Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03.02.2024 01
Exécuté par Fran (administrateur) sur LAPTOP-FIRGMISR (Acer Aspire E5-575) (06-02-2024 11:42:08)
Exécuté depuis C:\Users\Eugene\Desktop\FRST64.exe
Profils chargés: Fran & invite & Eugene
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Cisco WebEx LLC -> Cisco WebEx LLC) C:\Program Files (x86)\Webex\Webex\Applications\PTIM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxEM.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) CN -> Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(services.exe ->) (TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(svchost.exe ->) (Cisco WebEx LLC -> Cisco WebEx LLC) C:\Program Files (x86)\Webex\Webex\Applications\ptSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2312.7.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-08-18] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2023-05-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [PTIM.exe] => C:\Program Files (x86)\Webex\Webex\Applications\PTIM.exe [980536 2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
HKLM\...\RunOnce: [AvWscRemove] => "C:\WINDOWS\Temp\wsc_proxy.exe" /svc /unregister /av_as /selfdelete (Pas de fichier) <==== ATTENTION
HKLM-x32\...\RunOnce: [ccleaner_update_helper] => C:\Program Files\CCleaner\ccleaner_update_helper.exe [783160 2024-01-24] (PIRIFORM SOFTWARE LIMITED -> Piriform)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [52120 2023-10-13] (Glarysoft Ltd -> Glarysoft Ltd)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2019-08-22] (TomTom International BV -> TomTom)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [AvastBrowserAutoLaunch_A7BD494015A5DAAE3B1FE07707324F92] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31325464 2023-06-14] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-437541473-2613086957-909630189-1003\...\Run: [AvastBrowserAutoLaunch_E598CF6F04C7E8F065D0B8B1A84D5B7D] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-437541473-2613086957-909630189-1003\...\Run: [MicrosoftEdgeAutoLaunch_794CCB74135F3B68A0C136FAB473D11B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788840 2024-02-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS3300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDG3.DLL [482816 2019-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2015-03-12] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3300 series: C:\WINDOWS\system32\CNMLMG3.DLL [1311232 2019-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\121.0.6167.140\Installer\chrmstp.exe [2024-02-05] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\Installer\chrmstp.exe [2024-02-05] (Avast Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk *
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {E1B0060A-AF84-4069-AC0D-40C6781C65C0} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {6F76F7F7-B870-44E4-BCF7-4BE407614DAF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {98DA2DE9-EED4-4EB2-9E1D-601F59A12257} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {EC7BEDC2-2F04-405B-842A-30C1A3A0558A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {157941D5-549E-48BB-99BD-7C55DA67FF2E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software s.r.o. -> Avast Software)
Task: {44147C8E-6DAF-45E8-AA13-F862A5DB81A8} - System32\Tasks\AvastBrowserProtectS-1-5-21-437541473-2613086957-909630189-1003 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1658776 2023-04-19] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {4333E7C0-48C0-4B5E-9F44-D0263403022C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
Task: {B20DC83E-6309-4AC2-93D6-C608BDCB1D18} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
Task: {282D2627-0E68-4A35-B9A0-8B1D2C66156F} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task (Pas de fichier)
Task: {49E48413-C9B5-41FD-9DA9-C6AF71A3861D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform)
Task: {984B2952-58BF-467A-89E3-3275379BAA12} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c2047760-b392-4eab-a854-c10ad1125651" --version "6.08.10255" --silent
Task: {2DA13F36-6122-4A8D-92DE-E09E71818722} - System32\Tasks\CCleanerSkipUAC - Fran => C:\Program Files\CCleaner\CCleaner.exe [0 2023-03-01] () <==== ATTENTION [zéro octet Fichier/Dossier]
Task: {872C880B-12E1-4308-A4FD-AD2515045DE2} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {9EC06DA0-A270-4402-89B5-A72B24935809} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2023-06-14] (Garmin International, Inc. -> )
Task: {064E0EF6-1D04-42F3-986B-5E7F590371A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-23] (Google Inc -> Google Inc.)
Task: {B163F99E-4090-483C-AFA5-C230994A62D6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-23] (Google Inc -> Google Inc.)
