cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Exécuté par GB (administrateur) sur DESKTOP-AMODNS9 (Dell Inc. Dell System XPS L502X) (20-10-2022 11:09:39)
Exécuté depuis D:\bureau
Profils chargés: GB
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Brave
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCopyAccelerator.exe
(cmd.exe ->) (AntGROUP) [Fichier non signé] C:\Program Files (x86)\Ant Download Manager\antCH\antCH.exe
(D:\bureau\ZHPSuite.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <32>
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\65.0.4.0\crashpad_handler.exe <2>
(explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] D:\bureau\ZHPSuite.exe
(explorer.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) ("STMicroelectronics Srl" -> ) C:\Windows\System32\drivers\DellFFDPWmiService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe
(services.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Wireguard.Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [ctfmon] => C:\Windows\System32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2020-09-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2020-09-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [adm_tray.exe] => C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe [470240 2011-02-24] (Acronis, Inc -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY (Pas de fichier)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [AntDM] => C:\Program Files (x86)\Ant Download Manager\AntDM.exe [4805120 2021-02-01] (AntGROUP) [Fichier non signé]
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [Clavier+] => C:\Users\GB\AppData\Local\Clavier+\Clavier.exe [113664 2013-11-09] (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé]
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [PrivadoVPN] => C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe [6116488 2022-09-23] (Privado Networks LLC -> Privado Networks AG)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [MicrosoftEdgeAutoLaunch_FA9A8B9B95AF6AC163FDC89F3FE38723] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\RunOnce: [Application Restart #0] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2968368 2022-10-12] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp250: C:\Windows\System32\spool\prtprocs\x64\hpcpp250.dll [850024 2020-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW082.DLL [127592 2020-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\HPMLM225: C:\Windows\system32\hpmlm225.dll [315496 2020-08-20] (HP Inc. -> HP Inc.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2152704 2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-14] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\106.1.44.112\Installer\chrmstp.exe [2022-10-14] (Brave Software, Inc. -> Brave Software, Inc.)
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinitx.dll [209128 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinit.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinit.dll [182592 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
Startup: C:\Users\GB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2022-03-07]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04737CBB-C5A8-4E1A-8423-401A0E42CB15} - System32\Tasks\CCleanerSkipUAC - GB => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {088BF272-CB38-4AA9-9833-4DF067DA0A78} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {21FBB3F5-D4F5-4CFC-9102-8E531FF2F553} - System32\Tasks\GoogleUpdateTaskMachineUA{42390537-EB41-47C9-BFA5-42117CC5A76C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-05] (Google LLC -> Google LLC)
Task: {282D8D0A-182D-4C04-9AA5-5CB74878A184} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {38657463-A11E-43F8-B27C-6DE509226644} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {594843CD-AD29-493F-93AE-5EDD5E4D210A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "eb6d86eb-3785-45a0-8e09-21e984a4ac46" --version "6.04.10044" --silent
Task: {618E1278-504E-477F-960D-CBFBCFF9652C} - \KMSpico Automatic Update Scheduler -> Pas de fichier <==== ATTENTION
Task: {80EC9030-AB1A-4647-9B6B-10A8F4DA95AF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{10A18972-6A0F-48C9-B755-0E71BEF6E732} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {8CAC3251-8AA3-4F22-A757-413AA90A28E1} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé] <==== ATTENTION
Task: {9AC1C950-4B95-419A-A912-F38301CB2FFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AC69561D-A541-42CB-B342-60E67B201888} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {ACEA572D-549C-4821-BD9A-3453A00D43EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B5C49F38-60BE-42DC-90D6-7C35B8412724} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE4062F7-3AEB-494B-8496-3746B901E164} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{451A49EF-C16A-4EE8-BF50-E62EA04BEE11} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C93BD63A-E734-47BA-8247-A18DE38B9283} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E7E435CE-0F83-4F90-BE3B-A9D6CD729D69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F96A114B-6093-484D-967F-DECFD7220F75} - System32\Tasks\GoogleUpdateTaskMachineCore{3691DE51-FCE1-4CCE-A079-F48A93433A3D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-05] (Google LLC -> Google LLC)
Task: {FACE6B0E-5462-4882-BC21-66F0CCC1BA79} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{04EB05DB-775B-455D-BFF8-ADBD7D21C2CC}] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{5955054E-85D0-4B59-AC04-A4082D2C2D04}] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{5C1E644A-1EE6-41F5-921D-822D6187A160}] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{D4F01BD5-72EF-47A1-84DD-67DE02906643}] => hxxp://127.0.0.1:86/ <==== ATTENTION
AutoConfigURL: [{FDC04062-72DA-4C6B-8863-2E1AE7226D4C}] => hxxp://127.0.0.1:86/ <==== ATTENTION
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\..\Interfaces\{0a66040f-e108-493a-8f5b-26de8a6c31fe}: [DhcpNameServer] 198.18.0.1 198.18.0.2
Tcpip\..\Interfaces\{1a6b1ee8-8fa1-4af1-9942-52db6ea5735f}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{634039EC-05BF-4716-A567-C4B5C106BFE7}: [NameServer] 198.18.0.1 198.18.0.2
Tcpip\..\Interfaces\{7486506b-1fed-46ef-9e27-c66c4c165a8a}: [NameServer] 1.1.1.1,8.8.8.8
Tcpip\..\Interfaces\{7486506b-1fed-46ef-9e27-c66c4c165a8a}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{9378331d-a0df-4f35-a546-b2f4cfc2e246}: [DhcpNameServer] 198.18.0.1 198.18.0.2
Tcpip\..\Interfaces\{a97c2990-2925-4631-9a9c-90ea30c69290}: [DhcpNameServer] 198.18.0.1 198.18.0.2
Tcpip\..\Interfaces\{bca714e5-e1e9-467a-8b46-ac72546688e0}: [NameServer] 198.18.0.1,198.18.0.2
ManualProxies: 0hxxp://127.0.0.1:86/ <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\GB\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-20]
Edge Notifications: Default -> hxxps://slickperfect.com; hxxps://webslick24.com

