Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09-11-2022 01
Exécuté par Bonjour (administrateur) sur DESKTOP-1QG3B7R (Hewlett-Packard HP Pavilion 17 Notebook PC) (11-11-2022 22:33:45)
Exécuté depuis C:\Users\Bonjour\Desktop
Profils chargés: Bonjour
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2251 (X64) Langue: Français (France)
Navigateur par défaut: "%1" %*
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe <2>
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe
(services.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\Users\Bonjour\AppData\Local\Temp\cd9a98ae-f9a2-4be1-b343-080a78819045.tmp" /F /Q (Pas de fichier) <==== ATTENTION
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Bonjour\AppData\Roaming\ZHP\ZHPCleaner.txt [6979 2022-11-11] () [Fichier non signé]
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44360 2021-03-01] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [MicrosoftEdgeAutoLaunch_176BF70986B43FA94BC84B3D48229460] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38789456 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [CCleanerBrowserAutoLaunch_6F9C93E75BECFC01B51DC9C1CA7B21D8] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Uninstall 22.217.1016.0002] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\22.217.1016.0002" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\106.0.19080.170\Installer\chrmstp.exe [2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {035114EF-205C-4AA7-B846-CEC8BF26DAB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {05030CDE-D898-48A0-9AC7-3B877FF1F009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2BD67015-16D7-431A-8560-AB955E0EB1CB} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [917832 2021-03-01] (Glarysoft LTD -> Glarysoft Ltd)
Task: {2E99F5C9-BD67-4F1F-BCC5-7CCFE82014CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C262283-52C1-4D6E-9686-B99BE442420F} - System32\Tasks\CCleanerSkipUAC - Bonjour => C:\Program Files\CCleaner\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3DB90AF5-447B-4208-9479-B26F94A90BE5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3FD1CBC2-5C16-4AA3-B562-DEC4A37DA267} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6637512 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {46430551-2D1C-4DC5-A5F9-EA71452DC4C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {55745566-3EFA-4144-9B8F-BD421C5C09F6} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {63CC5562-0072-4CF6-9E77-222CC4C20325} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {706AB61B-155B-4230-AB59-7B3104FEB47F} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [72328 2020-11-24] (Oracle America, Inc. -> Oracle Corporation)
Task: {740B6DE4-4605-4E29-8F7F-9F8545BC911E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {78EE38CD-81B3-465B-95DE-1AAAEF88E7D8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9450F5B3-FBEC-4588-98D3-9E930B76B6C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-03-09] (Google Inc -> Google LLC)
Task: {9CDA70B3-6673-460C-A635-95B62714B73A} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2020-12-04] () [Fichier non signé]
Task: {A4C3F367-7508-4DE7-BAFE-4DBB4E06B4F7} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
Task: {A60124A5-8E9C-40FF-A4F7-96243879E738} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-03-09] (Google Inc -> Google LLC)
Task: {BBB84FF4-4A17-40AE-ADF9-BE2CE454D342} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {BE7860B6-6B0C-4F20-863C-80DD207C3011} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
Task: {D095128C-2D55-4679-B15E-7B2FEF8706A5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAC4F457-FB3B-4874-A0D6-B43C1C1E150D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "b8c45135-4c36-4064-9eeb-be655bc0a12a" --version "6.05.10110" --silent
Task: {E7F5EF33-62DC-4891-9E44-57745AAC3F8C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform)
Task: {F79C8C16-C040-469A-82F9-249C0EA5899F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6637512 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{6a52e4bf-48f9-4b0d-9201-288caa1ce366}: [DhcpNameServer] 85.95.208.3 213.166.201.3
Tcpip\..\Interfaces\{ec4eb6d0-c91b-4b1b-9ede-d9a1b6f3b60d}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Bonjour\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-11]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-11-09] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-11-09] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Default [2022-11-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-11]
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-03-17]
