFE7-93A9F55E5367} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CA0E64C-D11C-4BB7-873B-464C3D739C4D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {7352CBE2-22BE-4EED-8E23-2D2E3C72F74C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {7388C684-1A25-44BC-9FCF-C8ABADE0023C} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files\Privazer\PrivaZer.exe [20013672 2021-05-28] (Goversoft LLC -> Goversoft LLC)
Task: {81BD7FC4-CE05-4450-9EDE-C50930779B28} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-14] (Google LLC -> Google LLC)
Task: {85D1C997-EC3F-40B5-B3CD-67FDFE3623C2} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-03] () [Fichier non signé]
Task: {B1AA8537-9A8E-4C4D-A503-5439393A9C5E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4492B69-93DA-4AC9-B87B-FFFF33701ECA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE345525-56E3-4BFE-9F86-577F8C5AE73F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-14] (Google LLC -> Google LLC)
Task: {D2C37F80-ECB5-4157-BC7D-B2D4FFD305B7} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-722883505-1132220754-2834591752-500 => C:\Users\azare\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {D99B8126-FF1B-431B-8E52-677E5B6CC11C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {E760B3B6-FD65-4F4F-B741-6EB54C3560C6} - System32\Tasks\CCleanerSkipUAC - azarel => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01163fae-29cc-491f-9710-92507b2e144d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{649a347d-aac2-4b2e-8242-5016c861ab22}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\azare\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-17]
FireFox:
========
FF DefaultProfile: w68a78ww.default
FF ProfilePath: C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\w68a78ww.default [2020-10-10]
FF ProfilePath: C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release [2022-01-17]
FF DownloadDir: D:\Telechargements
FF Homepage: Mozilla\Firefox\Profiles\oxijg93b.default-release -> hxxps://www.google.com/
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Disabled: newtaboverride@agenedia.com
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: firefox-webext@zenmate.com
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Ant Video downloader) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\anttoolbar@ant.com.xpi [2022-01-17]
FF Extension: (Default Bookmark Folder) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\default-bookmark-folder@gustiaux.com.xpi [2021-01-28]
FF Extension: (ZenMate VPN Gratuit – Meilleur VPN) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\firefox-webext@zenmate.com.xpi [2021-03-16]
FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-01-04]
FF Extension: (New Tab Override) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\newtaboverride@agenedia.com.xpi [2021-05-26]
FF Extension: (Video DownloadHelper) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-01]
FF Extension: (DownThemAll!) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2021-11-23]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default [2022-01-17]
CHR Extension: (Slides) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-14]
CHR Extension: (Docs) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-14]
CHR Extension: (Google Drive) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (YouTube) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-14]
CHR Extension: (Sheets) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-12-13]
CHR Extension: (DownThemAll!) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\nljkibfhlpcnanjgbnlnbjecgicbjkge [2021-12-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-09]
CHR Extension: (Gmail) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [50888 2021-06-24] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-09-29] (Dell Inc -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> )
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT READER\FoxitPDFReaderUpdateService.exe [2363000 2021-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [179024 2021-10-08] (eVenture Limited -> eVenture Limited)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-11-08] (Huawei Technologies Co., Ltd. -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.)