FireFox:
========
FF DefaultProfile: 3kn31g63.default
FF ProfilePath: C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default [2022-10-18]
FF Extension: (Dictionnaire français) - C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2021-05-02]
FF Extension: (Français Language Pack) - C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-05-02]
FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-02-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-02-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconfig.js [2018-11-08] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\cck2.cfg [2018-11-08] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default [2022-10-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]

Opera:
=======
OPR Profile: C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable [2022-10-18]
OPR DefaultSuggestURL: Opera Stable -> hxxps://suggest.yandex.ru/suggest-ya.cgi?v=4&part={searchTerms}&l10n={language}
OPR Extension: (Rich Hints Agent) - C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-10]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-26]

Brave:
=======
BRA Profile: C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-10-20]
BRA Extension: (Google Traduction) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-13]
BRA Extension: (Onglets verticaux pour Google Chrome ™) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\acnamgmgmbamffefgplhkplaanebgkac [2022-08-16]
BRA Extension: (Privacy Pass) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2022-06-17]
BRA Extension: (CookiesBlock - cookie pop-ups) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajkknbgennjgacpfbhdobipfhhikbldg [2022-06-25]
BRA Extension: (Video Downloader professional) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2021-01-07]
BRA Extension: (Girl with a Lantern) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bhmcheeokigdlgjepckedmelfolakjmh [2022-04-14]
BRA Extension: (Sidewise Tree Style Tabs) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\biiammgklaefagjclmnlialkmaemifgo [2021-03-14]
BRA Extension: (Download with Ant Download Manager) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dalgiebmfcjackkbjfbfmlnflbdfbekj [2021-03-17]
BRA Extension: (AutoplayStopper) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ejddcgojdblidajhngkogefpkknnebdh [2022-09-23]
BRA Extension: (Convertio) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-05-09]
BRA Extension: (Helium Backup) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2020-12-05]
BRA Extension: (LastPass: Free Password Manager) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-09-23]
BRA Extension: (Bloqueur vidéo) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kkgpdmegkhdheglikjleejknplhdpbck [2022-01-16]
BRA Extension: (The Flash Video Downloader) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmieilamoollaknppoffbmdgdcolcafa [2021-10-02]
BRA Extension: (My IP address) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\monhkdcehmbdgkhgpccaccbbcgcfpjkd [2022-08-07]
BRA Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2022-07-19]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-10-20]
BRA Extension: (Brave NTP background images) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-20]
BRA Extension: (Wallet Data Files Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-09-23]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-10-20]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-10-20]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-13]
BRA Extension: (Brave NTP sponsored images) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2022-10-20]
BRA Extension: (Crypto Wallets) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2020-12-05]
BRA Extension: (PDF Viewer) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2020-12-05]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-10-19]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [881760 2011-02-12] (Acronis, Inc -> Acronis)
S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2022-02-25] (Apple Inc. -> Apple Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-14] (Microsoft Corporation -> Microsoft Corporation)
S3 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [284720 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.)
S3 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3563568 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.)
S3 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [490032 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.)
S3 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [37056 2020-07-29] (Dell Inc -> )
R2 DellFFDPWmiService; C:\WINDOWS\System32\drivers\DellFFDPWmiService.exe [32528 2020-02-17] ("STMicroelectronics Srl" -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4959176 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2020-10-01] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 Everything; C:\Program Files\Everything\Everything.exe [2261832 2020-11-27] (voidtools -> voidtools)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2021-12-20] (Malwarebytes Inc -> Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-02] (HP Inc.) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-02] (HP Inc.) [Fichier non signé]