Task: {B4696987-7318-44D0-97E0-7C86FAA1FB45} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [857568 2016-01-14] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {965A57C6-2331-4064-BC6E-A9742340BBBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-01-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {81BBBFAE-88CD-4F1F-9B1B-F6510F383E42} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-01-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A6D0F22-9622-4CAF-B485-23F2EEBDA0EE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EF5690E-878F-40E3-846F-F8BAF92FAD1C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C923F5ED-910B-41B9-98A9-8A41780F3A95} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [362080 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {F339394F-5FC6-4A6B-BBDE-2EBE7E88A7A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC509545-6530-439C-A84A-7FEF9D22AF92} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {09C1AB09-B8C9-4E83-866B-6CCA5449DE4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F346FFCB-8244-40CA-B0B5-603CE5A1E7AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1107634-6CDB-4FE0-812A-3098545C4E73} - System32\Tasks\Mozilla\Firefox Default Browser Agent BF420092A59D1BD0 => C:\Users\Eugene\AppData\Local\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {3E88C6ED-FB0E-40E0-AAE8-620F628227C8} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2016-09-13] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{18a1b6bf-d714-49b5-96b9-47fabe0b2297}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}: [DhcpDomain] home
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D214431323: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D214431323: [DhcpDomain] home
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}: [DhcpDomain] home
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{2d3b825a-3e68-4c11-9e9b-d23123ea038d}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}: [DhcpDomain] home
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}: [DhcpDomain] home
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{5f7a0005-5edf-44c0-be88-f14c1f810155}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}: [DhcpDomain] home
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}: [DhcpDomain] home
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}: [DhcpDomain] home
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\3616D60796E6761627C656379656E6E656: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\3616D60796E676C65637365646275637: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\960586F6E6560246560214E646275602341636861657: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}: [DhcpDomain] home
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{b6d3c019-1b75-4f72-bb35-98216e03b325}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{c1bf5d0e-c776-4796-b144-29fa9162d214}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1bf5d0e-c776-4796-b144-29fa9162d214}: [DhcpDomain] home
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C405D4F514135483: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}: [DhcpDomain] home
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}: [DhcpDomain] home
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\6627565626F687F555546544D4C4: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\B41616D626F687F507C65737: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\C496675626F687D223638303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\C496675626F687D223638303: [DhcpDomain] home
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-28]
Edge Extension: (Avast Passwords) - C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-06-24]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-10-05]
Edge HKLM-x32\...\Edge\Extension: [bbcinlkgjjkejfdpemiealijmmooekmp]
FireFox:
========
FF ProfilePath: C:\Users\Fran\AppData\Roaming\TomTom\HOME\Profiles\gg463ubf.default [2019-10-30]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-10-30] [] [non signé]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @webex.com/npatgpc -> C:\Program Files (x86)\Webex\npatgpc.dll [2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default [2024-02-06]
CHR Notifications: Default -> hxxps://www.campings.com; hxxps://www.facebook.com; hxxps://www.laredoute.fr; hxxps://www.mobilhome-express.fr; hxxps://www.tomtom.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-09-15]
CHR Extension: (Avast Passwords) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-10]
CHR Extension: (Google Docs hors connexion) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-29]
