Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2022
Exécuté par Albert (administrateur) sur DESKTOP-VR8K6UQ (05-11-2022 11:06:06)
Exécuté depuis C:\Users\Albert\Desktop
Profils chargés: Albert
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2130 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\26.0.1.233\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\obkagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(explorer.exe ->) () [Fichier non signé] D:\Programmes\MiniReminder\MiniReminder.exe
(explorer.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(explorer.exe ->) (Newsoft Technology Company -> NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(spool\drivers\x64\3\WrtMon.exe ->) (NewSoft Technology Corporation -> NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [989208 2022-10-04] (Bitdefender SRL -> Bitdefender)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [26448 2008-05-24] (Newsoft Technology Company -> NewSoft Technology Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [587352 2021-12-02] (Acronis International GmbH -> )
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [494640 2022-08-17] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe [1194808 2015-07-07] (ASUSTeK Computer Inc. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4871640 2021-12-02] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-09-26] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3646161690-651857087-4267117286-1001\...\Run: [MicrosoftEdgeAutoLaunch_6B17572A1704D8C13662839B53354D5E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3646161690-651857087-4267117286-1001\...\Run: [GarminExpress] => D:\Programmes\Garmin\Express\express.exe [31298328 2022-10-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\BrPrint: C:\Windows\System32\spool\prtprocs\x64\BRPP64A.DLL [41984 2007-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries ,Ltd)
HKLM\...\Print\Monitors\EPSON WF-7610 Series 64MonitorBE: C:\Windows\system32\E_YLMBKBE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
Startup: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MiniReminder.lnk [2022-04-07]
ShortcutTarget: MiniReminder.lnk -> D:\Programmes\MiniReminder\MiniReminder.exe () [Fichier non signé]
BootExecute: autocheck autochk * 썠G耀ary Utilities 5\data\gulr.dat
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {010E926D-AAB0-48C3-9ACE-B5F22DE1DB71} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {27F35CD3-8A1A-4A95-9CAB-A1B2BE824C20} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {4054A9C8-013F-4034-A9C3-436FE53EF110} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288 2015-06-04] (ASUSTeK Computer Inc. -> TODO:)
Task: {7072D6FD-C821-4036-A319-CB28DF2F953B} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264 2014-05-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {8DFA788C-EEBB-4AA3-ADAC-7D65E643D99C} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.233\WatchDog.exe [1053264 2022-07-25] (Bitdefender SRL -> Bitdefender)
Task: {98C82B55-C15A-4E8D-85F6-34DD1760A4B7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9936DCA4-0627-4D1C-9DED-93467F58E451} - System32\Tasks\CCleaner Update => D:\Programmes\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform)
Task: {9A7AB2AA-B0DD-4D1E-A127-8419D31E0064} - System32\Tasks\CCleanerCrashReporting => D:\Programmes\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "D:\Programmes\CCleaner\LOG" --programpath "D:\Programmes\CCleaner" --configpath "D:\Programmes\CCleaner\Setup" --guid "e34a3ce5-c083-4ca8-ad5b-fb530239c2f5" --version "6.05.10110" --silent
Task: {9CF217AC-A08C-4DD8-8891-CE93D4B947F0} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1873688 2015-06-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C5A69A6B-C625-4273-8791-82E3AE8E1827} - System32\Tasks\ASUS\ASUS Media Streamer DMR => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe [304952 2015-05-12] (ASUSTeK Computer Inc. -> )
Task: {DD20A3FA-AB31-4D7A-AC99-9DD419D9937B} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392 2013-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {E8D7433B-9D9A-4F7B-AF42-189ACD8C1CC1} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Task: {F531DC08-92FF-4AB6-B825-620D144BF01A} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1462584 2015-02-06] (ASUSTeK Computer Inc. -> )
Task: {FC5BB181-DCFF-433C-BC1A-D4EA1F3FAA56} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1275672 2015-06-30] (ASUSTeK Computer Inc. -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => D:\Programmes\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58361e1e-319b-4571-b59b-16561cead59e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74d5c061-195b-4fb1-862f-30095bb7cb01}: [DhcpNameServer] 8.8.8.8
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-04]
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2022-11-04]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]
Edge HKLM-x32\...\Edge\Extension: [pdhdldaneekjpoaldekpgomomeabpnek]
FireFox:
========
FF DefaultProfile: ht95n3fd.default
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\ht95n3fd.default [2022-03-03]
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release [2022-11-05]
FF Extension: (eID Belgique) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release\Extensions\belgiumeid@eid.belgium.be.xpi [2022-03-18]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-11-03]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2021-06-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-09-17] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2022-02-23] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2022-03-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3646161690-651857087-4267117286-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2022-03-03] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2022-03-03] <==== ATTENTION
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2728304 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1212736 2021-12-02] (Acronis International GmbH -> )
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6096688 2022-03-06] (Acronis International GmbH -> )
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [353840 2022-08-16] (Bitdefender SRL -> AnchorFree Inc.)
S3 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> )
S3 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
S3 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [397592 2015-07-02] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2993256 2022-01-28] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [453168 2022-08-17] (Bitdefender SRL -> Bitdefender)
S3 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-13] (Microsoft Windows Hardware Compatibility Publisher -> brother Industries Ltd)
S3 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [878464 2022-02-13] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; D:\Programmes\Glary Utilities 5\GUPMService.exe [71144 2022-04-25] (Glarysoft LTD -> Glarysoft Ltd)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8838880 2022-10-20] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
R2 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-09-26] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1753528 2021-12-02] (Acronis International GmbH -> )
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1740968 2015-07-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [789072 2022-07-25] (Bitdefender SRL -> Bitdefender)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7157960 2021-12-02] (Acronis International GmbH -> )
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [280088 2022-09-23] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 A38CCID; C:\Windows\system32\DRIVERS\a38ccid.sys [86880 2018-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [28472 2015-07-06] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [5118384 2022-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [798128 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [33208 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL)
S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [55864 2021-07-08] (Bitdefender SRL -> Bitdefender)
R1 bdvpn_netfilter; C:\Windows\System32\drivers\bdvpn_netfilter.sys [94600 2021-09-16] (Pango Inc. -> Pango Inc)
S2 BrPar; C:\Windows\SysWOW64\drivers\BrPar.sys [19537 2000-07-24] (Brother Industries Ltd.) [Fichier non signé]
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\Windows\System32\DRIVERS\fltsrv.sys [182832 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 FNETHYRAMAS; C:\Windows\System32\drivers\FNETHYRAMAS.SYS [45688 2022-03-05] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2022-03-05] (FNet Co., Ltd. -> FNet Co., Ltd.)