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2020-10-23] (Reason Software Company Inc. -> Reason Software Company Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 hideFirewall; C:\WINDOWS\System32\drivers\hideFirewall.sys [100352 2021-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKslf6b44c75; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3D6C7F41-34C5-434B-9980-28EF46229760}\MpKslDrv.sys [134376 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-17 20:53 - 2022-01-17 20:54 - 000023338 _____ C:\Users\azare\Desktop\FRST.txt
2022-01-17 20:52 - 2022-01-17 20:52 - 000000000 _____ C:\Users\azare\Desktop\ZHPSuite.exe
2022-01-17 20:51 - 2022-01-17 20:54 - 000000000 ____D C:\FRST
2022-01-17 18:55 - 2022-01-17 18:54 - 002311680 _____ (Farbar) C:\Users\azare\Desktop\FRST64.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-14 20:51 - 2022-01-14 20:51 - 000000000 ___HD C:\$WinREAgent
2022-01-13 07:24 - 2022-01-13 07:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-13 07:23 - 2022-01-13 07:23 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-13 07:19 - 2022-01-13 07:19 - 000029680 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2022-01-10 18:49 - 2022-01-10 18:49 - 000002327 _____ C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov.lnk
2022-01-10 18:49 - 2022-01-10 18:49 - 000000000 ____D C:\Users\azare\AppData\Local\molotov-updater
2022-01-08 23:18 - 2022-01-08 23:18 - 000001339 _____ C:\Users\azare\Desktop\virus.txt
2022-01-02 14:43 - 2022-01-02 14:43 - 000000000 ____D C:\Users\azare\Documents\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 15:05 - 000000000 ____D C:\Program Files\Common Files\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\Users\azare\AppData\Local\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\Program Files\Aiseesoft Studio
2022-01-02 14:37 - 2022-01-02 14:37 - 001753088 _____ ( ) C:\Users\azare\Downloads\mobiesync.exe
2022-01-01 22:57 - 2022-01-04 23:15 - 000000137 _____ C:\Users\azare\Desktop\DesktopSnowOK.ini
2022-01-01 22:57 - 2022-01-01 22:57 - 000000000 ____D C:\Users\azare\AppData\Roaming\DesktopSnowOK
2022-01-01 22:57 - 2021-12-19 09:20 - 000211264 _____ (Nenad Hrg (SoftwareOK.com)) C:\Users\azare\Desktop\DesktopSnowOK.exe
2021-12-25 10:07 - 2021-12-25 10:07 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2021-12-19 23:53 - 2021-12-23 22:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-17 01:08 - 2021-12-17 01:08 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-16 22:49 - 2021-12-16 22:49 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-16 22:48 - 2021-12-16 22:48 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-16 22:48 - 2021-12-16 22:48 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-15 19:12 - 2021-12-15 19:12 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-12-13 11:46 - 2021-12-13 11:46 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - azarel
2021-12-06 11:18 - 2021-12-06 11:18 - 000000000 ____D C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite
2021-12-06 11:18 - 2021-11-08 02:20 - 000287232 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbnet.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000226560 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbmdm.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000127360 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_cdcacm.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000116864 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_usbdev.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000018944 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbccgpfilter.sys
2021-12-06 11:17 - 2021-12-06 11:18 - 000000000 ____D C:\Program Files (x86)\HiSuite
2021-11-18 22:36 - 2021-11-18 22:36 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2021-11-14 22:33 - 2021-11-14 22:33 - 000000000 ____D C:\WINDOWS\{2F366A08-5179-4948-A3AD-CB3F835A5AD5}
2021-11-11 19:27 - 2021-11-11 19:27 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 18:23 - 2021-11-11 18:23 - 000000000 ____D C:\Program Files\Rivet Networks
2021-11-08 02:20 - 2021-11-08 02:20 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2021-11-06 18:55 - 2021-11-06 18:55 - 000003166 _____ C:\WINDOWS\system32\Tasks\PrivaZer_SkipUAC
2021-10-31 08:28 - 2021-10-31 08:28 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-31 08:28 - 2021-10-31 08:28 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-29 11:15 - 2021-12-06 23:22 - 000000000 _____ C:\Users\azare\Desktop\Nouveau document texte.txt
2021-10-29 10:28 - 2021-10-29 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-10-29 10:28 - 2021-10-29 10:28 - 000000000 ____D C:\Program Files\VS Revo Group
2021-10-26 22:06 - 2021-10-29 08:55 - 000000000 ____D C:\Users\azare\.Icecream Password Manager
2021-10-26 21:59 - 2021-10-26 21:59 - 000001254 _____ C:\Users\Public\Desktop\Icecream Password Manager.lnk
2021-10-26 21:59 - 2021-10-26 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Password Manager
2021-10-26 21:59 - 2021-10-26 21:59 - 000000000 ____D C:\Program Files (x86)\Icecream Password Manager
2021-10-26 21:50 - 2021-10-26 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-10-26 21:49 - 2021-10-26 21:50 - 000000000 ____D C:\Program Files (x86)\FOXIT READER
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-17 20:44 - 2020-10-10 15:01 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-17 20:43 - 2020-10-10 15:02 - 000000000 ____D C:\Users\azare\AppData\LocalLow\Mozilla
2022-01-17 20:42 - 2021-03-24 23:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-17 20:42 - 2021-02-27 18:46 - 000000000 ____D C:\Users\azare\AppData\Roaming\Hide.me