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-29]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\elevation_service.exe [1847216 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14045768 2024-01-29] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [889240 2023-09-15] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-10-13] (Glarysoft Ltd -> Glarysoft Ltd)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-02-05] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-02-05] (Intel Corporation) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WebexService; C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe [144440 2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [23568 2023-10-15] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 MpKsl62188d43; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0A8A96E1-53D8-4610-B3EE-870762FE706D}\MpKslDrv.sys [263560 2024-02-06] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2020-10-13] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2024-02-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2024-02-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2024-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl435c7b1d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8954767-397C-47A5-9ED0-C40E81FA82E8}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-06 11:42 - 2024-02-06 11:42 - 000036811 _____ C:\Users\Eugene\Desktop\FRST.txt
2024-02-06 11:41 - 2024-02-06 11:41 - 000000000 ____D C:\Users\Eugene\AppData\Local\D3DSCache
2024-02-06 10:31 - 2024-02-06 11:42 - 000000000 ____D C:\FRST
2024-02-06 10:30 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Desktop\FRST64.exe
2024-02-06 10:29 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Downloads\FRST64.exe
2024-02-06 10:13 - 2024-02-06 10:13 - 003538080 _____ (Nicolas Coolman) C:\Users\Eugene\Desktop\ZHPSuite.exe
2024-02-05 23:04 - 2024-02-05 23:04 - 014071400 _____ (AVAST Software) C:\Users\Eugene\Downloads\avastclear.exe
2024-02-05 22:29 - 2024-02-06 10:24 - 000223772 _____ C:\Users\Fran\Desktop\ZHPDiag.txt
2024-02-05 22:20 - 2024-02-06 10:24 - 000000000 ____D C:\Users\Fran\AppData\Roaming\ZHP
2024-02-05 22:20 - 2024-02-05 22:20 - 000000868 _____ C:\Users\Fran\Desktop\ZHPSuite.lnk
2024-02-05 22:20 - 2024-02-05 22:20 - 000000000 ____D C:\Users\Fran\AppData\Local\ZHP
2024-02-05 15:21 - 2024-02-05 15:24 - 000000000 ___HD C:\$WinREAgent
2024-02-05 15:07 - 2024-02-05 15:08 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1 (2).exe
2024-02-05 15:04 - 2024-02-05 15:04 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1 (1).exe
2024-02-05 15:01 - 2024-02-05 15:02 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1.exe
2024-02-03 19:24 - 2024-02-03 19:24 - 000003824 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-437541473-2613086957-909630189-1003
2023-12-20 10:19 - 2023-12-20 10:19 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-19 20:49 - 2023-12-19 20:49 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-06 11:40 - 2020-10-13 18:04 - 000000000 ____D C:\Users\invite
2024-02-06 11:16 - 2021-12-18 20:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-06 11:16 - 2018-08-28 16:58 - 000000000 __SHD C:\Users\Eugene\IntelGraphicsProfiles
2024-02-06 11:16 - 2017-06-23 22:41 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-06 10:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-06 10:13 - 2022-12-29 18:59 - 000000000 ____D C:\Program Files\CCleaner
2024-02-06 10:13 - 2020-10-13 18:12 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-06 10:13 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2024-02-06 10:13 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2024-02-06 10:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-02-06 10:08 - 2020-10-13 18:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-06 10:08 - 2020-10-13 18:04 - 000000000 ____D C:\Users\Eugene
2024-02-06 10:08 - 2020-10-13 18:01 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-06 10:08 - 2020-10-13 18:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-05 23:18 - 2018-06-08 20:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-02-05 23:08 - 2019-12-07 10:03 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2024-02-05 23:08 - 2017-06-24 09:47 - 000000000 ____D C:\ProgramData\AVAST Software
2024-02-05 23:04 - 2017-06-24 09:29 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-02-05 23:00 - 2022-12-12 17:30 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2024-02-05 23:00 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\AVAST Software
2024-02-05 23:00 - 2017-09-09 07:41 - 000000000 ____D C:\Users\Fran\AppData\Local\AVAST Software
2024-02-05 22:59 - 2022-12-12 17:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-02-05 20:47 - 2017-06-23 22:41 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-05 19:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-05 17:58 - 2021-12-11 17:35 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-437541473-2613086957-909630189-1003
2024-02-05 17:58 - 2020-10-13 18:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-437541473-2613086957-909630189-1003
2024-02-05 17:58 - 2020-10-13 18:04 - 000002424 _____ C:\Users\Eugene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-05 17:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-05 17:56 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\ConnectedDevicesPlatform
2024-02-05 15:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-05 15:22 - 2019-03-10 11:52 - 000000000 ____D C:\Users\Eugene\AppData\Roaming\Molotov
2024-02-05 15:19 - 2018-08-28 17:00 - 000000000 ____D C:\Users\Eugene\AppData\Local\PlaceholderTileLogoFolder
2024-02-05 15:19 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\Packages
