Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Exécuté par Rom (administrateur) sur NETBOOK-HOME (ASUSTeK Computer Inc. U36SD) (27-02-2022 16:36:46)
Exécuté depuis C:\Users\Rom\Desktop
Profils chargés: UpdatusUser & Rom
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1526 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCopyAccelerator.exe
(explorer.exe ->) (Alcor Micro Corp.) [Fichier non signé] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <17>
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(explorer.exe ->) (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Rom\Desktop\ZHPSuite.exe
(explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(explorer.exe ->) (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\supercopier.exe
(FBAgent.exe ->) (ASUSTeK Computer Inc. -> ASUS) C:\Windows\AsScrPro.exe
(FBAgent.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Secure VPN\VpnSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) () [Fichier non signé] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Windows (R) Win 7 DDK provider) [Fichier non signé] C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324096 2010-08-11] (Alcor Micro Corp.) [Fichier non signé]
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-05-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2392360 2010-10-08] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [FLxHCIm] => C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [43008 2011-04-08] (Windows (R) Win 7 DDK provider) [Fichier non signé]
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUSTeK Computer Inc. -> ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] () [Fichier non signé]
HKLM-x32\...\Run: [USBChargerPlusTray] => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [495536 2011-03-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) [Fichier non signé]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-03] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Sonic Focus, Inc. -> Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2017-01-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Zwift] => C:\Program Files (x86)\Zwift\ZwiftLauncher.exe [18038128 2021-02-11] (Zwift, Inc. -> Zwift, Inc)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [271496 2017-11-02] (Canon Inc. -> CANON INC.)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1942400 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1942400 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2015-04-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1942400 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [ultracopier] => C:\Program Files\Supercopier\supercopier.exe [1144320 2016-01-02] (ultracopier.first-world.info) [Fichier non signé]
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Rom\AppData\Local\Microsoft\Teams\Update.exe [2454184 2021-05-22] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31193432 2022-02-15] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\Canon MG5600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCA.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\Canon TS3300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDG3.DLL [509952 2019-08-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [65024 2012-03-14] (pdfforge GbR) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-17] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2011-01-10] (ASUSTeK Computer Inc. -> ASUS)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvinitx.dll [208616 2017-12-12] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvinit.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvinit.dll [182272 2017-12-12] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
IFEO\EOSnotify.exe: [Debugger] /
IFEO\InstallAgent.exe: [Debugger] /
IFEO\MusNotification.exe: [Debugger] /
IFEO\MusNotificationUx.exe: [Debugger] /
IFEO\remsh.exe: [Debugger] /
IFEO\SihClient.exe: [Debugger] /
IFEO\UpdateAssistant.exe: [Debugger] /
IFEO\upfc.exe: [Debugger] /
IFEO\UsoClient.exe: [Debugger] /
IFEO\WaaSMedic.exe: [Debugger] /
IFEO\WaasMedicAgent.exe: [Debugger] /
IFEO\Windows10Upgrade.exe: [Debugger] /
IFEO\Windows10UpgraderApp.exe: [Debugger] /
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVG Secure VPN.lnk [2022-02-13]
ShortcutTarget: AVG Secure VPN.lnk -> C:\Program Files\AVG\Secure VPN\Vpn.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BackupRemind.lnk [2017-03-29]
ShortcutTarget: BackupRemind.lnk -> C:\Program Files (x86)\Wondershare\dr.fone toolkit pour Android\Addins\AndroidBackupRestore\BackupRemind.exe (Wondershare software CO., LIMITED -> Wondershare)
Startup: C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk [2017-11-15]
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Backup.lnk [2022-02-16]
ShortcutTarget: Synology Cloud Station Backup.lnk -> C:\Program Files (x86)\Synology\CloudStationBackup\bin\launcher.exe (Synology Inc. -> Synology Inc.) [Fichier non signé]
Startup: C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Drive.lnk [2021-10-31]
ShortcutTarget: Synology Cloud Station Drive.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {03C93138-BF46-42EA-9675-1AFD431A8ACB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080304 2021-02-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Pas de fichier)
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {0FC1AEC0-678F-43DD-AE24-390AD51E3ACD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {11D22D19-6775-4356-A2F3-775B742A3067} - System32\Tasks\ASUS Secure Delete => C:\Program Files\ASUS\ASUS Secure Delete\ADDEL.exe [541696 2011-01-24] () [Fichier non signé]
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {16C686BB-011A-4C44-8941-40D2CC2D982F} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {3984F83B-0C71-4D53-BA0C-51C3A6BA49C8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Pas de fichier)
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {43521854-6EA7-483A-9AD6-12A514B84ABD} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [26968 2022-02-15] (Garmin International, Inc. -> )
Task: {452C415C-46EF-4C50-B314-C5BC7CBD541A} - System32\Tasks\ASUS Patch 10430001 => C:\Windows\AsPatch10430001.exe [154240 2010-07-29] (ASUSTeK Computer Inc. -> )
Task: {4695F474-79FA-427C-BB34-0B567902585F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4E13D73E-5694-4A4D-B0A0-58BB47F251A9} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Pas de fichier)