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\System Profile [2022-10-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 brlapi; C:\Windows\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\106.0.19080.170\elevation_service.exe [2047024 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12516280 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
S3 dcsvc; C:\Windows\system32\dcsvc.dll [785408 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
R3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746944 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [120416 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2021-03-10] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-03-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [74616 2020-12-11] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1205448 2014-04-30] (Mediatek Inc. -> Ralink Technology, Corp.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [213088 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2022-11-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [469288 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
S3 MpKsl63dd0db8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2D11E4D3-61F3-4A50-B945-E736A31E3C68}\MpKslDrv.sys [X]
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-11 22:33 - 2022-11-11 22:35 - 000020628 _____ C:\Users\Bonjour\Desktop\FRST.txt
2022-11-11 22:32 - 2022-11-11 22:34 - 000000000 ____D C:\FRST
2022-11-11 22:29 - 2022-11-11 22:29 - 002375168 _____ (Farbar) C:\Users\Bonjour\Desktop\FRST64.exe
2022-11-11 22:23 - 2022-11-11 22:23 - 000282713 _____ C:\Users\Bonjour\Desktop\ZHPDiag.txt
2022-11-11 22:09 - 2022-11-11 22:09 - 000000867 _____ C:\Users\Bonjour\Desktop\ZHPSuite.lnk
2022-11-11 22:08 - 2022-11-11 22:08 - 003509960 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPSuite.exe
2022-11-11 22:04 - 2022-11-11 22:04 - 000006979 _____ C:\Users\Bonjour\Desktop\ZHPCleaner (R).txt
2022-11-11 22:00 - 2022-11-11 22:00 - 000006442 _____ C:\Users\Bonjour\Desktop\ZHPCleaner (S).txt
2022-11-11 21:33 - 2022-11-11 21:33 - 000000877 _____ C:\Users\Bonjour\Desktop\ZHPCleaner.lnk
2022-11-11 21:32 - 2022-11-11 22:23 - 000000000 ____D C:\Users\Bonjour\AppData\Roaming\ZHP
2022-11-11 21:32 - 2022-11-11 22:08 - 000000000 ____D C:\Users\Bonjour\AppData\Local\ZHP
2022-11-11 21:29 - 2022-11-11 21:29 - 003305160 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPCleaner.exe
2022-11-10 23:26 - 2022-11-10 23:26 - 000000000 ___HD C:\$WinREAgent
2022-11-10 23:15 - 2022-11-10 23:15 - 000688128 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2022-11-10 23:15 - 2022-11-10 23:15 - 000073216 _____ C:\Windows\system32\nettraceex.dll
2022-11-10 23:15 - 2022-11-10 23:15 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-11-10 23:13 - 2022-11-10 23:13 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-11-10 22:31 - 2022-11-11 21:39 - 000003416 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-11-10 22:26 - 2022-11-10 22:54 - 3826831360 _____ C:\Users\Bonjour\Downloads\ubuntu-22.04.1-desktop-amd64 (1).iso
2022-11-10 21:49 - 2022-11-11 21:39 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2022-11-09 23:00 - 2022-11-09 23:46 - 3826831360 _____ C:\Users\Bonjour\Downloads\ubuntu-22.04.1-desktop-amd64.iso
2022-11-09 22:25 - 2022-11-09 22:25 - 000003842 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2022-11-09 22:25 - 2022-11-09 22:25 - 000003258 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2022-11-09 22:25 - 2022-11-09 22:25 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2022-11-09 22:25 - 2022-11-09 22:25 - 000002426 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2022-11-09 22:25 - 2022-11-09 22:25 - 000000000 ____D C:\Users\Bonjour\AppData\Local\CCleaner Browser
2022-11-09 22:25 - 2022-11-09 22:25 - 000000000 ____D C:\ProgramData\CCleaner Browser
2022-11-09 22:22 - 2022-11-09 22:25 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2022-11-09 22:22 - 2022-11-09 22:22 - 000003644 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineUA
2022-11-09 22:22 - 2022-11-09 22:22 - 000003520 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineCore
2022-11-09 22:20 - 2022-11-09 22:20 - 000002912 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Bonjour
2022-11-09 22:19 - 2022-11-09 22:20 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-11-09 22:19 - 2022-11-09 22:19 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-11-09 22:19 - 2022-11-09 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-11-09 22:18 - 2022-11-11 21:39 - 000000000 ____D C:\Program Files\CCleaner
2022-11-09 22:14 - 2022-11-09 22:15 - 052464056 _____ (Piriform Software Ltd) C:\Users\Bonjour\Downloads\ccsetup605.exe