R0 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1274296 2022-09-23] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2022-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 Ignis; C:\Windows\system32\DRIVERS\ignis.sys [185312 2020-10-07] (Bitdefender SRL -> Bitdefender)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2014-09-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-10-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [213336 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [690520 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [633264 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [480184 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2022-03-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [438520 2022-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 MSICDSetup; \??\H:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\H:\NTIOLib_X64.sys [X]
U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-05 11:06 - 2022-11-05 11:06 - 000029117 _____ C:\Users\Albert\Desktop\FRST.txt
2022-11-05 11:05 - 2022-11-05 11:06 - 000000000 ____D C:\FRST
2022-11-05 11:04 - 2022-11-05 11:04 - 002374656 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2022-11-05 10:58 - 2022-11-05 10:58 - 000396702 _____ C:\Users\Albert\Desktop\ZHPDiag.txt
2022-11-05 10:51 - 2022-11-05 10:51 - 000000866 _____ C:\Users\Albert\Desktop\ZHPSuite.lnk
2022-11-05 10:50 - 2022-11-04 16:23 - 003509960 _____ (Nicolas Coolman) C:\Users\Albert\Desktop\ZHPSuite.exe
2022-11-04 19:59 - 2022-11-05 10:37 - 000003392 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-11-04 19:59 - 2022-11-05 10:37 - 000000736 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2022-11-04 11:18 - 2022-11-05 10:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-11-03 19:01 - 2022-11-03 19:01 - 000000112 ___SH C:\bootTel.dat
2022-10-29 14:27 - 2022-10-29 14:27 - 000101316 _____ C:\ProgramData\agent.update.1667050050.bdinstall.v2.bin
2022-10-28 15:23 - 2022-10-28 15:23 - 000000000 ____D C:\ProgramData\UDL
2022-10-28 15:23 - 2022-10-28 15:23 - 000000000 ____D C:\ProgramData\Sony Corporation
2022-10-28 15:20 - 2018-06-15 03:14 - 000187392 _____ (Seiko Epson Corporation) C:\Windows\system32\E_YLMBKBE.DLL
2022-10-28 15:20 - 2018-06-15 02:04 - 000083968 _____ (Seiko Epson Corporation) C:\Windows\system32\E_YD4BKBE.DLL
2022-10-28 15:20 - 2007-04-10 00:06 - 000010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2022-10-26 17:01 - 2022-10-26 17:01 - 000000702 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adwcleaner.lnk
2022-10-26 16:08 - 2022-11-05 10:58 - 000000000 ____D C:\Users\Albert\AppData\Roaming\ZHP
2022-10-26 16:08 - 2022-11-05 10:51 - 000000000 ____D C:\Users\Albert\AppData\Local\ZHP
2022-10-20 16:44 - 2022-10-20 16:44 - 000000000 ___HD C:\$WinREAgent
2022-10-20 12:26 - 2022-10-29 18:20 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-10-20 12:26 - 2022-10-20 12:26 - 000000000 ____D C:\Users\Albert\AppData\Local\mbam
2022-10-20 12:25 - 2022-10-20 12:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-10-20 12:25 - 2022-10-20 12:25 - 000000000 ____D C:\Program Files\Malwarebytes
2022-10-19 09:58 - 2022-10-19 09:58 - 000002228 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk
2022-10-15 16:30 - 2022-10-15 16:30 - 000000000 ____D C:\Users\Albert\AppData\Local\DBG
2022-10-15 16:30 - 2022-10-15 16:30 - 000000000 ____D C:\ProgramData\dbg
2022-10-12 14:09 - 2022-10-12 14:09 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-12 14:09 - 2022-10-12 14:09 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-10-06 16:56 - 2022-10-06 16:56 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-09-30 14:01 - 2022-09-30 14:52 - 000000000 ___RD C:\Users\Albert\Desktop\Infiltration
2022-09-17 15:30 - 2022-10-19 19:02 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2022-09-17 13:56 - 2022-09-17 13:56 - 000000000 ____D C:\Users\Albert\AppData\Local\MediaPlayer
2022-09-16 13:07 - 2022-09-16 13:07 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-09-16 13:07 - 2022-09-16 13:07 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-09-08 15:11 - 2022-09-08 15:11 - 000001264 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reverso.lnk
2022-08-22 18:15 - 2022-08-22 18:15 - 000235028 _____ C:\ProgramData\vpn.1661188494.bdinstall.v2.bin
2022-08-22 18:15 - 2022-08-22 18:15 - 000086072 _____ C:\ProgramData\vpn.uninstall.1661188494.bdinstall.v2.bin
2022-08-22 18:15 - 2022-08-22 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN
2022-08-10 13:43 - 2022-08-10 13:43 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-10 13:43 - 2022-08-10 13:43 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-10 13:42 - 2022-08-10 13:42 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-10 13:42 - 2022-08-10 13:42 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 13:42 - 2022-08-10 13:42 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-07 19:16 - 2022-10-30 19:33 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-07 19:16 - 2022-08-07 19:16 - 000000000 ____D C:\Windows\system32\lxss
2022-08-07 19:15 - 2022-06-03 05:15 - 001905936 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001905936 _____ C:\Windows\system32\vulkaninfo.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001467840 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001432320 _____ C:\Windows\system32\vulkan-1.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001209408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 002121696 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 001529920 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 001175712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000795736 _____ C:\Windows\system32\nvofapi64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000715944 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000712640 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-08-07 19:15 - 2022-06-03 05:12 - 000636504 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000057440 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 008610448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 007713848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 005101520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 002931872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 001600672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000981672 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000792232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000456848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-08-07 19:15 - 2022-06-03 05:10 - 005729744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-08-07 19:15 - 2022-06-03 05:09 - 006458880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-08-07 19:15 - 2022-06-03 05:09 - 000850080 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-08-07 19:15 - 2022-06-03 04:42 - 000089337 _____ C:\Windows\system32\nvinfo.pb