2024-02-05 15:19 - 2016-02-13 14:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-05 14:31 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-02-05 14:18 - 2022-12-12 18:03 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-02-05 14:07 - 2022-12-29 18:59 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-02-03 21:28 - 2017-01-05 13:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-02-03 19:23 - 2020-10-13 18:01 - 000437064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-03 19:18 - 2017-06-25 21:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-03 19:16 - 2020-06-24 08:36 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-03 19:16 - 2020-06-24 08:36 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-02-03 19:09 - 2017-06-25 21:06 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-03 18:40 - 2020-10-13 18:16 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2024-02-03 18:40 - 2020-10-13 18:16 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2024-02-03 18:39 - 2020-10-13 18:16 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-03 18:39 - 2020-10-13 18:16 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheckExt =========================
2017-06-24 09:41 - 2017-03-04 06:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2018-07-31 15:37 - 2015-03-12 04:00 - 000406528 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMCT.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2019-11-17 15:18 - 1997-07-14 17:42 - 000314880 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2016-01-14 09:51 - 2016-01-14 09:51 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
2015-10-30 08:19 - 2017-06-24 09:33 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-10-30 08:19 - 2017-06-24 09:33 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2018-07-31 15:37 - 2015-03-12 04:00 - 000030208 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\1_CNMPDCT.DLL
2018-07-31 15:37 - 2015-03-12 04:00 - 000030208 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPDCT.DLL
2018-07-31 15:37 - 2015-03-12 04:00 - 000102912 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPPCT.DLL
2024-02-06 10:30 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Desktop\FRST64.exe
2024-02-06 10:13 - 2024-02-06 10:13 - 003538080 _____ (Nicolas Coolman) C:\Users\Eugene\Desktop\ZHPSuite.exe
2024-02-06 10:29 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Downloads\FRST64.exe
2023-10-15 11:17 - 2023-10-15 11:17 - 001589510 _____ (Igor Pavlov) C:\Users\Fran\Downloads\7_Zip_(64bit)_v23.01.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{03eefc68-d31b-11e6-afd4-806e6f6e6963}
{03eefc69-d31b-11e6-afd4-806e6f6e6963}
{03eefc6a-d31b-11e6-afd4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc68-d31b-11e6-afd4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc69-d31b-11e6-afd4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc6a-d31b-11e6-afd4-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {e8ea015d-d3a0-11e6-acfa-a81e8432c951}
description Network Boot-IPV4: A8-1E-84-32-C9-51
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
nx OptOut
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par Fran (administrateur) sur LAPTOP-FIRGMISR (Acer Aspire E5-575) (06-02-2024 11:42:08)
Exécuté depuis C:\Users\Eugene\Desktop\FRST64.exe
Profils chargés: Fran & invite & Eugene
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3930 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Cisco WebEx LLC -> Cisco WebEx LLC) C:\Program Files (x86)\Webex\Webex\Applications\PTIM.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxEM.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(services.exe ->) (Glarysoft Ltd -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) CN -> Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(services.exe ->) (TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(svchost.exe ->) (Cisco WebEx LLC -> Cisco WebEx LLC) C:\Program Files (x86)\Webex\Webex\Applications\ptSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2312.7.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2018-11-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-08-18] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2023-05-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [PTIM.exe] => C:\Program Files (x86)\Webex\Webex\Applications\PTIM.exe [980536 2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
HKLM\...\RunOnce: [AvWscRemove] => "C:\WINDOWS\Temp\wsc_proxy.exe" /svc /unregister /av_as /selfdelete (Pas de fichier) <==== ATTENTION