2022-11-09 02:32 - 2022-11-09 02:38 - 000013640 _____ C:\Users\Bonjour\Downloads\Faits graves chez Securitas Luxembourg (1).eml
2022-11-09 02:26 - 2022-11-09 21:45 - 000013640 _____ C:\Users\Bonjour\Downloads\Faits graves chez Securitas Luxembourg.eml
2022-10-17 13:46 - 2022-10-25 14:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2022-10-17 13:46 - 2022-10-25 14:23 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk
2022-10-17 13:17 - 2022-10-17 13:17 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-17 13:17 - 2022-10-17 13:17 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-10-17 13:16 - 2022-10-17 13:16 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-17 13:16 - 2022-10-17 13:16 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-17 13:15 - 2022-10-17 13:15 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-17 12:51 - 2022-10-17 12:51 - 000105664 _____ C:\Users\Bonjour\Downloads\2022156389887.pdf
2022-10-17 12:47 - 2022-10-17 12:47 - 002382132 _____ C:\Users\Bonjour\Downloads\mansinhb_9-21-2022_11-40-35.pdf
2022-10-17 12:02 - 2022-10-17 12:03 - 000108231 _____ C:\Users\Bonjour\Downloads\2022156389884 (1).pdf
2022-10-17 12:02 - 2022-10-17 12:02 - 000000000 _____ C:\Users\Bonjour\Downloads\2022156389884 (2).pdf
2022-10-16 11:27 - 2022-10-16 11:27 - 000108231 _____ C:\Users\Bonjour\Downloads\2022156389884.pdf
2022-10-03 17:02 - 2022-10-03 17:02 - 000000000 ____D C:\Users\Bonjour\AppData\Roaming\com.adobe.dunamis
2022-10-03 17:02 - 2022-10-03 17:02 - 000000000 ____D C:\Users\Bonjour\.ms-ad
2022-10-03 11:54 - 2022-10-03 11:54 - 000160851 _____ C:\Users\Bonjour\Desktop\Avis_d_impot_2022_sur_les_revenus_2021.pdf
2022-10-01 00:36 - 2022-10-01 00:36 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-10-01 00:36 - 2022-10-01 00:36 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-10-01 00:35 - 2022-10-01 00:35 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-10-01 00:35 - 2022-10-01 00:35 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2022-10-01 00:35 - 2022-10-01 00:35 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll
2022-10-01 00:35 - 2022-10-01 00:35 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2022-10-01 00:35 - 2022-10-01 00:35 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-10-01 00:34 - 2022-10-01 00:34 - 000270848 _____ C:\Windows\system32\EsclScan.dll
2022-10-01 00:34 - 2022-10-01 00:34 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll
2022-10-01 00:34 - 2022-10-01 00:34 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2022-10-01 00:31 - 2022-10-01 00:31 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll
2022-10-01 00:31 - 2022-10-01 00:31 - 000057344 _____ C:\Windows\system32\APMonUI.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-10-01 00:28 - 2022-10-01 00:28 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll
2022-10-01 00:27 - 2022-10-01 00:27 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll
2022-10-01 00:27 - 2022-10-01 00:27 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-10-01 00:26 - 2022-10-01 00:26 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-10-01 00:26 - 2022-10-01 00:26 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-11 22:53 - 2021-03-16 18:33 - 000000000 ____D C:\Users\Bonjour\.VirtualBox
2022-11-11 22:48 - 2022-06-16 13:19 - 000002427 _____ C:\Users\Bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-11 22:48 - 2021-12-16 13:36 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3575384501-3454353828-3434194694-1001
2022-11-11 22:48 - 2021-03-09 21:00 - 000003384 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3575384501-3454353828-3434194694-1001
2022-11-11 22:43 - 2021-03-16 18:33 - 000000000 ____D C:\ProgramData\VirtualBox
2022-11-11 22:43 - 2021-03-09 20:51 - 001682884 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-11 22:43 - 2019-12-07 15:49 - 000757012 _____ C:\Windows\system32\perfh00C.dat
2022-11-11 22:43 - 2019-12-07 15:49 - 000142492 _____ C:\Windows\system32\perfc00C.dat
2022-11-11 22:43 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-11-11 22:40 - 2021-03-09 22:09 - 000000000 __SHD C:\Users\Bonjour\IntelGraphicsProfiles
2022-11-11 22:39 - 2021-03-09 20:56 - 000000000 ____D C:\Users\Bonjour
2022-11-11 22:37 - 2020-11-18 23:28 - 000441880 _____ C:\Windows\system32\FNTCACHE.DAT