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-05 10:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-05 10:45 - 2022-03-02 17:12 - 000000000 ____D C:\Users\Albert\AppData\LocalLow\Mozilla
2022-11-05 10:37 - 2022-03-02 16:58 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-05 10:37 - 2019-12-07 15:49 - 000791756 _____ C:\Windows\system32\perfh00C.dat
2022-11-05 10:37 - 2019-12-07 15:49 - 000149922 _____ C:\Windows\system32\perfc00C.dat
2022-11-05 10:37 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-11-05 10:37 - 2019-12-07 10:03 - 000065536 _____ C:\Windows\system32\config\ELAM
2022-11-05 10:32 - 2022-03-02 16:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-05 10:32 - 2022-03-02 16:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-04 20:00 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-11-04 19:57 - 2022-03-02 17:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-11-04 18:54 - 2022-03-02 16:58 - 000000000 ____D C:\Users\Albert\AppData\Local\D3DSCache
2022-11-04 18:53 - 2022-03-03 17:03 - 000000000 ____D C:\Users\Albert\AppData\Local\Mirillis
2022-11-04 18:51 - 2022-05-09 12:28 - 000000000 ____D C:\Users\Albert\AppData\Roaming\vlc
2022-11-04 17:00 - 2022-03-02 16:58 - 000000000 ____D C:\Users\Albert\AppData\Local\Packages
2022-11-04 16:47 - 2022-03-02 16:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-11-04 14:02 - 2022-03-02 17:12 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-11-04 14:02 - 2022-03-02 17:12 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-11-04 13:59 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-11-04 11:28 - 2022-03-03 15:44 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Icecream
2022-11-03 13:23 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-03 13:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-11-01 10:04 - 2022-03-04 14:41 - 000001696 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2022-11-01 10:04 - 2022-03-04 14:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2022-11-01 10:04 - 2022-03-04 14:41 - 000000000 ____D C:\ProgramData\Garmin
2022-11-01 10:04 - 2022-03-04 14:40 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-01 09:50 - 2022-03-04 14:58 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Garmin
2022-10-29 15:04 - 2022-03-03 17:02 - 000002166 _____ C:\Users\Albert\Desktop\Action!.lnk
2022-10-29 14:27 - 2022-03-03 10:08 - 000003846 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2022-10-29 14:27 - 2022-03-03 10:06 - 000000000 ____D C:\Program Files\Bitdefender Agent
2022-10-28 15:36 - 2022-04-08 10:28 - 000000000 ____D C:\Program Files (x86)\Epson Software
2022-10-28 15:36 - 2022-04-08 10:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2022-10-28 15:24 - 2022-04-08 10:29 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Epson
2022-10-28 15:23 - 2022-04-08 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2022-10-28 15:23 - 2022-04-08 10:19 - 000000000 ____D C:\ProgramData\Epson
2022-10-28 15:22 - 2022-04-08 10:22 - 000000000 ____D C:\Program Files (x86)\epson
2022-10-28 15:22 - 2022-03-05 17:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-10-28 12:06 - 2022-03-02 17:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-10-26 17:14 - 2022-03-03 15:27 - 000003930 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-10-22 09:25 - 2022-04-01 12:30 - 000000000 ____D C:\Users\Albert\.fontconfig
2022-10-21 20:31 - 2022-03-03 18:33 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-20 12:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-10-19 09:58 - 2022-03-02 17:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-13 13:17 - 2022-03-03 10:39 - 000000000 ____D C:\Users\Albert\AppData\Local\Microsoft Help
2022-10-12 15:53 - 2022-03-02 16:50 - 000882928 _____ C:\Windows\system32\FNTCACHE.DAT
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-10-12 14:09 - 2022-03-02 16:52 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-10-12 09:11 - 2022-03-02 17:15 - 000000000 ____D C:\Windows\system32\MRT
2022-10-12 09:08 - 2022-03-02 17:15 - 147398024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-10-08 16:23 - 2022-03-03 18:49 - 000000000 ____D C:\Users\Albert\AppData\Local\CrashDumps
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-06 16:57 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-06 16:57 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
==================== Fichiers à la racine de certains dossiers ========
2022-03-03 18:31 - 2022-10-31 10:39 - 000000837 _____ () C:\Users\Albert\AppData\Roaming\FSLog.log
==================== SigCheckExt =========================
2022-03-07 14:57 - 2022-03-07 14:57 - 003945456 _____ (Acronis) C:\Windows\system32\auto_reactivate.exe
2013-05-28 21:23 - 2013-05-28 21:23 - 000652288 _____ C:\Windows\system32\ficvdec_x64.dll
2015-05-07 15:05 - 2015-05-07 15:05 - 000304640 _____ (Intel(R) Corporation) C:\Windows\system32\Ncs2Setp.dll
2022-03-05 18:17 - 2015-07-14 20:05 - 001756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2022-03-05 18:17 - 2015-07-14 20:05 - 001710056 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-03-03 18:18 - 2016-09-29 09:44 - 001298584 _____ C:\Windows\ddmmain.exe
2022-03-06 12:03 - 1998-01-23 11:20 - 000305664 _____ (InstallShield Software Corporation) C:\Windows\IsUn040c.exe
2022-03-05 17:25 - 1998-10-29 16:45 - 000306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2022-03-05 17:25 - 2001-09-10 18:05 - 000087392 _____ (Twain Working Group) C:\Windows\TWAIN.DLL
2022-03-05 17:25 - 2001-09-10 18:05 - 000048560 _____ (Twain Working Group) C:\Windows\Twunk_16.exe
2022-03-05 17:25 - 2001-09-10 18:05 - 000069632 _____ (Twain Working Group) C:\Windows\Twunk_32.exe
2022-03-05 17:31 - 2014-09-09 03:14 - 000028672 ____R (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2022-03-06 12:06 - 2003-11-10 01:53 - 000184320 _____ (brother Industries, Ltd) C:\Windows\SysWOW64\Brdiag2.exe
2022-03-06 12:06 - 2000-09-06 16:11 - 000004608 _____ C:\Windows\SysWOW64\BRGSRC16.DLL
2022-03-06 12:06 - 2000-09-06 16:47 - 000026624 _____ C:\Windows\SysWOW64\BRGSRC32.DLL
2022-03-06 12:06 - 2003-08-11 23:00 - 000021583 _____ (brother Industries Ltd) C:\Windows\SysWOW64\brlm03a.dll
2022-03-06 12:06 - 2003-02-18 23:01 - 000040960 _____ (brother industries, ltd ) C:\Windows\SysWOW64\BRVPD95A.DLL
2022-03-06 12:06 - 2002-11-11 23:03 - 000049152 _____ (brother Industries Ltd) C:\Windows\SysWOW64\BRVPDNTA.DLL
2022-03-06 12:05 - 2002-10-31 01:09 - 000081920 ____N (brother) C:\Windows\SysWOW64\BrWebIns.dll
2022-03-06 12:05 - 2003-07-03 01:08 - 000065536 ____N (brother) C:\Windows\SysWOW64\BRWEBUP.EXE
2022-03-05 17:25 - 1999-05-06 14:22 - 000027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CTL3DV2.DLL
2007-04-27 10:43 - 2007-04-27 10:43 - 000120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
2013-05-28 21:22 - 2013-05-28 21:22 - 000641024 _____ C:\Windows\SysWOW64\ficvdec_x86.dll
2022-03-05 17:26 - 2001-03-10 17:56 - 000040960 _____ C:\Windows\SysWOW64\IPPCPUID.DLL