HKLM-x32\...\RunOnce: [ccleaner_update_helper] => C:\Program Files\CCleaner\ccleaner_update_helper.exe [783160 2024-01-24] (PIRIFORM SOFTWARE LIMITED -> Piriform)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [52120 2023-10-13] (Glarysoft Ltd -> Glarysoft Ltd)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2019-08-22] (TomTom International BV -> TomTom)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2224096 2020-11-10] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [AvastBrowserAutoLaunch_A7BD494015A5DAAE3B1FE07707324F92] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38935376 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-437541473-2613086957-909630189-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31325464 2023-06-14] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-437541473-2613086957-909630189-1003\...\Run: [AvastBrowserAutoLaunch_E598CF6F04C7E8F065D0B8B1A84D5B7D] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-437541473-2613086957-909630189-1003\...\Run: [MicrosoftEdgeAutoLaunch_794CCB74135F3B68A0C136FAB473D11B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788840 2024-02-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon TS3300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDG3.DLL [482816 2019-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2015-03-12] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3300 series: C:\WINDOWS\system32\CNMLMG3.DLL [1311232 2019-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\121.0.6167.140\Installer\chrmstp.exe [2024-02-05] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\Installer\chrmstp.exe [2024-02-05] (Avast Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk *
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {E1B0060A-AF84-4069-AC0D-40C6781C65C0} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {6F76F7F7-B870-44E4-BCF7-4BE407614DAF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {98DA2DE9-EED4-4EB2-9E1D-601F59A12257} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {EC7BEDC2-2F04-405B-842A-30C1A3A0558A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3057448 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
Task: {157941D5-549E-48BB-99BD-7C55DA67FF2E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-17] (Avast Software s.r.o. -> Avast Software)
Task: {44147C8E-6DAF-45E8-AA13-F862A5DB81A8} - System32\Tasks\AvastBrowserProtectS-1-5-21-437541473-2613086957-909630189-1003 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1658776 2023-04-19] (Avast Software s.r.o. -> Avast Software) <==== ATTENTION
Task: {4333E7C0-48C0-4B5E-9F44-D0263403022C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
Task: {B20DC83E-6309-4AC2-93D6-C608BDCB1D18} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
Task: {282D2627-0E68-4A35-B9A0-8B1D2C66156F} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe task (Pas de fichier)
Task: {49E48413-C9B5-41FD-9DA9-C6AF71A3861D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform)
Task: {984B2952-58BF-467A-89E3-3275379BAA12} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c2047760-b392-4eab-a854-c10ad1125651" --version "6.08.10255" --silent
Task: {2DA13F36-6122-4A8D-92DE-E09E71818722} - System32\Tasks\CCleanerSkipUAC - Fran => C:\Program Files\CCleaner\CCleaner.exe [0 2023-03-01] () <==== ATTENTION [zéro octet Fichier/Dossier]
Task: {872C880B-12E1-4308-A4FD-AD2515045DE2} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {9EC06DA0-A270-4402-89B5-A72B24935809} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2023-06-14] (Garmin International, Inc. -> )
Task: {064E0EF6-1D04-42F3-986B-5E7F590371A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-23] (Google Inc -> Google Inc.)
Task: {B163F99E-4090-483C-AFA5-C230994A62D6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-23] (Google Inc -> Google Inc.)
Task: {B4696987-7318-44D0-97E0-7C86FAA1FB45} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [857568 2016-01-14] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {965A57C6-2331-4064-BC6E-A9742340BBBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-01-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {81BBBFAE-88CD-4F1F-9B1B-F6510F383E42} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28371568 2024-01-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A6D0F22-9622-4CAF-B485-23F2EEBDA0EE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EF5690E-878F-40E3-846F-F8BAF92FAD1C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218672 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C923F5ED-910B-41B9-98A9-8A41780F3A95} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [362080 2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {F339394F-5FC6-4A6B-BBDE-2EBE7E88A7A0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC509545-6530-439C-A84A-7FEF9D22AF92} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {09C1AB09-B8C9-4E83-866B-6CCA5449DE4D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F346FFCB-8244-40CA-B0B5-603CE5A1E7AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1107634-6CDB-4FE0-812A-3098545C4E73} - System32\Tasks\Mozilla\Firefox Default Browser Agent BF420092A59D1BD0 => C:\Users\Eugene\AppData\Local\Mozilla Firefox\default-browser-agent.exe [696304 2021-05-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {3E88C6ED-FB0E-40E0-AAE8-620F628227C8} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2016-09-13] (Acer Incorporated -> Acer Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0421a94f-3e3f-4391-b2ff-b2ce39af3cf8}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{18a1b6bf-d714-49b5-96b9-47fabe0b2297}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}: [DhcpDomain] home
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D214431323: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D214431323: [DhcpDomain] home