2022-11-11 22:36 - 2021-03-09 20:38 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-11 22:36 - 2020-11-19 00:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-11 22:35 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-11-11 22:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-11-11 22:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-11 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-11 22:06 - 2021-03-09 22:46 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-11 22:06 - 2021-03-09 22:46 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-11 22:05 - 2021-03-09 22:45 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-11 22:01 - 2020-11-18 23:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-11-11 21:58 - 2020-11-19 00:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-11 21:38 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-11-10 23:13 - 2020-11-19 00:31 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-11-10 22:24 - 2020-11-19 00:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-11-10 22:21 - 2021-03-16 18:36 - 000000000 ____D C:\Users\Bonjour\VirtualBox VMs
2022-11-10 22:10 - 2021-03-12 11:47 - 000000000 ____D C:\Users\Bonjour\AppData\Local\CrashDumps
2022-11-09 22:27 - 2021-03-09 20:36 - 000000000 ____D C:\Windows\Panther
2022-11-09 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-11-09 21:53 - 2021-03-09 21:27 - 000000000 ____D C:\Windows\system32\MRT
2022-11-09 21:44 - 2021-03-09 21:27 - 146960040 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-11-09 21:40 - 2021-03-09 23:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-11-09 21:35 - 2021-03-09 23:34 - 000007602 _____ C:\Users\Bonjour\AppData\Local\resmon.resmoncfg
2022-11-09 02:37 - 2022-03-13 14:22 - 000002396 _____ C:\Users\Bonjour\Desktop\Personne 1 - Chrome.lnk
2022-11-09 02:34 - 2021-03-09 20:56 - 000000000 ____D C:\Users\Bonjour\AppData\Local\Packages
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-17 13:47 - 2021-03-09 22:44 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-10-17 13:29 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-17 13:29 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-10-16 11:27 - 2020-11-19 00:31 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-16 11:27 - 2020-11-19 00:31 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-03-09 23:34 - 2022-11-09 21:35 - 000007602 _____ () C:\Users\Bonjour\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2012-07-20 10:26 - 2012-07-20 10:26 - 000094720 _____ (Ralink) C:\Windows\SysWOW64\legap.dll
2012-07-12 21:32 - 2012-07-12 21:32 - 000144384 _____ (TODO:) C:\Windows\SysWOW64\RaGATT.dll
2022-11-11 22:29 - 2022-11-11 22:29 - 002375168 _____ (Farbar) C:\Users\Bonjour\Desktop\FRST64.exe
2022-11-11 21:29 - 2022-11-11 21:29 - 003305160 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPCleaner.exe
2022-11-11 22:08 - 2022-11-11 22:08 - 003509960 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {f51e8836-810d-11eb-ae4c-9ed334ef2a56}
{bootmgr}
{eadfe8eb-810e-11eb-89ec-806e6f6e6963}
{f51e8837-810d-11eb-ae4c-9ed334ef2a56}
{f51e8838-810d-11eb-ae4c-9ed334ef2a56}
{f51e8835-810d-11eb-ae4c-9ed334ef2a56}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {e1741962-6207-11ed-8a52-806e6f6e6963}
description Internal CD/DVD ROM Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {eadfe8eb-810e-11eb-89ec-806e6f6e6963}
description Internal Hard Disk or Solid State Disk
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8835-810d-11eb-ae4c-9ed334ef2a56}
description USB Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8836-810d-11eb-ae4c-9ed334ef2a56}
description Internal CD/DVD ROM Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8837-810d-11eb-ae4c-9ed334ef2a56}
description Network Adapter (IPv4 UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8838-810d-11eb-ae4c-9ed334ef2a56}
description Network Adapter (IPv6 UEFI)
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{f51e883d-810d-11eb-ae4c-9ed334ef2a56}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{f51e883d-810d-11eb-ae4c-9ed334ef2a56}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {f51e883d-810d-11eb-ae4c-9ed334ef2a56}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Bonjour (administrateur) sur DESKTOP-1QG3B7R (Hewlett-Packard HP Pavilion 17 Notebook PC) (11-11-2022 22:33:45)
Exécuté depuis C:\Users\Bonjour\Desktop
Profils chargés: Bonjour
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2251 (X64) Langue: Français (France)
Navigateur par défaut: "%1" %*
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe <2>
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe
(services.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [ZHPCleaner_File1] => CMD /c DEL "C:\Users\Bonjour\AppData\Local\Temp\cd9a98ae-f9a2-4be1-b343-080a78819045.tmp" /F /Q (Pas de fichier) <==== ATTENTION
HKLM\...\RunOnce: [ZHPCleaner] => C:\Users\Bonjour\AppData\Roaming\ZHP\ZHPCleaner.txt [6979 2022-11-11] () [Fichier non signé]
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44360 2021-03-01] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [MicrosoftEdgeAutoLaunch_176BF70986B43FA94BC84B3D48229460] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38789456 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\Run: [CCleanerBrowserAutoLaunch_6F9C93E75BECFC01B51DC9C1CA7B21D8] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-3575384501-3454353828-3434194694-1001\...\RunOnce: [Uninstall 22.217.1016.0002] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Bonjour\AppData\Local\Microsoft\OneDrive\22.217.1016.0002" (Pas de fichier)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\106.0.19080.170\Installer\chrmstp.exe [2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {035114EF-205C-4AA7-B846-CEC8BF26DAB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {05030CDE-D898-48A0-9AC7-3B877FF1F009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2BD67015-16D7-431A-8560-AB955E0EB1CB} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [917832 2021-03-01] (Glarysoft LTD -> Glarysoft Ltd)
Task: {2E99F5C9-BD67-4F1F-BCC5-7CCFE82014CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3C262283-52C1-4D6E-9686-B99BE442420F} - System32\Tasks\CCleanerSkipUAC - Bonjour => C:\Program Files\CCleaner\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {3DB90AF5-447B-4208-9479-B26F94A90BE5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154960 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {3FD1CBC2-5C16-4AA3-B562-DEC4A37DA267} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6637512 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {46430551-2D1C-4DC5-A5F9-EA71452DC4C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {55745566-3EFA-4144-9B8F-BD421C5C09F6} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {63CC5562-0072-4CF6-9E77-222CC4C20325} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {706AB61B-155B-4230-AB59-7B3104FEB47F} - System32\Tasks\MySQL\Installer\ManifestUpdate => C:\Program Files (x86)\MySQL\MySQL Installer for Windows\MySQLInstallerConsole.exe [72328 2020-11-24] (Oracle America, Inc. -> Oracle Corporation)
Task: {740B6DE4-4605-4E29-8F7F-9F8545BC911E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {78EE38CD-81B3-465B-95DE-1AAAEF88E7D8} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9450F5B3-FBEC-4588-98D3-9E930B76B6C9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-03-09] (Google Inc -> Google LLC)
Task: {9CDA70B3-6673-460C-A635-95B62714B73A} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2020-12-04] () [Fichier non signé]
Task: {A4C3F367-7508-4DE7-BAFE-4DBB4E06B4F7} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
Task: {A60124A5-8E9C-40FF-A4F7-96243879E738} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-03-09] (Google Inc -> Google LLC)
Task: {BBB84FF4-4A17-40AE-ADF9-BE2CE454D342} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3032088 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {BE7860B6-6B0C-4F20-863C-80DD207C3011} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
Task: {D095128C-2D55-4679-B15E-7B2FEF8706A5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114600 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {DAC4F457-FB3B-4874-A0D6-B43C1C1E150D} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "b8c45135-4c36-4064-9eeb-be655bc0a12a" --version "6.05.10110" --silent
Task: {E7F5EF33-62DC-4891-9E44-57745AAC3F8C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform)
Task: {F79C8C16-C040-469A-82F9-249C0EA5899F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6637512 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{6a52e4bf-48f9-4b0d-9201-288caa1ce366}: [DhcpNameServer] 85.95.208.3 213.166.201.3
Tcpip\..\Interfaces\{ec4eb6d0-c91b-4b1b-9ede-d9a1b6f3b60d}: [DhcpNameServer] 192.168.0.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Bonjour\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-11]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-11-09] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-11-09] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Default [2022-11-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-11]
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-03-17]
CHR Profile: C:\Users\Bonjour\AppData\Local\Google\Chrome\User Data\System Profile [2022-10-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 brlapi; C:\Windows\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\106.0.19080.170\elevation_service.exe [2047024 2022-10-31] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-11-09] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12516280 2022-11-09] (Microsoft Corporation -> Microsoft Corporation)
S3 dcsvc; C:\Windows\system32\dcsvc.dll [785408 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
R3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746944 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [120416 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2021-03-10] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210344 2021-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-03-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-12] (Malwarebytes Inc -> Malwarebytes)
R1 npcap; C:\Windows\system32\DRIVERS\npcap.sys [74616 2020-12-11] (Insecure.Com LLC -> Insecure.Com LLC.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1205448 2014-04-30] (Mediatek Inc. -> Ralink Technology, Corp.)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [213088 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2022-11-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [469288 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-10] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
S3 MpKsl63dd0db8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2D11E4D3-61F3-4A50-B945-E736A31E3C68}\MpKslDrv.sys [X]
U4 npcap_wifi; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVC: DcSvc -> C:\Windows\system32\dcsvc.dll (Microsoft Corporation)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-11 22:33 - 2022-11-11 22:35 - 000020628 _____ C:\Users\Bonjour\Desktop\FRST.txt
2022-11-11 22:32 - 2022-11-11 22:34 - 000000000 ____D C:\FRST
2022-11-11 22:29 - 2022-11-11 22:29 - 002375168 _____ (Farbar) C:\Users\Bonjour\Desktop\FRST64.exe
2022-11-11 22:23 - 2022-11-11 22:23 - 000282713 _____ C:\Users\Bonjour\Desktop\ZHPDiag.txt
2022-11-11 22:09 - 2022-11-11 22:09 - 000000867 _____ C:\Users\Bonjour\Desktop\ZHPSuite.lnk
2022-11-11 22:08 - 2022-11-11 22:08 - 003509960 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPSuite.exe
2022-11-11 22:04 - 2022-11-11 22:04 - 000006979 _____ C:\Users\Bonjour\Desktop\ZHPCleaner (R).txt
2022-11-11 22:00 - 2022-11-11 22:00 - 000006442 _____ C:\Users\Bonjour\Desktop\ZHPCleaner (S).txt
2022-11-11 21:33 - 2022-11-11 21:33 - 000000877 _____ C:\Users\Bonjour\Desktop\ZHPCleaner.lnk
2022-11-11 21:32 - 2022-11-11 22:23 - 000000000 ____D C:\Users\Bonjour\AppData\Roaming\ZHP
2022-11-11 21:32 - 2022-11-11 22:08 - 000000000 ____D C:\Users\Bonjour\AppData\Local\ZHP
2022-11-11 21:29 - 2022-11-11 21:29 - 003305160 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPCleaner.exe
2022-11-10 23:26 - 2022-11-10 23:26 - 000000000 ___HD C:\$WinREAgent
2022-11-10 23:15 - 2022-11-10 23:15 - 000688128 _____ C:\Windows\system32\FsNVSDeviceSource.dll
2022-11-10 23:15 - 2022-11-10 23:15 - 000073216 _____ C:\Windows\system32\nettraceex.dll
2022-11-10 23:15 - 2022-11-10 23:15 - 000012253 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-11-10 23:13 - 2022-11-10 23:13 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-11-10 22:31 - 2022-11-11 21:39 - 000003416 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-11-10 22:26 - 2022-11-10 22:54 - 3826831360 _____ C:\Users\Bonjour\Downloads\ubuntu-22.04.1-desktop-amd64 (1).iso
2022-11-10 21:49 - 2022-11-11 21:39 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2022-11-09 23:00 - 2022-11-09 23:46 - 3826831360 _____ C:\Users\Bonjour\Downloads\ubuntu-22.04.1-desktop-amd64.iso
2022-11-09 22:25 - 2022-11-09 22:25 - 000003842 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2022-11-09 22:25 - 2022-11-09 22:25 - 000003258 _____ C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2022-11-09 22:25 - 2022-11-09 22:25 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2022-11-09 22:25 - 2022-11-09 22:25 - 000002426 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2022-11-09 22:25 - 2022-11-09 22:25 - 000000000 ____D C:\Users\Bonjour\AppData\Local\CCleaner Browser
2022-11-09 22:25 - 2022-11-09 22:25 - 000000000 ____D C:\ProgramData\CCleaner Browser
2022-11-09 22:22 - 2022-11-09 22:25 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2022-11-09 22:22 - 2022-11-09 22:22 - 000003644 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineUA
2022-11-09 22:22 - 2022-11-09 22:22 - 000003520 _____ C:\Windows\system32\Tasks\CCleanerUpdateTaskMachineCore
2022-11-09 22:20 - 2022-11-09 22:20 - 000002912 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Bonjour
2022-11-09 22:19 - 2022-11-09 22:20 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-11-09 22:19 - 2022-11-09 22:19 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2022-11-09 22:19 - 2022-11-09 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2022-11-09 22:18 - 2022-11-11 21:39 - 000000000 ____D C:\Program Files\CCleaner
2022-11-09 22:14 - 2022-11-09 22:15 - 052464056 _____ (Piriform Software Ltd) C:\Users\Bonjour\Downloads\ccsetup605.exe