Task: {4F62E1BC-0344-4FA3-B999-824EB4629D59} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUSTeK Computer Inc. -> ASUS)
Task: {51FC6682-FEFC-47E3-918E-A2B328C79493} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [977024 2011-03-07] (ASUSTeK Computer Inc. -> ASUS)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {78823C90-9A38-4B3A-A476-4FD59D7C0A70} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {7CE3F3E0-3E4E-47D1-9EDA-BC6D0E9CE54C} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {95382C7C-8399-4A02-8E91-95B17CCB50E3} - System32\Tasks\Mozilla\Firefox Default Browser Agent A4F1AFE6929DA26E => C:\Users\Rom\AppData\Local\Mozilla Firefox\default-browser-agent.exe do-task
Task: {99ADB0CA-672E-4FEC-86C4-E8DC868BFA5F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {9EA97E38-70C4-4546-900C-F7CF63F635C9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1133488 2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {ABD7A327-A33A-4329-9B36-690ADF6C66CD} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2862440 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B32354E6-5937-4671-8B8D-0867669A1145} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792 2010-11-15] (ASUSTeK Computer Inc. -> ASUS)
Task: {BE0C6653-62A0-4647-99BC-829E01F21587} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3BFB5C7-62EA-4646-8D02-5480D653567C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {CB8C0BFA-D15F-40D6-8883-9E8407253AEF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D02FCF48-91BA-424B-89AD-30C91DFD2D45} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {D113CD1C-080C-478A-8878-64E52E588413} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Pas de fichier)
Task: {E2C9DB2C-E6DF-4214-9035-617D37295C1D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {E5CA8129-3AE7-42AC-A227-29E5F41BAD15} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {EDC8512B-7195-419D-8DA0-28D74D33851F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080304 2021-02-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {F38A2A0F-1269-466C-80DA-F8597FD7FF44} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Pas de fichier)
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {FAF59759-0CD3-4961-8B90-F2AF4B3D256F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {FCE09D13-984D-4EE3-AD2B-92B9EEC94EB5} - System32\Tasks\AVG Secure VPN Update => C:\Program Files\AVG\Secure VPN\VpnUpdate.exe [1263928 2022-01-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{18130c32-aae1-4a36-bda8-03de7794aa49}: [NameServer] 192.168.10.110 194.51.3.56
Tcpip\..\Interfaces\{310920ad-017b-4630-8cd8-14526ffaae91}: [NameServer] 192.168.10.110 0.0.0.0
Tcpip\..\Interfaces\{417d13b0-65cf-45a2-bb48-178c6c772167}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{5034f684-d8fa-46b7-945e-bd536cc6d8f9}: [NameServer] 192.168.10.110 0.0.0.0
Tcpip\..\Interfaces\{5a8e5edf-7f1e-4923-9276-7339cea9de89}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{7050ce29-fa14-49c4-9a69-bca332c79ef0}: [NameServer] 192.168.10.110 194.51.3.56
Tcpip\..\Interfaces\{8f2d9ac9-10d4-4608-8fbe-a9e59f88b1b3}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{a3dd7ac0-f74d-4374-a68e-2be8a4fc4652}: [NameServer] 192.168.10.110 194.51.3.56
Tcpip\..\Interfaces\{b2bec3b7-f657-4724-afdf-9d825b8ed60b}: [NameServer] 192.168.10.110 0.0.0.0
Tcpip\..\Interfaces\{c3b3c96d-98af-4fc6-8f2a-d74df2ebbc16}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{ce2c8c4d-2f6e-4d3e-b20a-d142d249d4d2}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{dd8c4446-bf62-4630-9166-e5df0e59aea3}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Rom\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-23]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE13&ocid=UE13DHP
FireFox:
========
FF DefaultProfile: xuzayc34.default
FF ProfilePath: C:\Users\Rom\AppData\Roaming\Mozilla\Firefox\Profiles\jq8v1o45.default-release [2021-04-20]
FF ProfilePath: C:\Users\Rom\AppData\Roaming\Mozilla\Firefox\Profiles\xuzayc34.default [2021-04-20]
FF Homepage: Mozilla\Firefox\Profiles\xuzayc34.default -> hxxps://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_FFe64_w10e64_odc
FF Extension: (Petitscailloux) - C:\Users\Rom\AppData\Roaming\Mozilla\Firefox\Profiles\xuzayc34.default\Extensions\contact@petitscailloux.com.xpi [2013-09-01] [] [non signé]
FF Extension: (barre d'outils Orange) - C:\Users\Rom\AppData\Roaming\Mozilla\Firefox\Profiles\xuzayc34.default\Extensions\toolbar@Orange.fr [2015-03-15] [] [non signé]
FF SearchPlugin: C:\Users\Rom\AppData\Roaming\Mozilla\Firefox\Profiles\xuzayc34.default\searchplugins\orange.xml [2014-10-20]
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-08-22] [] [non signé]
FF HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2021-03-04] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2013-10-09] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2021-03-04] (Adobe Inc. -> )
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll [2008-10-15] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2013-10-09] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-12-04] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-12-04] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation -> Zeon Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rom\AppData\Local\Google\Chrome\User Data\Default [2022-02-27]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Rom\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-05-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Rom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Profile: C:\Users\Rom\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-18]
CHR HKU\S-1-5-21-3621776348-93825552-4056938600-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Rom\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx
CHR HKU\S-1-5-21-3621776348-93825552-4056938600-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-03-04] (Adobe Inc. -> Adobe)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8988552 2021-02-22] (Microsoft Corporation -> Microsoft Corporation)
S4 Cloud Station Backup VSS Service x64; C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe [287256 2017-08-23] (Synology Inc. -> ) [Fichier non signé]
S4 Cloud Station Drive VSS Service x64; C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe [287256 2017-08-23] (Synology Inc. -> ) [Fichier non signé]
S4 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\FileSyncHelper.exe [2198376 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-07-27] (HP Inc. -> HP Inc.)