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2368aadf-c919-41e5-92b3-268690d4482b}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}: [DhcpDomain] home
Tcpip\..\Interfaces\{2997bb42-7611-45c0-811a-83938779a072}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{2d3b825a-3e68-4c11-9e9b-d23123ea038d}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}: [DhcpDomain] home
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{2f9b5f85-4ea5-4925-9abb-7f32518c1b88}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}: [DhcpDomain] home
Tcpip\..\Interfaces\{55ed54e3-0cf2-4b27-a9c7-6f7a9b74188e}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{5f7a0005-5edf-44c0-be88-f14c1f810155}: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87057c31-8078-472f-9a44-224a1a40416a}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}: [DhcpDomain] home
Tcpip\..\Interfaces\{87073e86-deee-4bb7-a301-2dd725e1e14e}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}: [DhcpDomain] home
Tcpip\..\Interfaces\{95a0dec5-5d62-411c-9ab9-eead93c5b2f7}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}: [DhcpDomain] home
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\3616D60796E6761627C656379656E6E656: [DhcpNameServer] 192.168.2.254
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\3616D60796E676C65637365646275637: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\960586F6E6560246560214E646275602341636861657: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a4a54627-7a88-4fa3-b6b4-496ddfc6f042}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a7136056-545e-4a8e-9945-af3858456588}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}: [DhcpDomain] home
Tcpip\..\Interfaces\{aa13f643-1127-43dc-bcfb-c8b6811633ef}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{b6d3c019-1b75-4f72-bb35-98216e03b325}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bc3076b7-a87a-4f1e-a616-fedf861325a0}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{c1bf5d0e-c776-4796-b144-29fa9162d214}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c1bf5d0e-c776-4796-b144-29fa9162d214}: [DhcpDomain] home
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c8fa3e61-a68a-4a5a-9a90-8646313d2570}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C405D4F514135483: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D223031403: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D223031403: [DhcpDomain] home
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D254036303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d432eb08-64dc-47e9-809b-83ab7b6a973c}\C496675626F687D254036303: [DhcpDomain] home
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}: [DhcpDomain] home
Tcpip\..\Interfaces\{ea45760d-5640-4394-a3db-02c091cd4599}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}: [DhcpDomain] home
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\6627565626F687F555546544D4C4: [DhcpNameServer] 212.27.40.240 212.27.40.241
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\6627565626F687F594E465556564: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\84F6E6F62702642716E6: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\960586F6E6560246560254577656E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\B41616D626F687: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\B41616D626F687F507C65737: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\C496675626F687D223638303: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd44c017-caa1-46ed-8fa5-040c75a4f1d7}\C496675626F687D223638303: [DhcpDomain] home
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-28]
Edge Extension: (Avast Passwords) - C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-06-24]
Edge Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Fran\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-10-05]
Edge HKLM-x32\...\Edge\Extension: [bbcinlkgjjkejfdpemiealijmmooekmp]
FireFox:
========
FF ProfilePath: C:\Users\Fran\AppData\Roaming\TomTom\HOME\Profiles\gg463ubf.default [2019-10-30]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2019-10-30] [] [non signé]
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-02-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @webex.com/npatgpc -> C:\Program Files (x86)\Webex\npatgpc.dll [2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default [2024-02-06]
CHR Notifications: Default -> hxxps://www.campings.com; hxxps://www.facebook.com; hxxps://www.laredoute.fr; hxxps://www.mobilhome-express.fr; hxxps://www.tomtom.com
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-09-15]
CHR Extension: (Avast Passwords) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-10]
CHR Extension: (Google Docs hors connexion) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-29]
CHR Profile: C:\Users\Fran\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-29]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\120.0.23745.268\elevation_service.exe [1847216 2024-01-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14045768 2024-01-29] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [2357936 2020-11-23] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [889240 2023-09-15] (Glarysoft Ltd -> Glarysoft Ltd)