2022-03-05 17:26 - 2001-08-23 18:58 - 000094208 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippcv11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000462848 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippcva611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000225280 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippi11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 002428928 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippia611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000065536 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippj11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000151552 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippja611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000176128 _____ (Intel Corporation.) C:\Windows\SysWOW64\ipps11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 001359872 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsa611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000077824 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsr11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000184320 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsra611.dll
2015-05-22 01:00 - 2015-05-22 01:00 - 000002560 _____ (Intel(R) Corporation) C:\Windows\SysWOW64\IusEventLog.dll
2002-01-05 04:48 - 2002-01-05 04:48 - 000974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2002-01-05 04:36 - 2002-01-05 04:36 - 000964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2002-01-05 03:38 - 2002-01-05 03:38 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2002-01-05 03:40 - 2002-01-05 03:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2002-01-05 03:37 - 2002-01-05 03:37 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2022-03-05 18:17 - 2015-07-14 20:06 - 001316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2022-03-05 18:17 - 2015-07-14 20:06 - 001423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-03-06 12:05 - 2003-06-28 00:21 - 000180224 _____ (brother) C:\Windows\SysWOW64\PDRVINST.DLL
2022-03-05 17:25 - 1997-10-14 05:19 - 000011776 _____ () C:\Windows\SysWOW64\pmsbfn32.dll
2022-11-05 11:04 - 2022-11-05 11:04 - 002374656 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2022-03-03 18:41 - 2018-12-09 19:15 - 000525762 _____ C:\Users\Albert\Desktop\Safeboot.exe
2022-11-05 10:50 - 2022-11-04 16:23 - 003509960 _____ (Nicolas Coolman) C:\Users\Albert\Desktop\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {040bc27d-9e34-11ec-bce7-806e6f6e6963}
{bootmgr}
{1976f0da-9a36-11ec-becd-bdf35eda041b}
{1976f0d9-9a36-11ec-becd-bdf35eda041b}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5995fdd8-9a40-11ec-9417-ee27f6011509}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {040bc27d-9e34-11ec-bce7-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\ACRONIS\ASRM.EFI
description Acronis loader
Application logicielle (101fffff)
--------------------------------
identificateur {1976f0d9-9a36-11ec-becd-bdf35eda041b}
description CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {1976f0da-9a36-11ec-becd-bdf35eda041b}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {1976f0d7-9a36-11ec-becd-bdf35eda041b}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1976f0d8-9a36-11ec-becd-bdf35eda041b}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1976f0d8-9a36-11ec-becd-bdf35eda041b}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5995fdda-9a40-11ec-9417-ee27f6011509}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {5995fdd8-9a40-11ec-9417-ee27f6011509}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {5995fdda-9a40-11ec-9417-ee27f6011509}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{5995fddb-9a40-11ec-9417-ee27f6011509}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{5995fddb-9a40-11ec-9417-ee27f6011509}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {5995fdd8-9a40-11ec-9417-ee27f6011509}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5995fdda-9a40-11ec-9417-ee27f6011509}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {1976f0d8-9a36-11ec-becd-bdf35eda041b}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {5995fddb-9a40-11ec-9417-ee27f6011509}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Albert (administrateur) sur DESKTOP-VR8K6UQ (05-11-2022 11:06:06)
Exécuté depuis C:\Users\Albert\Desktop
Profils chargés: Albert
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2130 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\26.0.1.233\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\obkagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(explorer.exe ->) () [Fichier non signé] D:\Programmes\MiniReminder\MiniReminder.exe
(explorer.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(explorer.exe ->) (Newsoft Technology Company -> NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(spool\drivers\x64\3\WrtMon.exe ->) (NewSoft Technology Corporation -> NewSoft Technology Corporation) C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [989208 2022-10-04] (Bitdefender SRL -> Bitdefender)
HKLM\...\Run: [WrtMon.exe] => C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe [26448 2008-05-24] (Newsoft Technology Company -> NewSoft Technology Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [587352 2021-12-02] (Acronis International GmbH -> )
HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [494640 2022-08-17] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe [1194808 2015-07-07] (ASUSTeK Computer Inc. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4871640 2021-12-02] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-09-26] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3646161690-651857087-4267117286-1001\...\Run: [MicrosoftEdgeAutoLaunch_6B17572A1704D8C13662839B53354D5E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3646161690-651857087-4267117286-1001\...\Run: [GarminExpress] => D:\Programmes\Garmin\Express\express.exe [31298328 2022-10-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\BrPrint: C:\Windows\System32\spool\prtprocs\x64\BRPP64A.DLL [41984 2007-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Brother Industries ,Ltd)
HKLM\...\Print\Monitors\EPSON WF-7610 Series 64MonitorBE: C:\Windows\system32\E_YLMBKBE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
Startup: C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MiniReminder.lnk [2022-04-07]
ShortcutTarget: MiniReminder.lnk -> D:\Programmes\MiniReminder\MiniReminder.exe () [Fichier non signé]
BootExecute: autocheck autochk * 썠G耀ary Utilities 5\data\gulr.dat
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {010E926D-AAB0-48C3-9ACE-B5F22DE1DB71} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {27F35CD3-8A1A-4A95-9CAB-A1B2BE824C20} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {4054A9C8-013F-4034-A9C3-436FE53EF110} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288 2015-06-04] (ASUSTeK Computer Inc. -> TODO:
Task: {7072D6FD-C821-4036-A319-CB28DF2F953B} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264 2014-05-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {8DFA788C-EEBB-4AA3-ADAC-7D65E643D99C} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.233\WatchDog.exe [1053264 2022-07-25] (Bitdefender SRL -> Bitdefender)
Task: {98C82B55-C15A-4E8D-85F6-34DD1760A4B7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9936DCA4-0627-4D1C-9DED-93467F58E451} - System32\Tasks\CCleaner Update => D:\Programmes\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform)
Task: {9A7AB2AA-B0DD-4D1E-A127-8419D31E0064} - System32\Tasks\CCleanerCrashReporting => D:\Programmes\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "D:\Programmes\CCleaner\LOG" --programpath "D:\Programmes\CCleaner" --configpath "D:\Programmes\CCleaner\Setup" --guid "e34a3ce5-c083-4ca8-ad5b-fb530239c2f5" --version "6.05.10110" --silent
Task: {9CF217AC-A08C-4DD8-8891-CE93D4B947F0} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1873688 2015-06-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {C5A69A6B-C625-4273-8791-82E3AE8E1827} - System32\Tasks\ASUS\ASUS Media Streamer DMR => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe [304952 2015-05-12] (ASUSTeK Computer Inc. -> )
Task: {DD20A3FA-AB31-4D7A-AC99-9DD419D9937B} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392 2013-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {E8D7433B-9D9A-4F7B-AF42-189ACD8C1CC1} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (Pas de fichier)
Task: {F531DC08-92FF-4AB6-B825-620D144BF01A} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1462584 2015-02-06] (ASUSTeK Computer Inc. -> )
Task: {FC5BB181-DCFF-433C-BC1A-D4EA1F3FAA56} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1275672 2015-06-30] (ASUSTeK Computer Inc. -> )
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => D:\Programmes\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{58361e1e-319b-4571-b59b-16561cead59e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{74d5c061-195b-4fb1-862f-30095bb7cb01}: [DhcpNameServer] 8.8.8.8
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-04]
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\Albert\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2022-11-04]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]
Edge HKLM-x32\...\Edge\Extension: [pdhdldaneekjpoaldekpgomomeabpnek]
FireFox:
========
FF DefaultProfile: ht95n3fd.default
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\ht95n3fd.default [2022-03-03]
FF ProfilePath: C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release [2022-11-05]
FF Extension: (eID Belgique) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release\Extensions\belgiumeid@eid.belgium.be.xpi [2022-03-18]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Albert\AppData\Roaming\Mozilla\Firefox\Profiles\tdalbooc.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-11-03]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2021-06-29] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ]
FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-09-17] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2022-02-23] [] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.15 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> D:\Programmes\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2022-03-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3646161690-651857087-4267117286-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Programmes\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2022-03-03] <==== ATTENTION (Pointe vers un fichier *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2022-03-03] <==== ATTENTION
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2728304 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1212736 2021-12-02] (Acronis International GmbH -> )
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6096688 2022-03-06] (Acronis International GmbH -> )
S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [353840 2022-08-16] (Bitdefender SRL -> AnchorFree Inc.)
S3 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] (ASUSTeK Computer Inc. -> )
S3 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
S3 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [397592 2015-07-02] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2993256 2022-01-28] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender)
R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [453168 2022-08-17] (Bitdefender SRL -> Bitdefender)
S3 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-13] (Microsoft Windows Hardware Compatibility Publisher -> brother Industries Ltd)
S3 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S3 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [878464 2022-02-13] (Glarysoft LTD -> Glarysoft Ltd)
S3 GUPMService; D:\Programmes\Glary Utilities 5\GUPMService.exe [71144 2022-04-25] (Glarysoft LTD -> Glarysoft Ltd)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8838880 2022-10-20] (Malwarebytes Inc. -> Malwarebytes)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2021-12-02] (Acronis International GmbH -> Acronis International GmbH)
R2 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2017-09-26] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1753528 2021-12-02] (Acronis International GmbH -> )
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1740968 2015-07-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [789072 2022-07-25] (Bitdefender SRL -> Bitdefender)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7157960 2021-12-02] (Acronis International GmbH -> )
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [280088 2022-09-23] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [821784 2022-10-04] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-03-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_df0bee9f4cb9436e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 A38CCID; C:\Windows\system32\DRIVERS\a38ccid.sys [86880 2018-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [28472 2015-07-06] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [5118384 2022-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [798128 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [33208 2022-02-01] (Microsoft Windows Hardware Compatibility Publisher -> © Bitdefender SRL)
S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [55864 2021-07-08] (Bitdefender SRL -> Bitdefender)
R1 bdvpn_netfilter; C:\Windows\System32\drivers\bdvpn_netfilter.sys [94600 2021-09-16] (Pango Inc. -> Pango Inc)
S2 BrPar; C:\Windows\SysWOW64\drivers\BrPar.sys [19537 2000-07-24] (Brother Industries Ltd.) [Fichier non signé]
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 fltsrv; C:\Windows\System32\DRIVERS\fltsrv.sys [182832 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 FNETHYRAMAS; C:\Windows\System32\drivers\FNETHYRAMAS.SYS [45688 2022-03-05] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2022-03-05] (FNet Co., Ltd. -> FNet Co., Ltd.)