R2 PrivadoVPN.Service; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe [64136 2022-09-23] (Privado Networks LLC -> Privado Networks AG)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-09-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2020-09-02] (Dell Inc. -> Dell Inc.)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-02] (Miroslav Topolar -> Mister Group)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WireGuardTunnel$PrivadoVPN; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Wireguard.Service.exe [20616 2022-09-23] (Privado Networks LLC -> Privado Networks AG)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [433168 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [29096 2020-08-21] (Hewlett-Packard Company -> Hewlett Packard)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-12-22] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl86e7ed2e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8471AC34-3C90-4C52-A753-E2BECDC326D1}\MpKslDrv.sys [228632 2022-10-20] (Microsoft Windows -> Microsoft Corporation)
R3 PrivadoVPNSplitTunneling; C:\WINDOWS\system32\DRIVERS\PrivadoVPNSplitTunneling.sys [32984 2022-08-08] (Privado Networks LLC -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [455968 2022-10-14] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-14] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2021-12-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-09-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Trois mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-10-19 19:35 - 2022-10-20 10:44 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-10-19 19:35 - 2022-10-20 10:44 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-10-19 19:35 - 2022-10-19 19:35 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-18 15:15 - 2022-10-18 15:15 - 000002892 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - GB
2022-10-18 14:22 - 2022-10-18 14:22 - 000000000 ____D C:\WINDOWS\Panther
2022-10-17 18:48 - 2022-10-20 11:11 - 000000000 ____D C:\FRST
2022-10-15 10:23 - 2022-10-15 10:23 - 000000000 ____D C:\Users\GB\AppData\Roaming\AdvertismentImages
2022-10-14 12:13 - 2022-10-14 12:13 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-05 10:01 - 2022-10-05 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivadoVPN
2022-10-05 10:01 - 2022-10-05 10:01 - 000000000 ____D C:\Program Files (x86)\PrivadoVPN
2022-09-23 09:48 - 2022-09-23 09:48 - 000000000 ___HD C:\$WinREAgent
2022-09-23 09:44 - 2022-09-23 09:44 - 000000000 ____D C:\Users\GB\AppData\Roaming\com.adobe.dunamis
2022-09-20 15:58 - 2022-09-20 15:58 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-09-20 15:58 - 2022-09-20 15:58 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-09-20 15:57 - 2022-09-20 15:57 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-09-20 15:57 - 2022-09-20 15:57 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-09-20 15:57 - 2022-09-20 15:57 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-09-20 15:57 - 2022-09-20 15:57 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-09-20 15:57 - 2022-09-20 15:57 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-09-20 15:57 - 2022-09-20 15:57 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-09-20 15:56 - 2022-09-20 15:56 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-09-20 15:56 - 2022-09-20 15:56 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-09-20 15:56 - 2022-09-20 15:56 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-09-20 15:56 - 2022-09-20 15:56 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-09-20 15:56 - 2022-09-20 15:56 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-09-20 15:56 - 2022-09-20 15:56 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-09-20 15:56 - 2022-09-20 15:56 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-20 15:55 - 2022-09-20 15:55 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-09-20 15:55 - 2022-09-20 15:55 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-09-20 15:54 - 2022-09-20 15:54 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-20 15:53 - 2022-09-20 15:53 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-09-20 15:53 - 2022-09-20 15:53 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-09-20 15:53 - 2022-09-20 15:53 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-09-20 15:53 - 2022-09-20 15:53 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-09-20 15:52 - 2022-09-20 15:52 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-20 15:52 - 2022-09-20 15:52 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-09-20 15:52 - 2022-09-20 15:52 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-09-20 05:53 - 2022-09-20 05:53 - 000489368 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wireguard.sys
2022-09-12 09:47 - 2022-10-20 11:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-08-30 16:23 - 2022-08-30 16:23 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{42390537-EB41-47C9-BFA5-42117CC5A76C}
2022-08-30 16:23 - 2022-08-30 16:23 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{3691DE51-FCE1-4CCE-A079-F48A93433A3D}
2022-08-20 08:23 - 2022-08-20 08:23 - 000000000 ____D C:\Users\GB\AppData\Local\AutodeskDesktopApp
2022-08-20 08:22 - 2022-08-20 08:22 - 000000036 _____ C:\WINDOWS\SysWOW64\id.dat
2022-08-16 10:13 - 2022-08-16 10:13 - 000003688 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{451A49EF-C16A-4EE8-BF50-E62EA04BEE11}
2022-08-16 10:13 - 2022-08-16 10:13 - 000003564 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{10A18972-6A0F-48C9-B755-0E71BEF6E732}