S3 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [76696 2023-10-13] (Glarysoft Ltd -> Glarysoft Ltd)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-02-05] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-02-05] (Intel Corporation) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WebexService; C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe [144440 2019-02-21] (Cisco WebEx LLC -> Cisco WebEx LLC)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2024-02-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [23568 2023-10-15] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 MpKsl62188d43; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0A8A96E1-53D8-4610-B3EE-870762FE706D}\MpKslDrv.sys [263560 2024-02-06] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2020-10-13] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2024-02-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2024-02-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2024-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsl435c7b1d; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8954767-397C-47A5-9ED0-C40E81FA82E8}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-06 11:42 - 2024-02-06 11:42 - 000036811 _____ C:\Users\Eugene\Desktop\FRST.txt
2024-02-06 11:41 - 2024-02-06 11:41 - 000000000 ____D C:\Users\Eugene\AppData\Local\D3DSCache
2024-02-06 10:31 - 2024-02-06 11:42 - 000000000 ____D C:\FRST
2024-02-06 10:30 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Desktop\FRST64.exe
2024-02-06 10:29 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Downloads\FRST64.exe
2024-02-06 10:13 - 2024-02-06 10:13 - 003538080 _____ (Nicolas Coolman) C:\Users\Eugene\Desktop\ZHPSuite.exe
2024-02-05 23:04 - 2024-02-05 23:04 - 014071400 _____ (AVAST Software) C:\Users\Eugene\Downloads\avastclear.exe
2024-02-05 22:29 - 2024-02-06 10:24 - 000223772 _____ C:\Users\Fran\Desktop\ZHPDiag.txt
2024-02-05 22:20 - 2024-02-06 10:24 - 000000000 ____D C:\Users\Fran\AppData\Roaming\ZHP
2024-02-05 22:20 - 2024-02-05 22:20 - 000000868 _____ C:\Users\Fran\Desktop\ZHPSuite.lnk
2024-02-05 22:20 - 2024-02-05 22:20 - 000000000 ____D C:\Users\Fran\AppData\Local\ZHP
2024-02-05 15:21 - 2024-02-05 15:24 - 000000000 ___HD C:\$WinREAgent
2024-02-05 15:07 - 2024-02-05 15:08 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1 (2).exe
2024-02-05 15:04 - 2024-02-05 15:04 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1 (1).exe
2024-02-05 15:01 - 2024-02-05 15:02 - 071961216 _____ (Molotov) C:\Users\Eugene\Downloads\MolotovSetup-5.0.1.exe
2024-02-03 19:24 - 2024-02-03 19:24 - 000003824 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-437541473-2613086957-909630189-1003
2023-12-20 10:19 - 2023-12-20 10:19 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-19 20:49 - 2023-12-19 20:49 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-02-06 11:40 - 2020-10-13 18:04 - 000000000 ____D C:\Users\invite
2024-02-06 11:16 - 2021-12-18 20:54 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-06 11:16 - 2018-08-28 16:58 - 000000000 __SHD C:\Users\Eugene\IntelGraphicsProfiles
2024-02-06 11:16 - 2017-06-23 22:41 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-06 10:53 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-06 10:13 - 2022-12-29 18:59 - 000000000 ____D C:\Program Files\CCleaner
2024-02-06 10:13 - 2020-10-13 18:12 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-02-06 10:13 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat
2024-02-06 10:13 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat
2024-02-06 10:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-02-06 10:08 - 2020-10-13 18:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-02-06 10:08 - 2020-10-13 18:04 - 000000000 ____D C:\Users\Eugene
2024-02-06 10:08 - 2020-10-13 18:01 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-06 10:08 - 2020-10-13 18:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-05 23:18 - 2018-06-08 20:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-02-05 23:08 - 2019-12-07 10:03 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2024-02-05 23:08 - 2017-06-24 09:47 - 000000000 ____D C:\ProgramData\AVAST Software
2024-02-05 23:04 - 2017-06-24 09:29 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-02-05 23:00 - 2022-12-12 17:30 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2024-02-05 23:00 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\AVAST Software
2024-02-05 23:00 - 2017-09-09 07:41 - 000000000 ____D C:\Users\Fran\AppData\Local\AVAST Software
2024-02-05 22:59 - 2022-12-12 17:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2024-02-05 20:47 - 2017-06-23 22:41 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-05 19:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-05 17:58 - 2021-12-11 17:35 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-437541473-2613086957-909630189-1003
2024-02-05 17:58 - 2020-10-13 18:16 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-437541473-2613086957-909630189-1003
2024-02-05 17:58 - 2020-10-13 18:04 - 000002424 _____ C:\Users\Eugene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-05 17:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-05 17:56 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\ConnectedDevicesPlatform