R0 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1274296 2022-09-23] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2022-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 Ignis; C:\Windows\system32\DRIVERS\ignis.sys [185312 2020-10-07] (Bitdefender SRL -> Bitdefender)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2014-09-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-10-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-10-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [213336 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [690520 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [633264 2022-06-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [480184 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2022-03-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2022-03-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [438520 2022-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-03] (Microsoft Windows -> Microsoft Corporation)
S3 MSICDSetup; \??\H:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\H:\NTIOLib_X64.sys [X]
U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-05 11:06 - 2022-11-05 11:06 - 000029117 _____ C:\Users\Albert\Desktop\FRST.txt
2022-11-05 11:05 - 2022-11-05 11:06 - 000000000 ____D C:\FRST
2022-11-05 11:04 - 2022-11-05 11:04 - 002374656 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2022-11-05 10:58 - 2022-11-05 10:58 - 000396702 _____ C:\Users\Albert\Desktop\ZHPDiag.txt
2022-11-05 10:51 - 2022-11-05 10:51 - 000000866 _____ C:\Users\Albert\Desktop\ZHPSuite.lnk
2022-11-05 10:50 - 2022-11-04 16:23 - 003509960 _____ (Nicolas Coolman) C:\Users\Albert\Desktop\ZHPSuite.exe
2022-11-04 19:59 - 2022-11-05 10:37 - 000003392 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-11-04 19:59 - 2022-11-05 10:37 - 000000736 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2022-11-04 11:18 - 2022-11-05 10:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-11-03 19:01 - 2022-11-03 19:01 - 000000112 ___SH C:\bootTel.dat
2022-10-29 14:27 - 2022-10-29 14:27 - 000101316 _____ C:\ProgramData\agent.update.1667050050.bdinstall.v2.bin
2022-10-28 15:23 - 2022-10-28 15:23 - 000000000 ____D C:\ProgramData\UDL
2022-10-28 15:23 - 2022-10-28 15:23 - 000000000 ____D C:\ProgramData\Sony Corporation
2022-10-28 15:20 - 2018-06-15 03:14 - 000187392 _____ (Seiko Epson Corporation) C:\Windows\system32\E_YLMBKBE.DLL
2022-10-28 15:20 - 2018-06-15 02:04 - 000083968 _____ (Seiko Epson Corporation) C:\Windows\system32\E_YD4BKBE.DLL
2022-10-28 15:20 - 2007-04-10 00:06 - 000010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2022-10-26 17:01 - 2022-10-26 17:01 - 000000702 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adwcleaner.lnk
2022-10-26 16:08 - 2022-11-05 10:58 - 000000000 ____D C:\Users\Albert\AppData\Roaming\ZHP
2022-10-26 16:08 - 2022-11-05 10:51 - 000000000 ____D C:\Users\Albert\AppData\Local\ZHP
2022-10-20 16:44 - 2022-10-20 16:44 - 000000000 ___HD C:\$WinREAgent
2022-10-20 12:26 - 2022-10-29 18:20 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-10-20 12:26 - 2022-10-20 12:26 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-10-20 12:26 - 2022-10-20 12:26 - 000000000 ____D C:\Users\Albert\AppData\Local\mbam
2022-10-20 12:25 - 2022-10-20 12:25 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-10-20 12:25 - 2022-10-20 12:25 - 000000000 ____D C:\Program Files\Malwarebytes
2022-10-19 09:58 - 2022-10-19 09:58 - 000002228 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk
2022-10-15 16:30 - 2022-10-15 16:30 - 000000000 ____D C:\Users\Albert\AppData\Local\DBG
2022-10-15 16:30 - 2022-10-15 16:30 - 000000000 ____D C:\ProgramData\dbg
2022-10-12 14:09 - 2022-10-12 14:09 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-12 14:09 - 2022-10-12 14:09 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-10-06 16:56 - 2022-10-06 16:56 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-06 16:56 - 2022-10-06 16:56 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-09-30 14:01 - 2022-09-30 14:52 - 000000000 ___RD C:\Users\Albert\Desktop\Infiltration
2022-09-17 15:30 - 2022-10-19 19:02 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2022-09-17 13:56 - 2022-09-17 13:56 - 000000000 ____D C:\Users\Albert\AppData\Local\MediaPlayer
2022-09-16 13:07 - 2022-09-16 13:07 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-09-16 13:07 - 2022-09-16 13:07 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-09-08 15:11 - 2022-09-08 15:11 - 000001264 _____ C:\Users\Albert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reverso.lnk
2022-08-22 18:15 - 2022-08-22 18:15 - 000235028 _____ C:\ProgramData\vpn.1661188494.bdinstall.v2.bin
2022-08-22 18:15 - 2022-08-22 18:15 - 000086072 _____ C:\ProgramData\vpn.uninstall.1661188494.bdinstall.v2.bin
2022-08-22 18:15 - 2022-08-22 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN
2022-08-10 13:43 - 2022-08-10 13:43 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-10 13:43 - 2022-08-10 13:43 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-10 13:42 - 2022-08-10 13:42 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-10 13:42 - 2022-08-10 13:42 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 13:42 - 2022-08-10 13:42 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-07 19:16 - 2022-10-30 19:33 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-07 19:16 - 2022-08-07 19:16 - 000000000 ____D C:\Windows\system32\lxss
2022-08-07 19:15 - 2022-06-03 05:15 - 001905936 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001905936 _____ C:\Windows\system32\vulkaninfo.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001478416 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-08-07 19:15 - 2022-06-03 05:15 - 001467840 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001432320 _____ C:\Windows\system32\vulkan-1.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001209408 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-08-07 19:15 - 2022-06-03 05:15 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 002121696 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 001529920 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 001175712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000795736 _____ C:\Windows\system32\nvofapi64.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000715944 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000712640 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-08-07 19:15 - 2022-06-03 05:12 - 000636504 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-08-07 19:15 - 2022-06-03 05:12 - 000057440 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 008610448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 007713848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 005101520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 002931872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 001600672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000981672 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000792232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-08-07 19:15 - 2022-06-03 05:11 - 000456848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-08-07 19:15 - 2022-06-03 05:10 - 005729744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-08-07 19:15 - 2022-06-03 05:09 - 006458880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-08-07 19:15 - 2022-06-03 05:09 - 000850080 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-08-07 19:15 - 2022-06-03 04:42 - 000089337 _____ C:\Windows\system32\nvinfo.pb
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-05 10:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-05 10:45 - 2022-03-02 17:12 - 000000000 ____D C:\Users\Albert\AppData\LocalLow\Mozilla
2022-11-05 10:37 - 2022-03-02 16:58 - 001770906 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-05 10:37 - 2019-12-07 15:49 - 000791756 _____ C:\Windows\system32\perfh00C.dat
2022-11-05 10:37 - 2019-12-07 15:49 - 000149922 _____ C:\Windows\system32\perfc00C.dat
2022-11-05 10:37 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-11-05 10:37 - 2019-12-07 10:03 - 000065536 _____ C:\Windows\system32\config\ELAM
2022-11-05 10:32 - 2022-03-02 16:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-05 10:32 - 2022-03-02 16:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-04 20:00 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-11-04 19:57 - 2022-03-02 17:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-11-04 18:54 - 2022-03-02 16:58 - 000000000 ____D C:\Users\Albert\AppData\Local\D3DSCache
2022-11-04 18:53 - 2022-03-03 17:03 - 000000000 ____D C:\Users\Albert\AppData\Local\Mirillis
2022-11-04 18:51 - 2022-05-09 12:28 - 000000000 ____D C:\Users\Albert\AppData\Roaming\vlc
2022-11-04 17:00 - 2022-03-02 16:58 - 000000000 ____D C:\Users\Albert\AppData\Local\Packages
2022-11-04 16:47 - 2022-03-02 16:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-11-04 14:02 - 2022-03-02 17:12 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-11-04 14:02 - 2022-03-02 17:12 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-11-04 13:59 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-11-04 11:28 - 2022-03-03 15:44 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Icecream
2022-11-03 13:23 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-03 13:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-11-01 10:04 - 2022-03-04 14:41 - 000001696 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2022-11-01 10:04 - 2022-03-04 14:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2022-11-01 10:04 - 2022-03-04 14:41 - 000000000 ____D C:\ProgramData\Garmin
2022-11-01 10:04 - 2022-03-04 14:40 - 000000000 ____D C:\ProgramData\Package Cache
2022-11-01 09:50 - 2022-03-04 14:58 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Garmin
2022-10-29 15:04 - 2022-03-03 17:02 - 000002166 _____ C:\Users\Albert\Desktop\Action!.lnk
2022-10-29 14:27 - 2022-03-03 10:08 - 000003846 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2022-10-29 14:27 - 2022-03-03 10:06 - 000000000 ____D C:\Program Files\Bitdefender Agent
2022-10-28 15:36 - 2022-04-08 10:28 - 000000000 ____D C:\Program Files (x86)\Epson Software
2022-10-28 15:36 - 2022-04-08 10:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2022-10-28 15:24 - 2022-04-08 10:29 - 000000000 ____D C:\Users\Albert\AppData\Roaming\Epson
2022-10-28 15:23 - 2022-04-08 10:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2022-10-28 15:23 - 2022-04-08 10:19 - 000000000 ____D C:\ProgramData\Epson
2022-10-28 15:22 - 2022-04-08 10:22 - 000000000 ____D C:\Program Files (x86)\epson
2022-10-28 15:22 - 2022-03-05 17:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-10-28 12:06 - 2022-03-02 17:16 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-10-26 17:14 - 2022-03-03 15:27 - 000003930 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-10-22 09:25 - 2022-04-01 12:30 - 000000000 ____D C:\Users\Albert\.fontconfig
2022-10-21 20:31 - 2022-03-03 18:33 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-20 12:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-10-19 09:58 - 2022-03-02 17:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-13 13:17 - 2022-03-03 10:39 - 000000000 ____D C:\Users\Albert\AppData\Local\Microsoft Help
2022-10-12 15:53 - 2022-03-02 16:50 - 000882928 _____ C:\Windows\system32\FNTCACHE.DAT
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-10-12 15:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-10-12 14:09 - 2022-03-02 16:52 - 003015168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-10-12 09:11 - 2022-03-02 17:15 - 000000000 ____D C:\Windows\system32\MRT
2022-10-12 09:08 - 2022-03-02 17:15 - 147398024 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-10-08 16:23 - 2022-03-03 18:49 - 000000000 ____D C:\Users\Albert\AppData\Local\CrashDumps
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-06 17:12 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-06 16:57 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-06 16:57 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
==================== Fichiers à la racine de certains dossiers ========
2022-03-03 18:31 - 2022-10-31 10:39 - 000000837 _____ () C:\Users\Albert\AppData\Roaming\FSLog.log
==================== SigCheckExt =========================
2022-03-07 14:57 - 2022-03-07 14:57 - 003945456 _____ (Acronis) C:\Windows\system32\auto_reactivate.exe
2013-05-28 21:23 - 2013-05-28 21:23 - 000652288 _____ C:\Windows\system32\ficvdec_x64.dll
2015-05-07 15:05 - 2015-05-07 15:05 - 000304640 _____ (Intel(R) Corporation) C:\Windows\system32\Ncs2Setp.dll
2022-03-05 18:17 - 2015-07-14 20:05 - 001756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2022-03-05 18:17 - 2015-07-14 20:05 - 001710056 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2022-03-03 18:18 - 2016-09-29 09:44 - 001298584 _____ C:\Windows\ddmmain.exe
2022-03-06 12:03 - 1998-01-23 11:20 - 000305664 _____ (InstallShield Software Corporation) C:\Windows\IsUn040c.exe
2022-03-05 17:25 - 1998-10-29 16:45 - 000306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2022-03-05 17:25 - 2001-09-10 18:05 - 000087392 _____ (Twain Working Group) C:\Windows\TWAIN.DLL
2022-03-05 17:25 - 2001-09-10 18:05 - 000048560 _____ (Twain Working Group) C:\Windows\Twunk_16.exe
2022-03-05 17:25 - 2001-09-10 18:05 - 000069632 _____ (Twain Working Group) C:\Windows\Twunk_32.exe
2022-03-05 17:31 - 2014-09-09 03:14 - 000028672 ____R (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2022-03-06 12:06 - 2003-11-10 01:53 - 000184320 _____ (brother Industries, Ltd) C:\Windows\SysWOW64\Brdiag2.exe
2022-03-06 12:06 - 2000-09-06 16:11 - 000004608 _____ C:\Windows\SysWOW64\BRGSRC16.DLL
2022-03-06 12:06 - 2000-09-06 16:47 - 000026624 _____ C:\Windows\SysWOW64\BRGSRC32.DLL
2022-03-06 12:06 - 2003-08-11 23:00 - 000021583 _____ (brother Industries Ltd) C:\Windows\SysWOW64\brlm03a.dll
2022-03-06 12:06 - 2003-02-18 23:01 - 000040960 _____ (brother industries, ltd ) C:\Windows\SysWOW64\BRVPD95A.DLL
2022-03-06 12:06 - 2002-11-11 23:03 - 000049152 _____ (brother Industries Ltd) C:\Windows\SysWOW64\BRVPDNTA.DLL
2022-03-06 12:05 - 2002-10-31 01:09 - 000081920 ____N (brother) C:\Windows\SysWOW64\BrWebIns.dll
2022-03-06 12:05 - 2003-07-03 01:08 - 000065536 ____N (brother) C:\Windows\SysWOW64\BRWEBUP.EXE
2022-03-05 17:25 - 1999-05-06 14:22 - 000027632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CTL3DV2.DLL
2007-04-27 10:43 - 2007-04-27 10:43 - 000120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
2013-05-28 21:22 - 2013-05-28 21:22 - 000641024 _____ C:\Windows\SysWOW64\ficvdec_x86.dll
2022-03-05 17:26 - 2001-03-10 17:56 - 000040960 _____ C:\Windows\SysWOW64\IPPCPUID.DLL
2022-03-05 17:26 - 2001-08-23 18:58 - 000094208 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippcv11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000462848 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippcva611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000225280 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippi11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 002428928 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippia611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000065536 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippj11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000151552 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippja611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000176128 _____ (Intel Corporation.) C:\Windows\SysWOW64\ipps11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 001359872 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsa611.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000077824 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsr11.dll
2022-03-05 17:26 - 2001-08-23 18:58 - 000184320 _____ (Intel Corporation.) C:\Windows\SysWOW64\ippsra611.dll
2015-05-22 01:00 - 2015-05-22 01:00 - 000002560 _____ (Intel(R) Corporation) C:\Windows\SysWOW64\IusEventLog.dll
2002-01-05 04:48 - 2002-01-05 04:48 - 000974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2002-01-05 04:36 - 2002-01-05 04:36 - 000964608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2002-01-05 03:38 - 2002-01-05 03:38 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2002-01-05 03:40 - 2002-01-05 03:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2002-01-05 03:37 - 2002-01-05 03:37 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2022-03-05 18:17 - 2015-07-14 20:06 - 001316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2022-03-05 18:17 - 2015-07-14 20:06 - 001423120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2022-03-06 12:05 - 2003-06-28 00:21 - 000180224 _____ (brother) C:\Windows\SysWOW64\PDRVINST.DLL
2022-03-05 17:25 - 1997-10-14 05:19 - 000011776 _____ () C:\Windows\SysWOW64\pmsbfn32.dll
2022-11-05 11:04 - 2022-11-05 11:04 - 002374656 _____ (Farbar) C:\Users\Albert\Desktop\FRST64.exe
2022-03-03 18:41 - 2018-12-09 19:15 - 000525762 _____ C:\Users\Albert\Desktop\Safeboot.exe
2022-11-05 10:50 - 2022-11-04 16:23 - 003509960 _____ (Nicolas Coolman) C:\Users\Albert\Desktop\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {040bc27d-9e34-11ec-bce7-806e6f6e6963}
{bootmgr}
{1976f0da-9a36-11ec-becd-bdf35eda041b}
{1976f0d9-9a36-11ec-becd-bdf35eda041b}
timeout 1
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume3
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {5995fdd8-9a40-11ec-9417-ee27f6011509}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {040bc27d-9e34-11ec-bce7-806e6f6e6963}
device partition=\Device\HarddiskVolume3
path \EFI\ACRONIS\ASRM.EFI
description Acronis loader
Application logicielle (101fffff)
--------------------------------
identificateur {1976f0d9-9a36-11ec-becd-bdf35eda041b}
description CD/DVD Drive
Application logicielle (101fffff)
--------------------------------
identificateur {1976f0da-9a36-11ec-becd-bdf35eda041b}
description Hard Drive
Chargeur de d‚marrage Windows
-----------------------------
identificateur {1976f0d7-9a36-11ec-becd-bdf35eda041b}
device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1976f0d8-9a36-11ec-becd-bdf35eda041b}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{1976f0d8-9a36-11ec-becd-bdf35eda041b}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {5995fdda-9a40-11ec-9417-ee27f6011509}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {5995fdd8-9a40-11ec-9417-ee27f6011509}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {5995fdda-9a40-11ec-9417-ee27f6011509}
device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{5995fddb-9a40-11ec-9417-ee27f6011509}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{5995fddb-9a40-11ec-9417-ee27f6011509}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {5995fdd8-9a40-11ec-9417-ee27f6011509}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {5995fdda-9a40-11ec-9417-ee27f6011509}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume3
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {1976f0d8-9a36-11ec-becd-bdf35eda041b}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \Recovery\WindowsRE\boot.sdi
Options de p‚riph‚rique
-----------------------
identificateur {5995fddb-9a40-11ec-9417-ee27f6011509}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================