2022-11-09 02:32 - 2022-11-09 02:38 - 000013640 _____ C:\Users\Bonjour\Downloads\Faits graves chez Securitas Luxembourg (1).eml
2022-11-09 02:26 - 2022-11-09 21:45 - 000013640 _____ C:\Users\Bonjour\Downloads\Faits graves chez Securitas Luxembourg.eml
2022-10-17 13:46 - 2022-10-25 14:23 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2022-10-17 13:46 - 2022-10-25 14:23 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader.lnk
2022-10-17 13:17 - 2022-10-17 13:17 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-10-17 13:17 - 2022-10-17 13:17 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-10-17 13:16 - 2022-10-17 13:16 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-10-17 13:16 - 2022-10-17 13:16 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-10-17 13:15 - 2022-10-17 13:15 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-10-17 12:51 - 2022-10-17 12:51 - 000105664 _____ C:\Users\Bonjour\Downloads\2022156389887.pdf
2022-10-17 12:47 - 2022-10-17 12:47 - 002382132 _____ C:\Users\Bonjour\Downloads\mansinhb_9-21-2022_11-40-35.pdf
2022-10-17 12:02 - 2022-10-17 12:03 - 000108231 _____ C:\Users\Bonjour\Downloads\2022156389884 (1).pdf
2022-10-17 12:02 - 2022-10-17 12:02 - 000000000 _____ C:\Users\Bonjour\Downloads\2022156389884 (2).pdf
2022-10-16 11:27 - 2022-10-16 11:27 - 000108231 _____ C:\Users\Bonjour\Downloads\2022156389884.pdf
2022-10-03 17:02 - 2022-10-03 17:02 - 000000000 ____D C:\Users\Bonjour\AppData\Roaming\com.adobe.dunamis
2022-10-03 17:02 - 2022-10-03 17:02 - 000000000 ____D C:\Users\Bonjour\.ms-ad
2022-10-03 11:54 - 2022-10-03 11:54 - 000160851 _____ C:\Users\Bonjour\Desktop\Avis_d_impot_2022_sur_les_revenus_2021.pdf
2022-10-01 00:36 - 2022-10-01 00:36 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-10-01 00:36 - 2022-10-01 00:36 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-10-01 00:35 - 2022-10-01 00:35 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe
2022-10-01 00:35 - 2022-10-01 00:35 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com
2022-10-01 00:35 - 2022-10-01 00:35 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll
2022-10-01 00:35 - 2022-10-01 00:35 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com
2022-10-01 00:35 - 2022-10-01 00:35 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe
2022-10-01 00:34 - 2022-10-01 00:34 - 000270848 _____ C:\Windows\system32\EsclScan.dll
2022-10-01 00:34 - 2022-10-01 00:34 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll
2022-10-01 00:34 - 2022-10-01 00:34 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com
2022-10-01 00:34 - 2022-10-01 00:34 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com
2022-10-01 00:31 - 2022-10-01 00:31 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll
2022-10-01 00:31 - 2022-10-01 00:31 - 000057344 _____ C:\Windows\system32\APMonUI.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll
2022-10-01 00:28 - 2022-10-01 00:28 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-10-01 00:28 - 2022-10-01 00:28 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll
2022-10-01 00:27 - 2022-10-01 00:27 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll
2022-10-01 00:27 - 2022-10-01 00:27 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-10-01 00:26 - 2022-10-01 00:26 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-10-01 00:26 - 2022-10-01 00:26 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-11-11 22:53 - 2021-03-16 18:33 - 000000000 ____D C:\Users\Bonjour\.VirtualBox
2022-11-11 22:48 - 2022-06-16 13:19 - 000002427 _____ C:\Users\Bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-11 22:48 - 2021-12-16 13:36 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3575384501-3454353828-3434194694-1001
2022-11-11 22:48 - 2021-03-09 21:00 - 000003384 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3575384501-3454353828-3434194694-1001
2022-11-11 22:43 - 2021-03-16 18:33 - 000000000 ____D C:\ProgramData\VirtualBox
2022-11-11 22:43 - 2021-03-09 20:51 - 001682884 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-11 22:43 - 2019-12-07 15:49 - 000757012 _____ C:\Windows\system32\perfh00C.dat
2022-11-11 22:43 - 2019-12-07 15:49 - 000142492 _____ C:\Windows\system32\perfc00C.dat
2022-11-11 22:43 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-11-11 22:40 - 2021-03-09 22:09 - 000000000 __SHD C:\Users\Bonjour\IntelGraphicsProfiles
2022-11-11 22:39 - 2021-03-09 20:56 - 000000000 ____D C:\Users\Bonjour
2022-11-11 22:37 - 2020-11-18 23:28 - 000441880 _____ C:\Windows\system32\FNTCACHE.DAT
2022-11-11 22:36 - 2021-03-09 20:38 - 000008192 ___SH C:\DumpStack.log.tmp
2022-11-11 22:36 - 2020-11-19 00:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-11 22:35 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2022-11-11 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-11-11 22:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-11-11 22:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-11-11 22:16 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-11-11 22:06 - 2021-03-09 22:46 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-11 22:06 - 2021-03-09 22:46 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-11-11 22:05 - 2021-03-09 22:45 - 000000000 ____D C:\Program Files (x86)\Google
2022-11-11 22:01 - 2020-11-18 23:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-11-11 21:58 - 2020-11-19 00:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-11 21:38 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-11-10 23:13 - 2020-11-19 00:31 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-11-10 22:24 - 2020-11-19 00:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-11-10 22:21 - 2021-03-16 18:36 - 000000000 ____D C:\Users\Bonjour\VirtualBox VMs
2022-11-10 22:10 - 2021-03-12 11:47 - 000000000 ____D C:\Users\Bonjour\AppData\Local\CrashDumps
2022-11-09 22:27 - 2021-03-09 20:36 - 000000000 ____D C:\Windows\Panther
2022-11-09 22:27 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-11-09 21:53 - 2021-03-09 21:27 - 000000000 ____D C:\Windows\system32\MRT
2022-11-09 21:44 - 2021-03-09 21:27 - 146960040 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-11-09 21:40 - 2021-03-09 23:31 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-11-09 21:35 - 2021-03-09 23:34 - 000007602 _____ C:\Users\Bonjour\AppData\Local\resmon.resmoncfg
2022-11-09 02:37 - 2022-03-13 14:22 - 000002396 _____ C:\Users\Bonjour\Desktop\Personne 1 - Chrome.lnk
2022-11-09 02:34 - 2021-03-09 20:56 - 000000000 ____D C:\Users\Bonjour\AppData\Local\Packages
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2022-10-18 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-10-17 13:47 - 2021-03-09 22:44 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-10-17 13:29 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-10-17 13:29 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-10-16 11:27 - 2020-11-19 00:31 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-16 11:27 - 2020-11-19 00:31 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-03-09 23:34 - 2022-11-09 21:35 - 000007602 _____ () C:\Users\Bonjour\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2012-07-20 10:26 - 2012-07-20 10:26 - 000094720 _____ (Ralink) C:\Windows\SysWOW64\legap.dll
2012-07-12 21:32 - 2012-07-12 21:32 - 000144384 _____ (TODO:
2022-11-11 22:29 - 2022-11-11 22:29 - 002375168 _____ (Farbar) C:\Users\Bonjour\Desktop\FRST64.exe
2022-11-11 21:29 - 2022-11-11 21:29 - 003305160 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPCleaner.exe
2022-11-11 22:08 - 2022-11-11 22:08 - 003509960 _____ (Nicolas Coolman) C:\Users\Bonjour\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {f51e8836-810d-11eb-ae4c-9ed334ef2a56}
{bootmgr}
{eadfe8eb-810e-11eb-89ec-806e6f6e6963}
{f51e8837-810d-11eb-ae4c-9ed334ef2a56}
{f51e8838-810d-11eb-ae4c-9ed334ef2a56}
{f51e8835-810d-11eb-ae4c-9ed334ef2a56}
timeout 0
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {e1741962-6207-11ed-8a52-806e6f6e6963}
description Internal CD/DVD ROM Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {eadfe8eb-810e-11eb-89ec-806e6f6e6963}
description Internal Hard Disk or Solid State Disk
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8835-810d-11eb-ae4c-9ed334ef2a56}
description USB Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8836-810d-11eb-ae4c-9ed334ef2a56}
description Internal CD/DVD ROM Drive (UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8837-810d-11eb-ae4c-9ed334ef2a56}
description Network Adapter (IPv4 UEFI)
Application logicielle (101fffff)
--------------------------------
identificateur {f51e8838-810d-11eb-ae4c-9ed334ef2a56}
description Network Adapter (IPv6 UEFI)
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
nx OptIn
bootmenupolicy Standard
Chargeur de d‚marrage Windows
-----------------------------
identificateur {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{f51e883d-810d-11eb-ae4c-9ed334ef2a56}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{f51e883d-810d-11eb-ae4c-9ed334ef2a56}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {f51e883a-810d-11eb-ae4c-9ed334ef2a56}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {f51e883c-810d-11eb-ae4c-9ed334ef2a56}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {f51e883d-810d-11eb-ae4c-9ed334ef2a56}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================