==================== Trois mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-10-20 11:11 - 2020-12-07 21:01 - 000000000 ____D C:\Users\GB\AppData\LocalLow\Mozilla
2022-10-20 10:56 - 2021-03-18 19:30 - 000000000 ____D C:\Users\GB\AppData\Roaming\ZHP
2022-10-20 10:44 - 2021-02-04 18:00 - 000000000 ____D C:\Program Files\CCleaner
2022-10-20 10:44 - 2020-12-07 20:43 - 000000000 ____D C:\ProgramData\PrivadoVPN
2022-10-20 10:43 - 2020-12-05 16:33 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-20 10:41 - 2020-12-12 15:22 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-20 10:41 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-20 10:40 - 2022-03-07 09:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-20 10:40 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-20 10:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-10-20 10:37 - 2020-12-05 17:28 - 000000000 ____D C:\Users\GB\AppData\Local\Everything
2022-10-20 10:37 - 2020-12-05 16:18 - 000000000 ____D C:\Users\GB\AppData\Roaming\Everything
2022-10-20 09:55 - 2022-03-07 09:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-20 09:44 - 2021-09-10 19:07 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-10-20 09:38 - 2020-12-05 19:33 - 000000000 ____D C:\ProgramData\SystemExplorer
2022-10-19 19:36 - 2020-12-05 19:55 - 000000000 ____D C:\Program Files\Google
2022-10-19 19:08 - 2022-03-07 09:58 - 000441968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-19 11:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-19 11:37 - 2022-06-20 15:48 - 000000000 ____D C:\Program Files (x86)\Autodesk
2022-10-19 11:37 - 2022-06-20 15:14 - 000000000 ____D C:\ProgramData\Autodesk
2022-10-18 19:52 - 2021-01-31 17:33 - 000000000 ____D C:\Users\GB\AppData\Roaming\vlc
2022-10-18 19:51 - 2022-03-07 09:22 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-18 19:51 - 2019-12-07 16:50 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat
2022-10-18 19:51 - 2019-12-07 16:50 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat
2022-10-18 19:51 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-18 16:09 - 2020-12-11 12:01 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-10-18 16:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-18 16:05 - 2022-05-07 15:05 - 000000000 ____D C:\WINDOWS\Minidump
2022-10-18 15:57 - 2020-12-05 16:04 - 000000000 ____D C:\Users\GB\AppData\Local\Packages
2022-10-18 15:54 - 2020-12-05 16:39 - 000000000 ____D C:\Users\GB\AppData\Local\PlaceholderTileLogoFolder
2022-10-18 15:51 - 2022-06-20 15:26 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2022-10-18 15:36 - 2022-06-26 18:11 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-18 15:36 - 2022-06-26 18:11 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d831f3291cfd8e
2022-10-18 15:24 - 2020-12-12 19:20 - 000000000 ____D C:\Users\GB\AppData\Local\CrashDumps
2022-10-17 19:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-17 19:11 - 2020-09-27 09:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-17 09:06 - 2021-12-20 20:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2022-10-16 20:25 - 2022-03-07 00:37 - 000000000 ____D C:\Users\GB
2022-10-14 16:49 - 2020-12-27 01:45 - 000000000 ____D C:\Users\GB\AppData\Roaming\dvdcss
2022-10-14 16:08 - 2020-12-05 19:55 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-14 12:13 - 2022-07-21 12:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-14 11:24 - 2020-12-06 20:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-10-14 11:24 - 2020-12-05 18:32 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-10-14 11:19 - 2020-09-27 09:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-10-09 19:14 - 2021-01-20 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer
2022-10-09 19:14 - 2021-01-20 19:40 - 000000000 ____D C:\Program Files (x86)\Ant Renamer
2022-10-08 14:08 - 2020-12-05 16:18 - 000000000 ____D C:\Program Files\Everything
2022-10-05 10:01 - 2021-12-24 21:36 - 000000466 __RSH C:\ProgramData\ntuser.pol
2022-10-05 10:01 - 2020-12-07 20:43 - 000000000 ____D C:\ProgramData\Package Cache
2022-09-22 10:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-22 10:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-09-22 10:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-09-22 10:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-09-22 10:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-20 16:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-20 16:37 - 2020-12-07 12:01 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-20 16:27 - 2020-12-07 12:00 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-20 15:52 - 2022-03-07 10:01 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