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Fichier non signé]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-07-03] (Huawei Technologies Co., Ltd. -> ) [Fichier non signé]
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [399296 2019-11-28] (Canon Inc. -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7997112 2022-02-23] (Malwarebytes Inc -> Malwarebytes)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S4 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\OneDriveUpdaterService.exe [2573160 2021-02-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 SecureVPN; C:\Program Files\AVG\Secure VPN\VpnSvc.exe [9291064 2022-01-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 WsDrvInst; C:\Program Files (x86)\Wondershare\dr.fone toolkit pour Android\Library\DriverInstaller\DriverInstall.exe [119008 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 assd; C:\Windows\System32\Drivers\assd.sys [27264 2010-04-28] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2021-03-04] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project)
R3 avgWintun; C:\WINDOWS\System32\drivers\avgWintun.sys [37136 2021-07-18] (AVG Technologies USA, LLC -> WireGuard LLC)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FLxHCIc; C:\WINDOWS\System32\drivers\FLxHCIc.sys [177152 2011-04-08] (Microsoft Windows Hardware Compatibility Publisher -> Fresco Logic)
S3 FLxHCIh; C:\WINDOWS\System32\drivers\FLxHCIh.sys [56320 2011-04-08] (Microsoft Windows Hardware Compatibility Publisher -> Fresco Logic)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2016-10-09] (SurfRight B.V. -> )
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-02-23] (Malwarebytes Inc -> Malwarebytes)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-23] (Microsoft Windows -> Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2016-10-09] (Zemana Ltd. -> Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2016-10-09] (Zemana Ltd. -> Zemana Ltd.)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-27 16:36 - 2022-02-27 16:36 - 000000000 ____D C:\Users\Rom\Desktop\FRST-OlderVersion
2022-02-26 10:00 - 2022-02-26 10:00 - 000001528 _____ C:\Users\Rom\Desktop\MBAM.txt
2022-02-23 23:03 - 2022-02-23 23:08 - 000000000 ____D C:\Users\Rom\AppData\LocalLow\IGDump
2022-02-23 22:59 - 2022-02-23 22:59 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-02-23 22:59 - 2022-02-23 22:59 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-02-23 22:58 - 2022-02-23 22:58 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-02-23 22:58 - 2022-02-23 22:57 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-02-23 22:58 - 2022-02-23 22:57 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-02-23 22:57 - 2022-02-23 22:57 - 000000000 ____D C:\Program Files\Malwarebytes
2022-02-23 22:56 - 2022-02-23 22:56 - 002419896 _____ (Malwarebytes) C:\Users\Rom\Desktop\MBSetup.exe
2022-02-23 22:39 - 2022-02-23 22:44 - 000000000 ____D C:\AdwCleaner
2022-02-23 22:37 - 2022-02-23 22:38 - 008540344 _____ (Malwarebytes) C:\Users\Rom\Desktop\adwcleaner_8.3.1.exe
2022-02-23 22:26 - 2022-02-23 22:26 - 000018196 _____ C:\Users\Rom\Downloads\FacCli_2104501.pdf
2022-02-23 22:23 - 2022-02-23 22:23 - 000247998 _____ C:\Users\Rom\Downloads\SalesInvoice.Report (4).pdf
2022-02-23 22:14 - 2022-02-23 22:14 - 000103700 _____ C:\Users\Rom\Downloads\Invoice 4329 from Great Pretenders Europe GmbH.pdf
2022-02-23 22:13 - 2022-02-23 22:13 - 000103889 _____ C:\Users\Rom\Downloads\Invoice 3953 from Great Pretenders Europe GmbH.pdf
2022-02-23 22:01 - 2022-02-23 22:01 - 000212837 _____ C:\Users\Rom\Downloads\JURATOYS-FAC_220264497_2022-02-01_08-47-21 (1).PDF
2022-02-23 21:59 - 2022-02-23 21:59 - 000211080 _____ C:\Users\Rom\Downloads\JURATOYS-FAC_220264231_2022-01-26_12-51-31.PDF
2022-02-23 21:57 - 2022-02-23 21:57 - 000212837 _____ C:\Users\Rom\Downloads\JURATOYS-FAC_220264497_2022-02-01_08-47-21.PDF
2022-02-23 21:55 - 2022-02-23 21:55 - 000251897 _____ C:\Users\Rom\Downloads\FVC-21-12493.pdf
2022-02-23 21:48 - 2022-02-23 21:48 - 000040337 _____ C:\Users\Rom\Downloads\Facture indv. client_1131149699_0000012520.PDF
2022-02-23 21:41 - 2022-02-23 21:41 - 000138869 _____ C:\Users\Rom\Downloads\Facture_'12837'.PDF
2022-02-23 21:20 - 2022-02-23 21:20 - 000017804 _____ C:\Users\Rom\Desktop\ZHPCleaner (S).txt
2022-02-23 20:14 - 2022-02-23 20:14 - 003302272 _____ C:\Users\Rom\Desktop\zhpcleaner_2019.1.17.9.exe
2022-02-23 20:11 - 2022-02-23 20:37 - 000000919 _____ C:\Users\Rom\Desktop\ZHPCleaner.lnk
2022-02-23 20:07 - 2022-02-23 20:08 - 003293336 _____ (Nicolas Coolman) C:\Users\Rom\Desktop\ZHPCleaner.exe
2022-02-21 19:54 - 2022-02-21 19:53 - 004146112 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgremoverx.exe
2022-02-20 23:09 - 2022-02-20 23:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2022-02-20 23:03 - 2022-02-20 23:03 - 000000020 ___SH C:\Users\Rom\ntuser.ini
2022-02-20 23:03 - 2022-02-20 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2022-02-20 23:03 - 2022-02-20 23:03 - 000000000 ____D C:\WINDOWS\system32\NV
2022-02-20 23:00 - 2022-02-26 11:38 - 000003974 _____ C:\WINDOWS\system32\Tasks\AVG Secure VPN Update
2022-02-20 23:00 - 2022-02-26 11:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-20 23:00 - 2022-02-20 23:02 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-02-20 23:00 - 2022-02-20 23:01 - 000003562 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-20 23:00 - 2022-02-20 23:01 - 000003366 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{F228D1DC-5FE3-4E5B-AC39-939AF1AFB7D3}
2022-02-20 23:00 - 2022-02-20 23:01 - 000003338 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-20 23:00 - 2022-02-20 23:01 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-02-20 23:00 - 2022-02-20 23:01 - 000002788 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-20 23:00 - 2022-02-20 23:01 - 000002762 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2022-02-20 23:00 - 2022-02-20 23:01 - 000002392 _____ C:\WINDOWS\system32\Tasks\ASUS SmartLogon Console Sensor
2022-02-20 23:00 - 2022-02-20 23:00 - 000002522 _____ C:\WINDOWS\system32\Tasks\ASUS Patch 10430001
2022-02-20 23:00 - 2022-02-20 23:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2022-02-20 23:00 - 2022-02-20 23:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Safer-Networking
2022-02-20 23:00 - 2022-02-20 23:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2022-02-20 23:00 - 2022-02-20 23:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-20 23:00 - 2022-02-20 23:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-02-20 23:00 - 2011-08-11 16:52 - 000003044 _____ C:\WINDOWS\system32\Tasks\ASUS P4G
2022-02-20 23:00 - 2011-08-11 16:52 - 000002964 _____ C:\WINDOWS\system32\Tasks\ASUS Secure Delete
2022-02-20 23:00 - 2011-08-11 16:51 - 000002984 _____ C:\WINDOWS\system32\Tasks\ATKOSD2
2022-02-20 22:55 - 2022-02-20 23:00 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2022-02-20 22:55 - 2022-02-20 23:00 - 000011433 _____ C:\WINDOWS\diagerr.xml
2022-02-20 22:37 - 2022-02-23 20:31 - 001814224 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-20 22:34 - 2022-02-20 22:34 - 000000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2022-02-20 22:19 - 2022-02-20 22:19 - 000002136 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2022-02-20 22:18 - 2022-02-20 22:18 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2022-02-20 22:18 - 2017-12-12 20:34 - 000541456 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-20 22:18 - 2017-12-12 20:34 - 000447248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-20 22:18 - 2017-12-04 19:43 - 000137008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2022-02-20 22:18 - 2017-09-14 00:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-20 22:18 - 2017-09-14 00:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-20 22:18 - 2017-09-14 00:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-20 22:18 - 2017-09-14 00:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-20 22:12 - 2022-02-27 15:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-20 22:11 - 2022-02-20 22:12 - 005020704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-20 22:08 - 2022-02-20 23:02 - 000000000 ____D C:\Windows.old
2022-02-20 21:14 - 2022-02-20 22:09 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2022-02-20 21:14 - 2022-02-20 21:14 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2022-02-20 21:10 - 2022-02-20 23:03 - 000000000 ____D C:\Users\Rom
2022-02-20 21:10 - 2022-02-20 22:37 - 000000000 ____D C:\Users\UpdatusUser
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Voisinage réseau
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Voisinage d'impression
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Modèles
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Mes documents
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Menu Démarrer
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Mes vidéos
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Mes images
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Ma musique
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Historique
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Voisinage réseau
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Voisinage d'impression
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Modèles
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Mes documents
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Menu Démarrer
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Documents\Mes vidéos
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Documents\Mes images
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\Documents\Ma musique
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2022-02-20 21:10 - 2022-02-20 21:10 - 000000000 _SHDL C:\Users\Rom\AppData\Local\Historique
2022-02-20 21:10 - 2019-12-07 10:10 - 000001105 _____ C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-20 21:10 - 2019-12-07 10:10 - 000001105 _____ C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-20 21:05 - 2022-02-20 21:13 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-02-20 20:48 - 2022-02-20 20:48 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-20 20:35 - 2022-02-20 20:35 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-02-20 20:34 - 2022-02-20 20:34 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-02-20 20:34 - 2022-02-20 20:34 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-20 20:33 - 2022-02-20 20:33 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-20 20:32 - 2022-02-20 20:32 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-02-20 20:31 - 2022-02-20 20:31 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-20 20:30 - 2022-02-20 20:30 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-20 20:30 - 2022-02-20 20:30 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-20 20:02 - 2019-10-15 13:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2022-02-20 20:02 - 2019-04-18 18:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2022-02-20 19:47 - 2022-02-20 19:47 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-02-20 19:47 - 2022-02-20 19:47 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-02-20 19:47 - 2022-02-20 19:47 - 000000000 ____D C:\Program Files\MSBuild
2022-02-20 19:47 - 2022-02-20 19:47 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-02-20 19:47 - 2022-02-20 19:47 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-02-20 19:27 - 2022-02-20 19:27 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-02-20 18:47 - 2022-02-20 23:04 - 000000000 ___DC C:\WINDOWS\Panther
2022-02-18 23:40 - 2022-02-18 23:55 - 000000000 ____D C:\Users\Rom\Desktop\Windows
2022-02-18 23:33 - 2022-02-20 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2022-02-18 23:33 - 2022-02-18 23:33 - 000000000 ____D C:\Program Files\7-Zip
2022-02-18 23:26 - 2022-02-18 23:30 - 329515008 _____ C:\Users\Rom\Desktop\Windows.iso
2022-02-18 22:55 - 2022-02-18 23:31 - 000000000 ____D C:\ESD
2022-02-18 22:50 - 2022-02-18 22:50 - 014299912 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Rom\Desktop\avgclear.exe
2022-02-18 22:48 - 2022-02-18 22:48 - 000000000 ___HD C:\$Windows.~WS
2022-02-18 22:47 - 2022-02-18 22:47 - 000009083 _____ C:\Users\Rom\Desktop\CrystalDiskInfo_20220218224650.txt
2022-02-18 22:34 - 2022-02-18 22:34 - 000000000 ___HD C:\$WinREAgent
2022-02-18 00:30 - 2022-02-18 00:30 - 000132636 _____ C:\Users\Rom\Desktop\Shortcut.txt
2022-02-18 00:22 - 2022-02-18 00:30 - 000094464 _____ C:\Users\Rom\Desktop\Addition.txt
2022-02-18 00:08 - 2022-02-27 16:39 - 000037815 _____ C:\Users\Rom\Desktop\FRST.txt
2022-02-18 00:06 - 2022-02-27 16:38 - 000000000 ____D C:\FRST
2022-02-18 00:04 - 2022-02-27 16:32 - 000489218 _____ C:\Users\Rom\Desktop\ZHPDiag.txt
2022-02-17 23:39 - 2022-02-27 16:36 - 002312192 _____ (Farbar) C:\Users\Rom\Desktop\FRST64.exe
2022-02-17 23:37 - 2022-02-23 20:11 - 000000000 ____D C:\Users\Rom\AppData\Local\ZHP
2022-02-17 23:37 - 2022-02-17 23:37 - 000000909 _____ C:\Users\Rom\Desktop\ZHPSuite.lnk
2022-02-17 23:33 - 2022-02-17 23:33 - 003479704 _____ (Nicolas Coolman) C:\Users\Rom\Desktop\ZHPSuite.exe
2022-02-16 20:20 - 2022-02-20 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2022-02-16 20:20 - 2022-02-16 20:20 - 000001965 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2022-02-13 17:01 - 2022-02-13 17:01 - 000001712 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2022-02-13 17:01 - 2022-02-13 17:01 - 000000000 ____D C:\Users\Rom\AppData\Roaming\HPPSDr
2022-02-13 16:59 - 2022-02-13 16:59 - 000000000 ____D C:\HP
2022-02-06 11:57 - 2022-02-06 11:57 - 000036651 _____ C:\Users\Rom\Downloads\Facture_Free_202202_23806217_1093770451.pdf
2022-01-25 21:20 - 2022-01-25 21:20 - 000007538 _____ C:\Users\Rom\Downloads\Nanoblock_logo.jpeg
2022-01-16 16:21 - 2022-01-16 16:21 - 000000000 ____D C:\Users\Rom\Apple
2021-12-22 20:24 - 2021-12-14 07:44 - 000381456 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3688.sys
2021-12-18 11:22 - 2021-12-18 11:22 - 000002043 _____ C:\Users\Rom\Desktop\AVG AntiVirus Gratuit.lnk
2021-11-29 23:05 - 2021-11-29 23:05 - 000044925 _____ C:\Users\Rom\Downloads\Bon de livraison smart.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-02-27 16:44 - 2016-10-09 20:38 - 000125213 _____ C:\WINDOWS\ZAM.krnl.trace
2022-02-27 16:44 - 2016-10-09 20:38 - 000096982 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2022-02-27 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-27 16:33 - 2021-04-16 18:55 - 000595224 _____ C:\Users\Rom\Desktop\ZHPDiag.html
2022-02-27 16:32 - 2015-04-04 21:32 - 000000000 ____D C:\Users\Rom\AppData\Roaming\ZHP
2022-02-27 15:54 - 2011-04-13 03:33 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-26 11:38 - 2017-07-26 17:48 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-26 11:38 - 2015-10-31 13:49 - 000000000 ____D C:\ProgramData\Avg
2022-02-26 11:37 - 2020-10-11 00:32 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-26 11:36 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-26 09:51 - 2020-10-10 22:06 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-26 09:51 - 2020-10-10 22:06 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-24 00:37 - 2020-10-02 21:37 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-24 00:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-23 22:59 - 2018-06-30 15:03 - 000000000 ____D C:\Users\Rom\AppData\Local\CrashDumps
2022-02-23 22:58 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-23 22:57 - 2015-04-06 08:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-02-23 22:45 - 2011-04-13 03:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2022-02-23 22:45 - 2011-04-13 03:47 - 000000000 ____D C:\Program Files (x86)\ASUS
2022-02-23 22:44 - 2020-02-08 22:02 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Samsung
2022-02-23 21:21 - 2020-12-20 23:05 - 000000000 ____D C:\_Test_DL
2022-02-23 20:33 - 2021-03-04 22:26 - 000000000 ____D C:\Program Files\AVG
2022-02-23 20:31 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2022-02-23 20:31 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2022-02-23 20:31 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-23 20:27 - 2018-05-12 09:52 - 000000000 ____D C:\Users\Rom\AppData\Local\PlaceholderTileLogoFolder
2022-02-23 20:23 - 2015-05-24 10:27 - 000000000 ____D C:\Users\Rom\AppData\Local\Avg
2022-02-23 20:23 - 2011-10-14 22:30 - 000000000 ____D C:\Program Files (x86)\AVG
2022-02-23 20:22 - 2017-12-23 23:11 - 000000000 ____D C:\Program Files\Common Files\AVG
2022-02-23 20:17 - 2018-06-05 00:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-23 20:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-02-21 21:44 - 2011-10-14 22:39 - 000000000 ____D C:\Program Files (x86)\Vuze
2022-02-21 21:41 - 2013-08-22 18:49 - 000000000 ____D C:\Program Files (x86)\Java
2022-02-21 21:30 - 2013-12-13 11:03 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-02-21 21:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-21 20:05 - 2011-11-20 20:36 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2022-02-21 13:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2022-02-21 02:22 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-02-20 23:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-20 23:05 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-20 23:04 - 2017-11-17 00:48 - 000000000 ___RD C:\Users\Rom\3D Objects
2022-02-20 23:04 - 2016-07-23 11:57 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-02-20 23:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-20 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2022-02-20 23:01 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-20 23:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-02-20 22:39 - 2016-07-23 10:28 - 000023208 _____ C:\WINDOWS\system32\emptyregdb.dat
2022-02-20 22:38 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media
2022-02-20 22:19 - 2017-07-26 17:48 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-20 22:19 - 2016-01-24 17:56 - 000000000 ____D C:\temp
2022-02-20 22:17 - 2017-07-26 17:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-20 22:16 - 2017-07-26 17:47 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2022-02-20 22:11 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-02-20 22:10 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2022-02-20 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-02-20 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2022-02-20 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-02-20 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2022-02-20 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-02-20 22:10 - 2018-04-12 17:22 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2022-02-20 22:10 - 2016-07-23 10:24 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2022-02-20 22:10 - 2011-10-21 00:33 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
2022-02-20 22:10 - 2011-02-18 21:08 - 000000000 ____D C:\WINDOWS\system32\SPReview
2022-02-20 22:09 - 2021-07-30 14:44 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-02-20 22:09 - 2021-02-21 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2022-02-20 22:09 - 2020-05-07 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Manuel Canon TS3300 series
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files\Windows Sidebar
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\schemas
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2022-02-20 22:09 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-20 22:09 - 2019-07-20 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2022-02-20 22:09 - 2018-10-28 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zwift
2022-02-20 22:09 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2022-02-20 22:09 - 2018-02-01 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synology
2022-02-20 22:09 - 2017-07-26 17:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-20 22:09 - 2017-07-07 09:15 - 000000000 ____D C:\Program Files\UNP
2022-02-20 22:09 - 2016-10-13 20:18 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2022-02-20 22:09 - 2015-10-30 20:03 - 000000000 ____D C:\WINDOWS\ShellNew
2022-02-20 22:09 - 2015-05-02 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2022-02-20 22:09 - 2015-03-08 08:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scribus 1.4.5
2022-02-20 22:09 - 2014-06-03 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MonAlbumPhoto
2022-02-20 22:09 - 2013-12-13 11:07 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2022-02-20 22:09 - 2013-08-07 14:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-20 22:09 - 2013-03-10 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TreeSize Free
2022-02-20 22:09 - 2012-09-30 07:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2022-02-20 22:09 - 2012-08-22 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2022-02-20 22:09 - 2011-12-04 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2 Runtime Environment
2022-02-20 22:09 - 2011-11-01 09:52 - 000000000 __SHD C:\WINDOWS\system32\%APPDATA%
2022-02-20 22:09 - 2011-10-20 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2022-02-20 22:09 - 2011-10-20 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2022-02-20 22:09 - 2011-10-18 23:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-20 22:09 - 2011-10-14 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2022-02-20 22:09 - 2011-08-11 16:48 - 000000000 ____D C:\Program Files\Intel
2022-02-20 22:09 - 2011-08-11 16:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2022-02-20 22:09 - 2011-08-11 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
2022-02-20 22:09 - 2011-04-13 03:46 - 000000000 ____D C:\WINDOWS\en
2022-02-20 22:09 - 2011-04-13 03:44 - 000000000 ____D C:\WINDOWS\ru
2022-02-20 22:09 - 2011-04-13 03:44 - 000000000 ____D C:\WINDOWS\de
2022-02-20 22:09 - 2011-04-13 03:44 - 000000000 ____D C:\WINDOWS\ar
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\nl
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\it
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\he
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\fr
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\es
2022-02-20 22:09 - 2011-04-13 03:43 - 000000000 ____D C:\WINDOWS\el
2022-02-20 22:09 - 2011-04-13 03:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2022-02-20 22:09 - 2011-04-13 03:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance
2022-02-20 22:09 - 2011-02-18 20:48 - 000000000 ____D C:\WINDOWS\system32\EventProviders
2022-02-20 22:09 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2022-02-20 22:09 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2022-02-20 22:08 - 2020-11-18 13:55 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-02-20 22:08 - 2017-02-07 05:49 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2022-02-20 22:08 - 2016-10-21 20:16 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier
2022-02-20 22:08 - 2012-10-17 20:07 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Compta Expert5
2022-02-20 22:08 - 2011-10-18 23:38 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-20 22:08 - 2011-10-18 22:42 - 000000000 ____D C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Capturino V2.20
2022-02-20 22:00 - 2009-07-29 07:03 - 000008192 __RSH C:\BOOTSECT.BAK
2022-02-20 21:59 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2022-02-20 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-02-20 21:51 - 2016-07-23 09:10 - 000000001 ___SH C:\BOOTNXT
2022-02-20 21:50 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2022-02-20 21:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-20 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources
2022-02-20 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-20 21:15 - 2016-07-23 10:24 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2022-02-20 21:14 - 2017-07-26 17:47 - 000000000 ____D C:\Program Files\Synaptics
2022-02-20 21:14 - 2017-07-26 17:47 - 000000000 ____D C:\Program Files\Realtek
2022-02-20 21:14 - 2017-03-29 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2022-02-20 21:14 - 2016-01-14 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie
2022-02-20 21:14 - 2014-01-05 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2022-02-20 21:14 - 2012-07-15 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RentASoft
2022-02-20 21:14 - 2011-08-11 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virage Logic, Corp
2022-02-20 21:14 - 2011-04-13 03:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\syncables
2022-02-20 21:14 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2022-02-20 21:11 - 2018-03-08 02:21 - 000000000 ____D C:\Users\Rom\AppData\Local\Packages
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-02-20 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-20 20:48 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-20 20:05 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\OCR
2022-02-20 20:00 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-02-20 20:00 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\winrm
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\WCN
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\slmgr
2022-02-20 20:00 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\dsc
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-20 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-02-20 19:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-02-20 19:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-02-20 18:45 - 2008-11-02 22:33 - 000000000 ____D C:\Users\Rom\Documents\Azureus Downloads
2022-02-16 20:35 - 2018-02-01 22:29 - 000000000 ____D C:\Users\Rom\AppData\Local\CloudStationBackup
2022-02-16 20:23 - 2011-10-17 19:50 - 000000000 ____D C:\ProgramData\Garmin
2022-02-16 20:21 - 2016-09-25 21:50 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-16 20:20 - 2011-10-17 19:50 - 000000000 ____D C:\Program Files (x86)\Garmin
2022-02-13 17:02 - 2012-08-22 13:47 - 000000000 ____D C:\ProgramData\HP
2022-02-13 17:00 - 2012-08-22 13:51 - 000000000 ____D C:\Program Files (x86)\HP
2022-02-13 16:48 - 2021-02-19 20:09 - 000000000 ____D C:\Users\Rom\AppData\Local\Notepad
2022-02-13 16:47 - 2011-10-18 23:38 - 000000000 ____D C:\Program Files (x86)\WinRAR
2022-02-13 15:11 - 2011-10-25 05:42 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-09 09:19 - 2021-09-24 20:55 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-02-09 09:19 - 2021-09-24 20:55 - 000001901 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-02-09 09:19 - 2021-09-24 20:55 - 000001901 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-02-09 09:19 - 2021-09-24 20:55 - 000001889 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-02-09 09:19 - 2019-11-15 00:26 - 000001865 _____ C:\Users\Rom\Desktop\Google Drive.lnk
==================== Fichiers à la racine de certains dossiers ========
2009-07-29 06:21 - 2009-07-28 19:31 - 000000223 _____ () C:\ProgramData\setwallpaper.cmd
2009-07-29 06:21 - 2009-07-23 02:04 - 000024576 _____ () C:\ProgramData\SetWallpaper.exe
2019-01-16 20:58 - 2019-01-16 20:58 - 003301760 _____ () C:\Users\Rom\ZHPCleaner.exe
2019-01-17 09:39 - 2019-01-17 09:39 - 003191680 _____ () C:\Users\Rom\ZHPDiag3.exe
2021-04-19 17:09 - 2021-04-19 17:09 - 003468440 _____ (Nicolas Coolman) C:\Users\Rom\ZHPSuite.exe
2019-03-30 20:46 - 2019-03-30 20:46 - 007505920 _____ () C:\Program Files (x86)\GUT6A73.tmp
2021-01-30 19:36 - 2021-01-30 19:36 - 000000000 _____ () C:\Program Files (x86)\GUTB483.tmp
2014-04-18 17:54 - 2014-06-03 06:38 - 000003744 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-13 12:08 - 2013-12-16 19:19 - 000000132 _____ () C:\Users\Rom\AppData\Roaming\Adobe PNG Format CS5 Prefs
2011-10-18 23:38 - 2011-10-18 23:38 - 000000000 ____H () C:\Users\Rom\AppData\Roaming\K1jG8f8KihtF
2011-10-18 23:38 - 2011-10-19 00:09 - 000000679 _____ () C:\Users\Rom\AppData\Roaming\logs
2013-08-28 20:49 - 2013-08-28 20:49 - 000007638 _____ () C:\Users\Rom\AppData\Local\Resmon.ResmonCfg
==================== SigCheckExt =========================
2011-08-11 16:54 - 2011-10-17 12:01 - 000045056 _____ C:\WINDOWS\system32\acovcnt.exe
2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-07-23 21:13 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-04-12 22:19 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2010-07-23 09:55 - 2010-07-23 09:55 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll
2010-07-23 09:55 - 2010-07-23 09:55 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll
2010-07-23 09:55 - 2010-07-23 09:55 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll
2010-07-23 09:55 - 2010-07-23 09:55 - 000057344 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll
2010-07-23 09:55 - 2010-07-23 09:55 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll
2010-01-19 15:12 - 2010-01-19 15:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL
2009-11-27 12:15 - 2009-11-27 12:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000079872 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll
2017-03-15 21:05 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2011-05-02 22:23 - 2011-05-02 22:23 - 001793024 _____ (Intel(R) Corporation) C:\WINDOWS\system32\iwmssvc.dll
2016-07-13 22:50 - 2016-06-10 21:11 - 001359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll
2012-09-30 06:59 - 2012-08-21 22:01 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\OxpsConverter.exe
2011-05-02 22:21 - 2011-05-02 22:21 - 000614400 _____ (Intel(R) Corporation) C:\WINDOWS\system32\PanIhvUi.dll
2012-04-24 20:00 - 2012-03-14 17:23 - 000065024 _____ (pdfforge GbR) C:\WINDOWS\system32\pdfcmon.dll
2015-02-17 20:14 - 2015-01-09 04:14 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll
2012-06-13 23:02 - 2012-04-26 06:34 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrmemptylst.exe
2011-05-02 21:48 - 2011-05-02 21:48 - 000019456 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\S24NCfg.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2015-09-08 23:45 - 2015-07-22 17:48 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2012-11-18 10:34 - 2012-07-26 03:36 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wdfres.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2011-05-02 22:19 - 2011-05-02 22:19 - 001216000 _____ (Intel(R) Corporation) C:\WINDOWS\system32\wlihvui.dll
2016-03-09 16:35 - 2016-02-12 19:18 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2011-12-04 22:33 - 1998-01-23 12:22 - 000304128 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2011-06-08 21:33 - 2011-06-08 21:33 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\msvcr71.dll
2011-06-08 21:33 - 2011-06-08 21:33 - 000434252 _____ (Microsoft Corporation) C:\WINDOWS\MSVCRTD.DLL
2015-10-30 08:19 - 2016-07-23 10:24 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-12 12:01 - 2013-05-12 12:01 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-12 12:02 - 2013-05-12 12:02 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2010-06-10 14:46 - 1998-07-13 00:00 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CMDLGFR.DLL
2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2011-08-11 16:35 - 2010-12-23 04:09 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2013-05-12 12:52 - 2012-04-08 23:40 - 000079360 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll
2010-08-06 11:13 - 2010-08-06 11:13 - 000050688 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll
2010-08-06 11:13 - 2010-08-06 11:13 - 000034816 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-10-30 08:19 - 2016-07-23 10:24 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2010-06-10 14:46 - 2008-04-16 00:03 - 000180224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ijl11.dll
2017-03-15 21:05 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2010-06-10 14:46 - 1998-07-12 23:00 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETFR.DLL
2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2013-12-19 12:19 - 2013-12-19 12:19 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsIntl.dll
2012-11-16 09:53 - 2012-11-16 09:53 - 000434176 _____ (The cURL library, hxxp://curl.haxx.se/) C:\WINDOWS\SysWOW64\libcurld.dll
2010-06-10 14:46 - 1998-07-13 01:00 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCIFR.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqad.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcmiplugin.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqmigplugin.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2015-10-30 08:19 - 2016-07-23 10:23 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsec.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-10-30 08:19 - 2016-07-23 10:23 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2012-04-24 20:00 - 1998-07-13 01:08 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCC2FR.DLL
2010-06-10 14:46 - 1998-07-13 00:00 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCMCFR.DLL
2016-07-13 22:50 - 2016-06-10 19:09 - 001155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmlmedia.dll
2012-04-24 20:00 - 1998-07-06 00:00 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPIDE.DLL
2010-06-10 14:46 - 1998-07-12 23:00 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPIFR.DLL
2010-06-10 14:46 - 2001-08-24 13:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2009-05-21 19:21 - 2009-05-21 19:21 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2002-01-05 09:37 - 2002-01-05 09:37 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2009-05-21 17:57 - 2009-05-21 17:57 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2009-05-14 05:22 - 2009-05-14 05:22 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll
2011-02-11 22:23 - 2011-02-11 22:23 - 000053299 _____ C:\WINDOWS\SysWOW64\pthreadVC.dll
2012-11-16 09:53 - 2012-11-16 09:53 - 000079360 _____ (GnuWin32 ) C:\WINDOWS\SysWOW64\regex2.dll
2010-06-10 14:46 - 2000-10-02 01:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.DLL
2010-06-10 14:46 - 2000-07-15 01:00 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL
2010-06-10 14:46 - 2005-10-14 09:57 - 000237568 _____ (EnAppSys Ltd) C:\WINDOWS\SysWOW64\vbXML.dll
2010-06-10 14:46 - 2005-10-16 15:34 - 000151552 _____ (EnAppSys Ltd) C:\WINDOWS\SysWOW64\vbXMLRPC.dll
2015-10-30 08:19 - 2016-07-23 10:24 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2011-08-11 16:44 - 2010-12-21 02:08 - 000008192 _____ C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2009-07-29 06:21 - 2009-07-23 02:04 - 000024576 _____ C:\ProgramData\SetWallpaper.exe
2019-01-16 20:58 - 2019-01-16 20:58 - 003301760 _____ C:\Users\Rom\ZHPCleaner.exe
2019-01-17 09:39 - 2019-01-17 09:39 - 003191680 _____ C:\Users\Rom\ZHPDiag3.exe
2021-04-19 17:09 - 2021-04-19 17:09 - 003468440 _____ (Nicolas Coolman) C:\Users\Rom\ZHPSuite.exe
2022-02-17 23:39 - 2022-02-27 16:36 - 002312192 _____ (Farbar) C:\Users\Rom\Desktop\FRST64.exe
2022-02-23 20:07 - 2022-02-23 20:08 - 003293336 _____ (Nicolas Coolman) C:\Users\Rom\Desktop\ZHPCleaner.exe
2022-02-23 20:14 - 2022-02-23 20:14 - 003302272 _____ C:\Users\Rom\Desktop\zhpcleaner_2019.1.17.9.exe
2022-02-17 23:33 - 2022-02-17 23:33 - 003479704 _____ (Nicolas Coolman) C:\Users\Rom\Desktop\ZHPSuite.exe
2021-04-20 14:31 - 2021-04-20 14:31 - 002811112 _____ (kernel-panik) C:\Users\Rom\Downloads\kprm_2.9.exe
2012-02-12 14:25 - 2009-07-10 11:57 - 002195456 _____ (ZoneFiveSoftware) C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SportTracks.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=C:
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {08c5c193-0b51-11eb-af96-c7e1bdac9d27}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {08c5c191-0b51-11eb-af96-c7e1bdac9d27}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{08c5c192-0b51-11eb-af96-c7e1bdac9d27}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{08c5c192-0b51-11eb-af96-c7e1bdac9d27}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {e64a428e-9291-11ec-afd2-f3e4c4dd170e}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {08c5c193-0b51-11eb-af96-c7e1bdac9d27}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {8cb2d9b4-7c05-11de-842e-b4611d44fefa}
device ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{8cb2d9b5-7c05-11de-842e-b4611d44fefa}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\Winre.wim,{8cb2d9b5-7c05-11de-842e-b4611d44fefa}
systemroot \windows
nx OptIn
winpe Yes
Installation de Windows
-----------------------
identificateur {cbd971bf-b7b8-4885-951a-fa03044f5d71}
device ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{08c5c195-0b51-11eb-af96-c7e1bdac9d27}
bootstatdevice partition=C:
custom:11000083 partition=C:
path \windows\system32\winload.exe
description Windows Rollback
locale fr-FR
bootstatfilepath \$WINDOWS.~BT\Sources\SafeOS\bootstat.dat
inherit {bootloadersettings}
restartonfailure Yes
osdevice ramdisk=[C:]\$WINDOWS.~BT\Sources\SafeOS\winre.wim,{08c5c195-0b51-11eb-af96-c7e1bdac9d27}
custom:21000152 partition=C:
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {d4e53ba9-7229-11e7-8565-ac52b3054ba4}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d4e53baa-7229-11e7-8565-ac52b3054ba4}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{d4e53baa-7229-11e7-8565-ac52b3054ba4}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {e64a428e-9291-11ec-afd2-f3e4c4dd170e}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{e64a428f-9291-11ec-afd2-f3e4c4dd170e}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{e64a428f-9291-11ec-afd2-f3e4c4dd170e}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {0072d556-0b59-11eb-b8d3-80538e2740e7}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {08c5c191-0b51-11eb-af96-c7e1bdac9d27}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {08c5c193-0b51-11eb-af96-c7e1bdac9d27}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {e64a428e-9291-11ec-afd2-f3e4c4dd170e}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {8cb2d9b0-7c05-11de-842e-b4611d44fefa}
device boot
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {08c5c192-0b51-11eb-af96-c7e1bdac9d27}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {08c5c195-0b51-11eb-af96-c7e1bdac9d27}
description Windows Setup
ramdisksdidevice partition=C:
ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {8cb2d9b5-7c05-11de-842e-b4611d44fefa}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\8cb2d9b4-7c05-11de-842e-b4611d44fefa\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {e64a428f-9291-11ec-afd2-f3e4c4dd170e}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================