2022-01-17 20:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-17 20:09 - 2020-07-16 07:40 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2022-01-17 20:06 - 2020-10-14 20:43 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-17 20:02 - 2020-06-14 04:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-01-17 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-17 19:56 - 2021-03-24 23:16 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-17 19:56 - 2019-12-07 15:49 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-17 19:56 - 2019-12-07 15:49 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-17 19:56 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-17 19:54 - 2020-10-10 15:09 - 000000000 ____D C:\Program Files\CCleaner
2022-01-17 19:54 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-17 19:52 - 2021-10-02 15:32 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-17 19:52 - 2021-03-24 23:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-17 19:52 - 2020-10-18 08:03 - 000000000 ____D C:\ProgramData\Avast Software
2022-01-17 19:52 - 2020-07-16 07:32 - 000000000 ____D C:\Intel
2022-01-17 19:51 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2022-01-17 19:19 - 2021-07-14 21:41 - 000000000 ____D C:\Users\azare\AppData\Local\PrivaZer
2022-01-17 18:31 - 2020-12-12 17:59 - 000000000 ____D C:\Users\azare\AppData\Roaming\MPC-HC
2022-01-17 18:31 - 2020-10-14 20:58 - 000000000 ____D C:\Users\azare\AppData\Local\CrashDumps
2022-01-17 18:17 - 2020-10-10 15:37 - 000000000 ____D C:\Users\azare\AppData\Roaming\vlc
2022-01-16 14:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-15 12:56 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-15 12:11 - 2020-10-26 08:42 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 00:22 - 2021-10-02 15:32 - 000629032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-15 00:21 - 2021-03-24 20:31 - 000000000 ____D C:\Users\azare
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-14 20:57 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-14 20:50 - 2020-10-10 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-14 20:48 - 2020-10-10 15:30 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-13 10:02 - 2020-10-14 20:41 - 000000000 ____D C:\Users\azare\AppData\Local\Adobe
2022-01-10 18:56 - 2020-10-26 09:10 - 000000000 ____D C:\Users\azare\AppData\Roaming\Molotov
2022-01-10 18:49 - 2020-10-26 09:10 - 000000000 ____D C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2022-01-07 10:16 - 2020-10-14 20:43 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-02 11:59 - 2021-04-12 08:15 - 000000000 ____D C:\Users\azare\Documents\HiSuite
2021-12-25 10:07 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-12-23 22:25 - 2020-10-10 15:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-22 22:16 - 2021-10-12 10:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-22 22:16 - 2020-10-10 15:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
==================== Fichiers à la racine de certains dossiers ========
2021-09-03 14:33 - 2021-08-25 09:53 - 000000006 _____ () C:\Users\azare\AppData\Roaming\pmfirst.ini
2021-09-03 14:33 - 2021-09-03 14:33 - 000000004 _____ () C:\Users\azare\AppData\Roaming\pmlan.ini
2021-09-03 14:33 - 2020-07-27 08:35 - 000000008 _____ () C:\Users\azare\AppData\Roaming\pmsound.dll
2020-10-23 08:20 - 2020-10-23 08:20 - 000000600 _____ () C:\Users\azare\AppData\Roaming\winscp.rnd
==================== SigCheckExt =========================
2021-04-21 19:07 - 2014-05-13 20:06 - 000440320 ____N (Atheros) C:\WINDOWS\system32\athihvs.dll
2021-04-21 19:07 - 2014-05-13 20:07 - 000060416 ____N (Atheros) C:\WINDOWS\system32\athihvui.dll
2022-01-17 18:55 - 2022-01-17 18:54 - 002311680 _____ (Farbar) C:\Users\azare\Desktop\FRST64.exe
2022-01-17 20:52 - 2022-01-17 20:52 - 000000000 _____ C:\Users\azare\Desktop\ZHPSuite.exe
2021-09-03 14:33 - 2020-07-27 08:35 - 000000008 _____ C:\Users\azare\AppData\Roaming\pmsound.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {09c405cc-9ec4-11e5-9b46-5ce0c5654d7a}
device ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
path \windows\system32\winload.efi
description Dell SupportAssist
locale en-US
inherit {bootloadersettings}
osdevice ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
systemroot \Windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \sources\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options Ramdisk du programme d'installation
-------------------------------------------
identificateur {ramdiskoptions}
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \sources\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par azarel (administrateur) sur DESKTOP-0D0E4U1 (Dell Inc. Inspiron 3671) (17-01-2022 20:53:43)
Exécuté depuis C:\Users\azare\Desktop
Profils chargés: azarel
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1466 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe
(Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
(Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\Hide.me.exe
(eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\FOXIT READER\FoxitPDFReaderUpdateService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Icecream Apps Ltd -> ) C:\Program Files (x86)\Icecream Password Manager\PasswordManager.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ffb22091d2be88a5\IntelCpHDCPSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_ffb22091d2be88a5\IntelCpHeciSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe <3>