2024-02-05 15:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-02-05 15:22 - 2019-03-10 11:52 - 000000000 ____D C:\Users\Eugene\AppData\Roaming\Molotov
2024-02-05 15:19 - 2018-08-28 17:00 - 000000000 ____D C:\Users\Eugene\AppData\Local\PlaceholderTileLogoFolder
2024-02-05 15:19 - 2018-08-28 16:58 - 000000000 ____D C:\Users\Eugene\AppData\Local\Packages
2024-02-05 15:19 - 2016-02-13 14:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-05 14:31 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-02-05 14:18 - 2022-12-12 18:03 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-02-05 14:07 - 2022-12-29 18:59 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-02-03 21:28 - 2017-01-05 13:24 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-02-03 19:23 - 2020-10-13 18:01 - 000437064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-02-03 19:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-02-03 19:18 - 2017-06-25 21:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-02-03 19:16 - 2020-06-24 08:36 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-03 19:16 - 2020-06-24 08:36 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-02-03 19:09 - 2017-06-25 21:06 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-02-03 18:40 - 2020-10-13 18:16 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2024-02-03 18:40 - 2020-10-13 18:16 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2024-02-03 18:39 - 2020-10-13 18:16 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-03 18:39 - 2020-10-13 18:16 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheckExt =========================
2017-06-24 09:41 - 2017-03-04 06:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2018-07-31 15:37 - 2015-03-12 04:00 - 000406528 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMCT.DLL
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2019-11-17 15:18 - 1997-07-14 17:42 - 000314880 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2016-01-14 09:51 - 2016-01-14 09:51 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
2015-10-30 08:19 - 2017-06-24 09:33 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-10-30 08:19 - 2017-06-24 09:33 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2018-07-31 15:37 - 2015-03-12 04:00 - 000030208 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\1_CNMPDCT.DLL
2018-07-31 15:37 - 2015-03-12 04:00 - 000030208 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPDCT.DLL
2018-07-31 15:37 - 2015-03-12 04:00 - 000102912 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPPCT.DLL
2024-02-06 10:30 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Desktop\FRST64.exe
2024-02-06 10:13 - 2024-02-06 10:13 - 003538080 _____ (Nicolas Coolman) C:\Users\Eugene\Desktop\ZHPSuite.exe
2024-02-06 10:29 - 2024-02-06 10:30 - 002389504 _____ (Farbar) C:\Users\Eugene\Downloads\FRST64.exe
2023-10-15 11:17 - 2023-10-15 11:17 - 001589510 _____ (Igor Pavlov) C:\Users\Fran\Downloads\7_Zip_(64bit)_v23.01.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de démarrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{03eefc68-d31b-11e6-afd4-806e6f6e6963}
{03eefc69-d31b-11e6-afd4-806e6f6e6963}
{03eefc6a-d31b-11e6-afd4-806e6f6e6963}
timeout 0
Gestionnaire de démarrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc68-d31b-11e6-afd4-806e6f6e6963}
description EFI USB Device
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc69-d31b-11e6-afd4-806e6f6e6963}
description EFI DVD/CDROM
Application logicielle (101fffff)
--------------------------------
identificateur {03eefc6a-d31b-11e6-afd4-806e6f6e6963}
description EFI Network
Application logicielle (101fffff)
--------------------------------
identificateur {e8ea015d-d3a0-11e6-acfa-a81e8432c951}
description Network Boot-IPV4: A8-1E-84-32-C9-51
Chargeur de démarrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
nx OptOut
bootmenupolicy Standard
Chargeur de démarrage Windows
-----------------------------
identificateur {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre à partir de la mise en veille prolongée
-------------------------------------------------
identificateur {1d253d86-0d7e-11eb-8706-9c4f85dda8b0}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {1d253d88-0d7e-11eb-8706-9c4f85dda8b0}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de mémoire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics mémoire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Paramètres EMS
--------------
identificateur {emssettings}
bootems No
Paramètres du débogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de mémoire RAM
----------------------
identificateur {badmemory}
Paramètres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Paramètres du chargeur de démarrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Paramètres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Paramètres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de périphérique
-----------------------
identificateur {1d253d89-0d7e-11eb-8706-9c4f85dda8b0}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================