==================== Fichiers à la racine de certains dossiers ========

2021-01-08 03:29 - 2021-01-08 03:29 - 019470392 _____ (TeamViewer) C:\Users\GB\TeamViewerQS.exe
2022-01-25 16:34 - 2008-02-11 12:33 - 000418816 _____ (c't Magazin für Computertechnik) C:\Program Files (x86)\h2testw.exe
2021-08-09 14:01 - 2021-08-09 14:01 - 000000171 _____ () C:\Users\GB\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2020-12-27 02:08 - 2020-12-27 02:08 - 000007859 _____ () C:\Users\GB\AppData\Roaming\pcouffin.cat
2020-12-27 02:08 - 2020-12-27 02:08 - 000001167 _____ () C:\Users\GB\AppData\Roaming\pcouffin.inf
2020-12-27 02:08 - 2020-12-27 02:08 - 000082816 _____ (VSO Software) C:\Users\GB\AppData\Roaming\pcouffin.sys
2021-03-05 15:03 - 2021-03-05 15:03 - 000156725 _____ () C:\Users\GB\AppData\Roaming\Windows Service.vbs
2021-06-07 14:09 - 2022-05-12 21:10 - 000008704 _____ () C:\Users\GB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-12-10 11:21 - 2021-12-10 11:21 - 000000017 _____ () C:\Users\GB\AppData\Local\resmon.resmoncfg
2022-06-21 09:25 - 2022-06-21 09:25 - 000000000 _____ () C:\Users\GB\AppData\Local\{C48EA334-4519-416D-A66A-ADB0861153DD}