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_444d52e511fbcc11\WavesSysSvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe [1257032 2021-04-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_444d52e511fbcc11\WavesSvc64.exe [1237696 2020-12-06] (Waves Inc -> Waves Audio Ltd.)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\Run: [Icecream Password Manager] => C:\Program Files (x86)\Icecream Password Manager\PasswordManager.exe [3272888 2017-07-11] (Icecream Apps Ltd -> )
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {b266e75d-6afc-11ec-9cf4-1cbfc0dabb9a} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {baa8d931-9aed-11eb-9c96-1cbfc0dabb99} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-722883505-1132220754-2834591752-1001\...\MountPoints2: {fd55947c-ff40-11eb-9ce5-1cbfc0dabb9a} - "G:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-07] (Google LLC -> Google LLC)
Startup: C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2022-01-17]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited -> eVenture Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {38517122-7F6B-45AD-8DE5-C434BABA136B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3E3FA4C6-B5E9-41DE-A45E-F93510755FD8} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.)
Task: {40501CB4-D631-4304-AE89-19484E41CA37} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {43BD3438-CDA9-4724-AFE7-93A9F55E5367} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5CA0E64C-D11C-4BB7-873B-464C3D739C4D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {7352CBE2-22BE-4EED-8E23-2D2E3C72F74C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {7388C684-1A25-44BC-9FCF-C8ABADE0023C} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files\Privazer\PrivaZer.exe [20013672 2021-05-28] (Goversoft LLC -> Goversoft LLC)
Task: {81BD7FC4-CE05-4450-9EDE-C50930779B28} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-14] (Google LLC -> Google LLC)
Task: {85D1C997-EC3F-40B5-B3CD-67FDFE3623C2} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-03] () [Fichier non signé]
Task: {B1AA8537-9A8E-4C4D-A503-5439393A9C5E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C4492B69-93DA-4AC9-B87B-FFFF33701ECA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE345525-56E3-4BFE-9F86-577F8C5AE73F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-10-14] (Google LLC -> Google LLC)
Task: {D2C37F80-ECB5-4157-BC7D-B2D4FFD305B7} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-722883505-1132220754-2834591752-500 => C:\Users\azare\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {D99B8126-FF1B-431B-8E52-677E5B6CC11C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform)
Task: {E760B3B6-FD65-4F4F-B741-6EB54C3560C6} - System32\Tasks\CCleanerSkipUAC - azarel => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01163fae-29cc-491f-9710-92507b2e144d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{649a347d-aac2-4b2e-8242-5016c861ab22}: [DhcpNameServer] 192.168.42.129
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\azare\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-17]
FireFox:
========
FF DefaultProfile: w68a78ww.default
FF ProfilePath: C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\w68a78ww.default [2020-10-10]
FF ProfilePath: C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release [2022-01-17]
FF DownloadDir: D:\Telechargements
FF Homepage: Mozilla\Firefox\Profiles\oxijg93b.default-release -> hxxps://www.google.com/
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Disabled: newtaboverride@agenedia.com
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: firefox-webext@zenmate.com
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\oxijg93b.default-release -> Enabled: google@search.mozilla.org
FF Extension: (Ant Video downloader) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\anttoolbar@ant.com.xpi [2022-01-17]
FF Extension: (Default Bookmark Folder) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\default-bookmark-folder@gustiaux.com.xpi [2021-01-28]
FF Extension: (ZenMate VPN Gratuit – Meilleur VPN) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\firefox-webext@zenmate.com.xpi [2021-03-16]
FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-01-04]
FF Extension: (New Tab Override) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\newtaboverride@agenedia.com.xpi [2021-05-26]
FF Extension: (Video DownloadHelper) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-01]
FF Extension: (DownThemAll!) - C:\Users\azare\AppData\Roaming\Mozilla\Firefox\Profiles\oxijg93b.default-release\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2021-11-23]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT READER\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default [2022-01-17]
CHR Extension: (Slides) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-14]
CHR Extension: (Docs) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-14]
CHR Extension: (Google Drive) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-18]
CHR Extension: (YouTube) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-14]
CHR Extension: (Sheets) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-13]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-12-13]
CHR Extension: (DownThemAll!) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\nljkibfhlpcnanjgbnlnbjecgicbjkge [2021-12-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-09]
CHR Extension: (Gmail) - C:\Users\azare\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [50888 2021-06-24] (Dell Inc -> )
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2021-09-29] (Dell Inc -> Dell INC.)
R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> )
R2 FoxitReaderUpdateService; C:\PROGRAM FILES (X86)\FOXIT READER\FoxitPDFReaderUpdateService.exe [2363000 2021-09-24] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [179024 2021-10-08] (eVenture Limited -> eVenture Limited)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-11-08] (Huawei Technologies Co., Ltd. -> )
R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.)
R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.)
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2020-10-23] (Reason Software Company Inc. -> Reason Software Company Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 hideFirewall; C:\WINDOWS\System32\drivers\hideFirewall.sys [100352 2021-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 MpKslf6b44c75; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3D6C7F41-34C5-434B-9980-28EF46229760}\MpKslDrv.sys [134376 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-17] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U3 aswbdisk; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-17 20:53 - 2022-01-17 20:54 - 000023338 _____ C:\Users\azare\Desktop\FRST.txt
2022-01-17 20:52 - 2022-01-17 20:52 - 000000000 _____ C:\Users\azare\Desktop\ZHPSuite.exe
2022-01-17 20:51 - 2022-01-17 20:54 - 000000000 ____D C:\FRST
2022-01-17 18:55 - 2022-01-17 18:54 - 002311680 _____ (Farbar) C:\Users\azare\Desktop\FRST64.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-14 20:55 - 2022-01-14 20:55 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-14 20:51 - 2022-01-14 20:51 - 000000000 ___HD C:\$WinREAgent
2022-01-13 07:24 - 2022-01-13 07:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-13 07:23 - 2022-01-13 07:23 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-01-13 07:19 - 2022-01-13 07:19 - 000029680 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wintun.sys
2022-01-10 18:49 - 2022-01-10 18:49 - 000002327 _____ C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov.lnk
2022-01-10 18:49 - 2022-01-10 18:49 - 000000000 ____D C:\Users\azare\AppData\Local\molotov-updater
2022-01-08 23:18 - 2022-01-08 23:18 - 000001339 _____ C:\Users\azare\Desktop\virus.txt
2022-01-02 14:43 - 2022-01-02 14:43 - 000000000 ____D C:\Users\azare\Documents\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 15:05 - 000000000 ____D C:\Program Files\Common Files\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\Users\azare\AppData\Local\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\ProgramData\Aiseesoft Studio
2022-01-02 14:38 - 2022-01-02 14:38 - 000000000 ____D C:\Program Files\Aiseesoft Studio
2022-01-02 14:37 - 2022-01-02 14:37 - 001753088 _____ ( ) C:\Users\azare\Downloads\mobiesync.exe
2022-01-01 22:57 - 2022-01-04 23:15 - 000000137 _____ C:\Users\azare\Desktop\DesktopSnowOK.ini
2022-01-01 22:57 - 2022-01-01 22:57 - 000000000 ____D C:\Users\azare\AppData\Roaming\DesktopSnowOK
2022-01-01 22:57 - 2021-12-19 09:20 - 000211264 _____ (Nenad Hrg (SoftwareOK.com)) C:\Users\azare\Desktop\DesktopSnowOK.exe
2021-12-25 10:07 - 2021-12-25 10:07 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2021-12-19 23:53 - 2021-12-23 22:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-17 01:08 - 2021-12-17 01:08 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-16 22:49 - 2021-12-16 22:49 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-16 22:48 - 2021-12-16 22:48 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-16 22:48 - 2021-12-16 22:48 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-15 19:12 - 2021-12-15 19:12 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-12-13 11:46 - 2021-12-13 11:46 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - azarel
2021-12-06 11:18 - 2021-12-06 11:18 - 000000000 ____D C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite
2021-12-06 11:18 - 2021-11-08 02:20 - 000287232 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbnet.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000226560 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_quusbmdm.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000127360 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_cdcacm.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000116864 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\hw_usbdev.sys
2021-12-06 11:18 - 2021-11-08 02:20 - 000018944 _____ (Huawei Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\ew_usbccgpfilter.sys
2021-12-06 11:17 - 2021-12-06 11:18 - 000000000 ____D C:\Program Files (x86)\HiSuite
2021-11-18 22:36 - 2021-11-18 22:36 - 000003918 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate
2021-11-14 22:33 - 2021-11-14 22:33 - 000000000 ____D C:\WINDOWS\{2F366A08-5179-4948-A3AD-CB3F835A5AD5}
2021-11-11 19:27 - 2021-11-11 19:27 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 18:23 - 2021-11-11 18:23 - 000000000 ____D C:\Program Files\Rivet Networks
2021-11-08 02:20 - 2021-11-08 02:20 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2021-11-06 18:55 - 2021-11-06 18:55 - 000003166 _____ C:\WINDOWS\system32\Tasks\PrivaZer_SkipUAC
2021-10-31 08:28 - 2021-10-31 08:28 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-31 08:28 - 2021-10-31 08:28 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-29 11:15 - 2021-12-06 23:22 - 000000000 _____ C:\Users\azare\Desktop\Nouveau document texte.txt
2021-10-29 10:28 - 2021-10-29 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-10-29 10:28 - 2021-10-29 10:28 - 000000000 ____D C:\Program Files\VS Revo Group
2021-10-26 22:06 - 2021-10-29 08:55 - 000000000 ____D C:\Users\azare\.Icecream Password Manager
2021-10-26 21:59 - 2021-10-26 21:59 - 000001254 _____ C:\Users\Public\Desktop\Icecream Password Manager.lnk
2021-10-26 21:59 - 2021-10-26 21:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream Password Manager
2021-10-26 21:59 - 2021-10-26 21:59 - 000000000 ____D C:\Program Files (x86)\Icecream Password Manager
2021-10-26 21:50 - 2021-10-26 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2021-10-26 21:49 - 2021-10-26 21:50 - 000000000 ____D C:\Program Files (x86)\FOXIT READER
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-01-17 20:44 - 2020-10-10 15:01 - 000000000 ____D C:\ProgramData\Mozilla
2022-01-17 20:43 - 2020-10-10 15:02 - 000000000 ____D C:\Users\azare\AppData\LocalLow\Mozilla
2022-01-17 20:42 - 2021-03-24 23:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-17 20:42 - 2021-02-27 18:46 - 000000000 ____D C:\Users\azare\AppData\Roaming\Hide.me
2022-01-17 20:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-17 20:09 - 2020-07-16 07:40 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services
2022-01-17 20:06 - 2020-10-14 20:43 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-17 20:02 - 2020-06-14 04:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-01-17 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-01-17 19:56 - 2021-03-24 23:16 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-17 19:56 - 2019-12-07 15:49 - 000755174 _____ C:\WINDOWS\system32\perfh00C.dat
2022-01-17 19:56 - 2019-12-07 15:49 - 000141980 _____ C:\WINDOWS\system32\perfc00C.dat
2022-01-17 19:56 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-17 19:54 - 2020-10-10 15:09 - 000000000 ____D C:\Program Files\CCleaner
2022-01-17 19:54 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-17 19:52 - 2021-10-02 15:32 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-17 19:52 - 2021-03-24 23:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-17 19:52 - 2020-10-18 08:03 - 000000000 ____D C:\ProgramData\Avast Software
2022-01-17 19:52 - 2020-07-16 07:32 - 000000000 ____D C:\Intel
2022-01-17 19:51 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2022-01-17 19:19 - 2021-07-14 21:41 - 000000000 ____D C:\Users\azare\AppData\Local\PrivaZer
2022-01-17 18:31 - 2020-12-12 17:59 - 000000000 ____D C:\Users\azare\AppData\Roaming\MPC-HC
2022-01-17 18:31 - 2020-10-14 20:58 - 000000000 ____D C:\Users\azare\AppData\Local\CrashDumps
2022-01-17 18:17 - 2020-10-10 15:37 - 000000000 ____D C:\Users\azare\AppData\Roaming\vlc
2022-01-16 14:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-15 12:56 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-15 12:11 - 2020-10-26 08:42 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-15 00:22 - 2021-10-02 15:32 - 000629032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-15 00:21 - 2021-03-24 20:31 - 000000000 ____D C:\Users\azare
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-15 00:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-14 20:57 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-14 20:50 - 2020-10-10 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-14 20:48 - 2020-10-10 15:30 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-13 10:02 - 2020-10-14 20:41 - 000000000 ____D C:\Users\azare\AppData\Local\Adobe
2022-01-10 18:56 - 2020-10-26 09:10 - 000000000 ____D C:\Users\azare\AppData\Roaming\Molotov
2022-01-10 18:49 - 2020-10-26 09:10 - 000000000 ____D C:\Users\azare\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Molotov
2022-01-07 10:16 - 2020-10-14 20:43 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-01-02 11:59 - 2021-04-12 08:15 - 000000000 ____D C:\Users\azare\Documents\HiSuite
2021-12-25 10:07 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-12-23 22:25 - 2020-10-10 15:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-22 22:16 - 2021-10-12 10:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-22 22:16 - 2020-10-10 15:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
==================== Fichiers à la racine de certains dossiers ========
2021-09-03 14:33 - 2021-08-25 09:53 - 000000006 _____ () C:\Users\azare\AppData\Roaming\pmfirst.ini
2021-09-03 14:33 - 2021-09-03 14:33 - 000000004 _____ () C:\Users\azare\AppData\Roaming\pmlan.ini
2021-09-03 14:33 - 2020-07-27 08:35 - 000000008 _____ () C:\Users\azare\AppData\Roaming\pmsound.dll
2020-10-23 08:20 - 2020-10-23 08:20 - 000000600 _____ () C:\Users\azare\AppData\Roaming\winscp.rnd
==================== SigCheckExt =========================
2021-04-21 19:07 - 2014-05-13 20:06 - 000440320 ____N (Atheros) C:\WINDOWS\system32\athihvs.dll
2021-04-21 19:07 - 2014-05-13 20:07 - 000060416 ____N (Atheros) C:\WINDOWS\system32\athihvui.dll
2022-01-17 18:55 - 2022-01-17 18:54 - 002311680 _____ (Farbar) C:\Users\azare\Desktop\FRST64.exe
2022-01-17 20:52 - 2022-01-17 20:52 - 000000000 _____ C:\Users\azare\Desktop\ZHPSuite.exe
2021-09-03 14:33 - 2020-07-27 08:35 - 000000008 _____ C:\Users\azare\AppData\Roaming\pmsound.dll
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {09c405cc-9ec4-11e5-9b46-5ce0c5654d7a}
device ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
path \windows\system32\winload.efi
description Dell SupportAssist
locale en-US
inherit {bootloadersettings}
osdevice ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
systemroot \Windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {95b3e300-8ced-11eb-9c91-1cbfc0dabb99}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {95b3e303-8ced-11eb-9c91-1cbfc0dabb99}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {492933ee-cd0d-11e1-9b66-d4bed91b7fc5}
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \sources\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {95b3e304-8ced-11eb-9c91-1cbfc0dabb99}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options Ramdisk du programme d'installation
-------------------------------------------
identificateur {ramdiskoptions}
ramdisksdidevice partition=\Device\HarddiskVolume8
ramdisksdipath \sources\boot.sdi
==================== Fin de FRST.txt ========================