==================== SigCheckExt =========================

2020-12-30 19:51 - 2012-07-25 01:00 - 000093696 _____ (Seiko Epson Corporation.) C:\WINDOWS\system32\esxw2_a1.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000052224 _____ (HP Inc.) C:\WINDOWS\system32\hpbmiapi.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000052736 _____ (HP Inc.) C:\WINDOWS\system32\hpboid.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000012800 _____ (HP Inc.) C:\WINDOWS\system32\hpboidps.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000078848 _____ (HP Inc.) C:\WINDOWS\system32\hpbpro.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000013312 _____ (HP Inc.) C:\WINDOWS\system32\hpbprops.dll
2019-02-02 00:40 - 2019-02-02 00:40 - 000070144 _____ (HP Inc.) C:\WINDOWS\system32\HPBWSDR.DLL
2019-02-02 00:10 - 2019-02-02 00:10 - 000180736 _____ (HP Inc.) C:\WINDOWS\system32\hplbddrv.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000067072 _____ (HP Inc.) C:\WINDOWS\system32\HPZidr12.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000050688 _____ (HP Inc.) C:\WINDOWS\system32\HPZinw12.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000066048 _____ (HP Inc.) C:\WINDOWS\system32\HPZipm12.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000047104 _____ (HP Inc.) C:\WINDOWS\system32\HPZipr12.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000038400 _____ (HP Inc.) C:\WINDOWS\system32\hpzipt12.dll
2019-02-02 00:42 - 2019-02-02 00:42 - 000024064 _____ (HP Inc.) C:\WINDOWS\system32\hpzisn12.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll
2022-01-25 16:34 - 2008-02-11 12:33 - 000418816 _____ (c't Magazin für Computertechnik) C:\Program Files (x86)\h2testw.exe
2021-08-26 17:56 - 2020-02-20 19:04 - 000931328 __RSH C:\WINDOWS\flvdec.dll
2020-12-15 11:12 - 1999-05-26 10:46 - 000212480 _____ (Eastman Kodak) C:\WINDOWS\pcdlib32.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2021-08-26 18:01 - 2009-09-27 09:39 - 000401920 ___SH (The Public) C:\WINDOWS\SysWOW64\avisynth.dll
2021-08-26 18:01 - 2005-07-14 12:31 - 000032256 ___SH C:\WINDOWS\SysWOW64\AVSredirect.dll
2021-08-26 18:01 - 2004-02-22 10:11 - 000764416 ___SH (Abysmal Software) C:\WINDOWS\SysWOW64\devil.dll
2021-08-26 17:56 - 2004-07-02 18:33 - 000327749 _____ (RealNetworks, Inc.) C:\WINDOWS\SysWOW64\drvc.dll
2021-08-26 18:01 - 2016-07-12 12:13 - 004646912 ___SH C:\WINDOWS\SysWOW64\ffms2.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000055296 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPZidr12.dll
2019-02-02 00:41 - 2019-02-02 00:41 - 000039424 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPZipr12.dll
2021-08-26 18:01 - 2004-01-25 00:00 - 000070656 ___SH (www.helixcommunity.org) C:\WINDOWS\SysWOW64\i420vfw.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2020-12-05 19:43 - 1987-12-19 23:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2021-08-26 17:56 - 2016-09-02 18:50 - 000214016 __RSH (Florin Ghido, florin.ghido@gmail.com) C:\WINDOWS\SysWOW64\OptimFROG.dll
2021-08-26 17:56 - 2004-10-10 10:50 - 000278528 _____ (Real Networks, Inc) C:\WINDOWS\SysWOW64\pncrt.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll
2021-08-26 17:56 - 2010-01-07 01:00 - 000107520 __RSH C:\WINDOWS\SysWOW64\TAKDSDecoder.dll
2020-12-05 19:43 - 1987-12-19 23:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2021-08-26 17:56 - 2012-10-05 20:54 - 000188416 __RSH C:\WINDOWS\SysWOW64\winDCE32.dll
2021-08-26 18:01 - 2004-01-25 00:00 - 000070656 ___SH (www.helixcommunity.org) C:\WINDOWS\SysWOW64\yv12vfw.dll

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


==================== BCD ================================

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {b539ca8f-9da1-11ec-a563-88532ee4749b}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 3

Chargeur de d‚marrage Windows
-----------------------------
identificateur {6ecd8e6c-9dec-11ec-a564-91051ffed04f}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6ecd8e6d-9dec-11ec-a564-91051ffed04f}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6ecd8e6d-9dec-11ec-a564-91051ffed04f}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Chargeur de d‚marrage Windows
-----------------------------
identificateur {af88e08a-6fe1-4f37-aae9-62e1d864be23}
device ramdisk=[C:]\Aomei\AomeiBoot.wim,{f26c0366-64bc-4e0b-9a8c-440a3af3168d}
description Aomei PE
osdevice ramdisk=[C:]\Aomei\AomeiBoot.wim,{f26c0366-64bc-4e0b-9a8c-440a3af3168d}
systemroot \Windows
detecthal Yes
winpe Yes

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {6ecd8e6c-9dec-11ec-a564-91051ffed04f}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {b539ca8f-9da1-11ec-a563-88532ee4749b}
nx OptIn
bootmenupolicy Standard

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {b539ca8f-9da1-11ec-a563-88532ee4749b}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {6ecd8e6c-9dec-11ec-a564-91051ffed04f}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {6ecd8e6d-9dec-11ec-a564-91051ffed04f}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi

Options de p‚riph‚rique
-----------------------
identificateur {f26c0366-64bc-4e0b-9a8c-440a3af3168d}
ramdisksdidevice partition=C:
ramdisksdipath \Aomei\AomeiBoot.sdi

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité