Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 28-04-2021 Exécuté par guypa (administrateur) sur 2020-WYVERN (Micro-Star International Co., Ltd. MS-7B17) (02-05-2021 10:53:30) Exécuté depuis C:\Users\guypa\OneDrive\Bureau Profils chargés: guypa Platform: Windows 10 Home Version 20H2 19042.928 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\Allway Sync\Bin\SyncService.exe () [Fichier non signé] E:\OZI-DATA\LogicielsCartographie-Guides\Img2Ozf\Img2Ozf_2.0 et 2.05\version2.05\Img2ozf_2.05.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (AOMEI International Network Limited -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (A-Volute SAS -> A-Volute) C:\Users\guypa\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (Code Sector -> ) C:\Program Files\TeraCopy\TeraCopyService.exe (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd) [Fichier non signé] C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe (DuckLink Software) [Fichier non signé] C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\EH Asset Store\EHAssetStore.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) C:\Program Files\Grass Valley\GV License Manager\AppMaintainer.exe (Intel Corporation) [Fichier non signé] C:\Windows\System32\IPROSetMonitor.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_724e05bd98458fe4\RstMwService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> PowerLauncher) C:\Program Files\PowerToys\modules\launcher\PowerLauncher.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Q-Dir] => C:\Program Files\Q-Dir\Q-Dir.exe [2324872 2021-03-26] (Nenad Hrg -> Nenad Hrg (SoftwareOK.com)) HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [564928 2021-03-25] (geek software GmbH -> geek software GmbH) HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [669664 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [894944 2019-10-02] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) HKLM-x32\...\Run: [Creative.SBCommand] => C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe [196096 2021-01-19] (Creative Technology Ltd) [Fichier non signé] HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50041472 2021-03-12] (Google LLC -> ) HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\Run: [Speech Recognition] => C:\windows\Speech\Common\sapisvr.exe [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [3312640 2021-04-16] (pCloud AG -> pCloud AG) HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\Run: [DuckCapture] => C:\Program Files (x86)\DuckLink\DuckCapture\DuckCapture.exe [436736 2011-11-03] (DuckLink Software) [Fichier non signé] HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\guypa\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\guypa\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\RunOnce: [Uninstall 21.052.0314.0001\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\guypa\AppData\Local\Microsoft\OneDrive\21.052.0314.0001\amd64" HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\RunOnce: [Uninstall 21.052.0314.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\guypa\AppData\Local\Microsoft\OneDrive\21.052.0314.0001" HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\...\MountPoints2: {2970b659-3454-11ea-9d79-7cb27d05315f} - "O:\Autoplay.exe" -auto HKLM\...\Print\Monitors\EPSON WF-7620 Series 64MonitorBE: C:\windows\system32\E_YLMBKAE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV License Manager.lnk [2021-03-27] ShortcutTarget: GV License Manager.lnk -> C:\Program Files\Grass Valley\GV License Manager\AppMaintainer.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GV Video IO Hardware Driver.lnk [2021-03-27] ShortcutTarget: GV Video IO Hardware Driver.lnk -> C:\Program Files\Grass Valley\Video IO HW Driver\StormDiag.exe (GRASS VALLEY K.K. -> Grass Valley K.K.) Startup: C:\Users\guypa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GpsGate.lnk [2021-03-30] ShortcutTarget: GpsGate.lnk -> C:\Program Files (x86)\Franson\GpsGate 2.0\GpsGateXP.exe () [Fichier non signé] ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {082FF820-84DD-44B9-B004-E52BAC2F2498} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {11F7906F-211C-4A40-94C2-8659734283C8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4002744 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {137C5276-0CF5-43F5-9482-BC8D89C01A61} - System32\Tasks\PowerToys\Autorun for guypa => C:\Program Files\PowerToys\PowerToys.exe [856952 2020-06-03] (Microsoft Corporation -> Microsoft Corporation) Task: {1CF0DFED-8E91-4765-9895-BC4227A5EE2B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {20713761-20C0-4B84-AAA9-F0F8C1DF66CA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {279DC759-0503-4D0A-A7EE-AB95410AD295} - System32\Tasks\EPSON WF-7620 Series Update {155F20EE-D045-4603-9D07-7F2FC3CE3ABE} => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) Task: {394F7973-97D7-4C71-BDE2-74AD33C2F821} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-guy.palmade@free.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {3AD7C020-5893-471E-B1C8-3FA8DBBEBB23} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3CBF9C37-A55D-4822-9C89-B5543B09033D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {42E476E3-7E6F-49D2-9265-355DD5374BDE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-04-27] (Microsoft Corporation -> Microsoft Corporation) Task: {5140731C-322F-487B-B28D-776B077A70D6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-08] (Google LLC -> Google LLC) Task: {55D959D9-9674-4338-96F8-92206C51104D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248800 2021-04-21] (Microsoft Corporation -> Microsoft Corporation) Task: {6FAA5DDF-0A2C-4E55-A7DB-792BA625D904} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {71BFC395-F9F0-45F5-8514-721B58FD060A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {72A24BC3-B0F8-443A-AFD3-066EFE661E55} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696304 2021-04-20] (Mozilla Corporation -> Mozilla Foundation) Task: {87534F19-2D74-4FD2-ACD5-AE5721D1D45D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248800 2021-04-21] (Microsoft Corporation -> Microsoft Corporation) Task: {8A9D1FC0-BD22-4AA6-9DC3-3D09B900BA15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {96DA0B98-9C9D-4FDC-AA41-DB385B14617D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A2217145-9F82-4F1D-9437-0EE9EDFFBCA5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-08] (Google LLC -> Google LLC) Task: {AD525A72-370D-4FCF-8272-21D90EE3FDE8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B603ED2F-D30A-4E0F-B120-0CA0CE8A8A7D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C8642990-7A58-4EE1-97CB-37F2D3EA02E1} - System32\Tasks\EPSON WF-7620 Series Invitation {155F20EE-D045-4603-9D07-7F2FC3CE3ABE} => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) Task: {CEF419F9-DF49-4F80-AEB1-389E34BDF69E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4002744 2021-04-16] (Microsoft Corporation -> Microsoft Corporation) Task: {D0E7EC6F-D06B-436A-AE23-C80149122983} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114008 2021-04-27] (Microsoft Corporation -> Microsoft Corporation) Task: {DD4EFD9F-4C47-4B72-80D2-2A9BFB110637} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E3F6C5F8-D1D8-43C6-8E2F-5822DF5DF79F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E49B6DCE-8487-4308-9704-FAD8804F0D2E} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Task: {EAC7019D-B59B-4BAC-9E20-24E618499B49} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F31F718F-F5D6-4D21-BEFF-80C6C97847DD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform) Task: {F8E64AA2-365A-414F-A131-EAEF9770FD4A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FC044CE2-0B54-442A-A922-ED1E4CFAFA07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FCFC273C-8F86-4F95-867F-2AE7069DA7CE} - System32\Tasks\AOMEI Sauvegarde mes Fichiers(1) 2020-01-13, 12-08-44 => C:\Program Files (x86)\AOMEI Backupper\ABCore.exe [676392 2020-03-18] (AOMEI International Network Limited -> AOMEI Tech Co., Ltd.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\AOMEI Sauvegarde mes Fichiers(1) 2020-01-13, 12-08-44.job => C:\Program Files (x86)\AOMEI Backupper\ABCore.exe Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {155F20EE-D045-4603-9D07-7F2FC3CE3ABE}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {A449BCDC-CD78-43E3-AD7D-EAD2C9BBD2A1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {155F20EE-D045-4603-9D07-7F2FC3CE3ABE}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{155F20EE-D045-4603-9D07-7F2FC3CE3ABE} /F:UpdateWORKGROUP\2020-WYVERN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {A449BCDC-CD78-43E3-AD7D-EAD2C9BBD2A1}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{A449BCDC-CD78-43E3-AD7D-EAD2C9BBD2A1} /F:UpdateWORKGROUP\2020-WYVERN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{115d7a51-1e58-4edf-8829-ecdd929559a4}: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{adde3cf0-0c4e-4cb8-a343-3e77f07e6a6b}: [DhcpNameServer] 212.27.40.240 212.27.40.241 Edge: ======= DownloadDir: C:\Users\guypa\Downloads Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\guypa\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-02] FireFox: ======== FF DefaultProfile: yw9gze9w.default FF ProfilePath: C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\yw9gze9w.default [2020-01-08] FF ProfilePath: C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release [2021-05-02] FF Extension: (Adblocker X) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\@adblock57.xpi [2020-01-08] FF Extension: (AdBlocker Ultimate) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2021-04-07] FF Extension: (AdGuard AdBlocker) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\adguardadblocker@adguard.com.xpi [2021-03-26] FF Extension: (Cookie AutoDelete) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\CookieAutoDelete@kennydo.com.xpi [2021-03-26] FF Extension: (AdBlock) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2020-02-06] FF Extension: (StickyNotes) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\sticky@filenamezero.dip.jp.xpi [2020-04-28] FF Extension: (LastPass: Free Password Manager) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\support@lastpass.com.xpi [2021-04-27] FF Extension: (Google Translator for Firefox) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\translator@zoli.bod.xpi [2020-01-08] FF Extension: (uBlock Origin) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-04-23] FF Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-04-29] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\guypa\AppData\Roaming\Mozilla\Firefox\Profiles\g1xl1ge8.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-03-26] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-27] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-2403722559-2359336973-2458211709-1004: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default [2021-05-02] CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://chrome.google.com/webstore/category/extensions?hl=fr","hxxp://www.abcbourse.com/","hxxp://www.hxxps://www.google.com//?type=hp&ts=1426352187&from=amt&uid=M4-CT256M4SSD2_000000001220090A837F","hxxps://www.google.com/","hxxp://www.hxxps://www.google.com/.com/?type=hp&ts=1429811364&from=amt&uid=M4-CT256M4SSD2_000000001220090A837F","hxxps://www.google.com/" CHR Extension: (Slides) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-08] CHR Extension: (Docs) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-08] CHR Extension: (Google Drive) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-26] CHR Extension: (AdGuard AdBlocker) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2021-04-06] CHR Extension: (YouTube) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-08] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-03-26] CHR Extension: (uBlock Origin) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-03-27] CHR Extension: (Sheets) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-08] CHR Extension: (Cookie AutoDelete) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhcgjolkccmbidfldomjliifgaodjagh [2021-04-06] CHR Extension: (hxxp://www.lequipe.fr/Tennis/) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fliaefoipckggcpebdcjgoknmgpjnalk [2020-01-26] CHR Extension: (Bureau à distance Google Chrome) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-01-26] CHR Extension: (Google Docs hors connexion) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-22] CHR Extension: (hxxp://www.phonandroid.com/forum/samsung-gala) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gogbhckgdhdigkneggiapilamofmlgmm [2020-01-26] CHR Extension: (LastPass: Free Password Manager) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-05-02] CHR Extension: (Mate Translate - traducteur, dictionnaire) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2021-04-18] CHR Extension: (Gmail) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhopmchchfpfdcdjodmpfaaphdclmlj [2021-04-06] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-03-27] CHR Extension: (Sticky Notes) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbjdhgkkhefpifbifjiflpaajchdkhpg [2020-01-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-27] CHR Extension: (Gmail) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-27] CHR Extension: (Chrome Media Router) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-24] CHR Extension: (Sticky Notes 3 - Quick & Personal Note taking) - C:\Users\guypa\AppData\Local\Google\Chrome\User Data\Default\Extensions\plpdjbappofmfbgdmhoaabefbobddchk [2021-05-02] CHR Profile: C:\Users\guypa\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-26] CHR HKU\S-1-5-21-2403722559-2359336973-2458211709-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [889384 2020-03-18] (AOMEI International Network Limited -> AOMEI Tech Co., Ltd.) R2 BotkindSyncService; C:\Program Files\Allway Sync\Bin\SyncService.exe [264192 2020-12-08] () [Fichier non signé] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788392 2021-04-09] (Microsoft Corporation -> Microsoft Corporation) R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [458240 2020-03-12] (Creative Technology Ltd) [Fichier non signé] R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [133080 2020-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40104 2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R2 EHAssetStore; C:\Program Files\Grass Valley\EH Asset Store\EHAssetStore.exe [109872440 2020-09-07] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EHRenderService; C:\Program Files\Grass Valley\EDIUS X\EHRenderService\EHRenderServiceHost.exe [110459096 2020-09-07] (GRASS VALLEY K.K. -> Grass Valley K.K.) R2 EpsonScanSvc; C:\windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation) R2 Intel(R) PROSet Monitoring Service; C:\windows\system32\IProsetMonitor.exe [505856 2018-01-31] (Intel Corporation) [Fichier non signé] R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1633288 2020-12-09] (A-Volute SAS -> Nahimic) R2 PDF24; C:\Program Files\PDF24\pdf24.exe [564928 2021-03-25] (geek software GmbH -> geek software GmbH) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.) R2 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [112200 2021-03-22] (Code Sector -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 ammntdrv; C:\windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\windows\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 cbfsconnect2017; C:\WINDOWS\system32\drivers\cbfsconnect2017.sys [481296 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45968 2019-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21904 2019-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1090416 2020-12-07] (Creative Technology Ltd -> Creative Technology Ltd) R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [53616 2020-12-07] (Creative Technology Ltd -> Creative Technology Ltd) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [73448 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53504 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 EUDSKACS; C:\windows\system32\drivers\eudskacs.sys [22784 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\windows\system32\drivers\EuFdDisk.sys [341760 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 evserial9; C:\WINDOWS\system32\DRIVERS\evserial9.sys [40448 2021-02-18] (Element 5 Limited Liability Company -> ELTIMA Software) R3 MpKsl5d9faaca; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C8580CFE-436C-4C78-BE2C-F2B6F7FD53E4}\MpKslDrv.sys [47336 2021-05-02] (Microsoft Windows -> Microsoft Corporation) R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-01-17] (A-Volute -> Windows (R) Win 7 DDK provider) S3 NAL; C:\windows\system32\Drivers\iqvw64e.sys [50152 2017-10-18] (Intel(R) INTELND1617 -> Intel Corporation) R3 OA002Ufd; C:\WINDOWS\system32\DRIVERS\OA002Ufd.sys [168864 2008-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) R3 OA002Vid; C:\WINDOWS\system32\DRIVERS\OA002Vid.sys [306560 2008-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) S3 sershare; C:\WINDOWS\System32\DRIVERS\sershare.sys [21968 2021-02-18] (Microsoft Windows Hardware Compatibility Publisher -> ELTIMA Software) S3 SerSw; C:\WINDOWS\System32\drivers\sersw.sys [57856 2021-02-02] (Element 5 Limited Liability Company -> ELTIMA Software) S3 SPBUS; C:\WINDOWS\System32\drivers\spbus.sys [199168 2021-02-18] (Element 5 Limited Liability Company -> ELTIMA Software) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [831328 2020-01-08] (IDRIX SARL -> IDRIX) R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20496 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) S3 VSBC9; C:\WINDOWS\System32\drivers\evsbc9.sys [127488 2021-02-18] (Element 5 Limited Liability Company -> ELTIMA Software) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-02 10:53 - 2021-05-02 10:53 - 000000000 ____D C:\FRST 2021-05-02 10:51 - 2021-05-02 10:51 - 002298368 _____ (Farbar) C:\Users\guypa\Downloads\FRST64.exe 2021-05-02 10:36 - 2021-05-02 10:43 - 000000000 ____D C:\Users\guypa\AppData\Roaming\ZHP 2021-05-02 10:36 - 2021-05-02 10:36 - 003468952 _____ (Nicolas Coolman) C:\Users\guypa\Downloads\ZHPSuite.exe 2021-05-02 10:36 - 2021-05-02 10:36 - 000000000 ____D C:\Users\guypa\AppData\Local\ZHP 2021-05-02 08:22 - 2021-05-02 08:27 - 000000000 ____D C:\tmp 2021-04-30 17:02 - 2021-05-02 07:35 - 000000000 ____D C:\Users\guypa\OneDrive\Documents\7-PDF Split & Merge 2021-04-30 16:53 - 2021-05-02 08:22 - 000000000 ____D C:\Users\guypa\AppData\Roaming\YCanPDF 2021-04-30 16:53 - 2021-04-30 16:53 - 000000000 ____D C:\Users\guypa\AppData\Roaming\Icecream 2021-04-30 16:53 - 2021-04-30 16:53 - 000000000 ____D C:\Users\guypa\AppData\Local\Icecream 2021-04-30 16:53 - 2021-04-30 16:53 - 000000000 ____D C:\Users\guypa\AppData\Local\CrashRpt 2021-04-30 16:53 - 2021-04-30 16:53 - 000000000 ____D C:\Users\guypa\.Icecream PDF Editor 2021-04-29 11:16 - 2021-04-29 11:15 - 001918804 ____N C:\Users\guypa\Downloads\RB 34-TLog-VIBRAC.gpx 2021-04-29 11:16 - 2021-04-29 11:15 - 001671251 ____N C:\Users\guypa\Downloads\2021-RB34_TLog-COMPLET.plt 2021-04-29 11:16 - 2021-04-29 11:15 - 001176649 ____N C:\Users\guypa\Downloads\RB 34_trace.plt 2021-04-29 11:16 - 2021-04-29 11:15 - 000279754 ____N C:\Users\guypa\Downloads\RB 34-routes.gpx 2021-04-29 11:16 - 2021-04-29 11:15 - 000061787 ____N C:\Users\guypa\Downloads\RB 34-wpt.gpx 2021-04-29 11:16 - 2021-04-29 11:15 - 000040455 ____N C:\Users\guypa\Downloads\RB 34.wpt 2021-04-29 11:15 - 2021-04-29 11:15 - 001323377 _____ C:\Users\guypa\Downloads\fwdroadbook35.zip 2021-04-28 16:56 - 2021-04-28 19:50 - 000000000 ____D C:\Users\guypa\AppData\Local\AxCrypt 2021-04-28 16:56 - 2021-04-28 16:56 - 000000000 ____D C:\Program Files\AxCrypt 2021-04-28 16:55 - 2021-04-28 16:56 - 004304896 _____ C:\Users\guypa\Downloads\AxCrypt-2.1.1617.0-x64.msi 2021-04-28 16:06 - 2021-04-28 16:07 - 2147483648 _____ C:\Users\guypa\X 2021-04-28 15:51 - 2021-04-28 15:52 - 000000000 ____D C:\Users\guypa\AppData\Roaming\TrueCrypt 2021-04-28 15:51 - 2021-04-28 15:51 - 000231376 _____ (TrueCrypt Foundation) C:\WINDOWS\system32\Drivers\truecrypt.sys 2021-04-28 15:51 - 2021-04-28 15:51 - 000000937 _____ C:\ProgramData\Bureau\TrueCrypt.lnk 2021-04-28 15:51 - 2021-04-28 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt 2021-04-28 15:51 - 2021-04-28 15:51 - 000000000 ____D C:\Program Files\TrueCrypt 2021-04-28 15:50 - 2021-04-28 15:50 - 003466248 _____ (TrueCrypt Foundation) C:\Users\guypa\Downloads\TrueCrypt_Setup_7.1a.exe 2021-04-25 18:48 - 2021-04-25 18:48 - 000000000 ____D C:\Users\guypa\OneDrive\Documents\Modèles Office personnalisés 2021-04-24 04:38 - 2021-04-24 04:38 - 000000000 ____D C:\Program Files (x86)\MPC-HC 2021-04-24 04:34 - 2021-04-24 04:35 - 024156197 ____N C:\Users\guypa\Downloads\MPC-HC.1.9.11.x64.zip 2021-04-23 05:14 - 2021-04-23 05:15 - 000000000 ____D C:\Program Files (x86)\AOMEI Partition Assistant 2021-04-23 05:14 - 2021-04-23 05:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant Standard Edition 8.5 2021-04-23 05:14 - 2020-12-22 14:58 - 002201168 _____ C:\WINDOWS\ampa.exe 2021-04-23 05:14 - 2020-12-22 14:58 - 001305680 _____ C:\WINDOWS\ddmmain.exe 2021-04-23 05:14 - 2017-02-28 14:20 - 000038320 _____ C:\WINDOWS\system32\ampa.sys 2021-04-23 05:14 - 2016-12-27 18:45 - 000035760 _____ C:\WINDOWS\system32\ddmdrv.sys 2021-04-23 05:13 - 2021-04-23 05:14 - 032742040 _____ (AOMEI International Network Limited. ) C:\Users\guypa\Downloads\PAssist_Std(1).exe 2021-04-22 21:46 - 2021-04-22 21:46 - 000000000 ____D C:\Users\guypa\Downloads\Shaders11 2021-04-22 21:46 - 2021-04-22 21:46 - 000000000 ____D C:\Users\guypa\Downloads\Shaders 2021-04-22 21:46 - 2021-04-22 21:46 - 000000000 ____D C:\Users\guypa\Downloads\CrashReporter 2021-04-22 21:44 - 2021-04-22 21:44 - 000000000 ____D C:\Users\guypa\Downloads\Lang 2021-04-22 21:43 - 2021-04-22 21:45 - 000000000 ____D C:\Users\guypa\Downloads\LAVFilters64 2021-04-22 19:22 - 2021-04-22 19:23 - 004270354 _____ C:\Users\guypa\OneDrive\Documents\EdiusSystemReport-20210422-192250.zip 2021-04-21 16:04 - 2021-04-21 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pCloud 2021-04-21 16:04 - 2021-04-21 16:04 - 000000000 ____D C:\Program Files (x86)\pCloud Drive 2021-04-21 15:46 - 2021-04-21 15:46 - 000000000 ____D C:\Users\guypa\Downloads\NitroShare 2021-04-21 15:28 - 2021-04-21 15:29 - 009308628 _____ (Nathan Osman ) C:\Users\guypa\Downloads\nitroshare-0.3.4-windows-x86_64(1).exe 2021-04-21 12:00 - 2021-04-21 12:00 - 000000000 ____D C:\Users\guypa\AppData\Roaming\MediaInfo 2021-04-21 04:11 - 2021-04-21 04:12 - 032270680 _____ (AOMEI International Network Limited. ) C:\Users\guypa\Downloads\PAssist_Std.exe 2021-04-21 04:08 - 2021-04-21 04:10 - 119629472 _____ (AOMEI International Network Limited. ) C:\Users\guypa\Downloads\AOMEIBackupperStd.exe 2021-04-21 03:47 - 2021-04-21 03:47 - 000143253 _____ C:\Users\guypa\Downloads\imprime-fiscal-unique-ifu-2020.pdf 2021-04-20 10:00 - 2021-04-20 10:00 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2021-04-20 10:00 - 2021-04-20 10:00 - 000000000 ____D C:\Program Files (x86)\Audacity 2021-04-20 09:53 - 2021-04-20 09:53 - 029534144 _____ (Audacity Team ) C:\Users\guypa\Downloads\audacity-win-3.0.2.exe 2021-04-20 03:17 - 2021-04-20 03:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-04-19 19:43 - 2021-04-21 16:04 - 000001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\pCloud Drive.lnk 2021-04-19 11:41 - 2021-04-19 11:41 - 000000000 ____D C:\Users\guypa\AppData\Local\pCloud_AG 2021-04-17 19:03 - 2021-04-17 19:03 - 000000000 ____D C:\Users\guypa\AppData\RoamingNewBlueFX 2021-04-16 13:44 - 2021-04-16 13:44 - 000506479 _____ C:\Users\guypa\OneDrive\Documents\03-04-2021-attestation-de-deplacement-derogatoire-pdf.pdf 2021-04-16 04:40 - 2021-04-16 04:40 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-04-16 04:40 - 2021-04-16 04:40 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-04-16 04:40 - 2021-04-16 04:40 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-04-16 03:53 - 2021-04-16 03:53 - 001481592 _____ C:\Users\guypa\Downloads\epm_free_Installer.exe 2021-04-15 13:16 - 2021-04-15 13:16 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\GpsGate.Splitter(1).exe 2021-04-15 07:44 - 2021-04-15 07:45 - 008790316 _____ ( ) C:\Users\guypa\Downloads\oziexp_setup(1).exe 2021-04-11 04:19 - 2021-04-11 04:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SD Association 2021-04-11 04:19 - 2021-04-11 04:19 - 000000000 ____D C:\Program Files (x86)\SDA 2021-04-11 04:17 - 2021-04-11 04:17 - 006319151 _____ C:\Users\guypa\Downloads\SDCardFormatterv5_WinEN.zip 2021-04-11 04:17 - 2018-11-21 13:09 - 000000000 ____D C:\Users\guypa\Downloads\SDCardFormatterv5_WinEN 2021-04-08 06:27 - 2021-04-08 06:34 - 537120768 _____ C:\Users\guypa\Downloads\Aomei Backupper Pro 6.4 & APA Pro 9.1 et divers outils BIOS&UEFI FR.ISO 2021-04-08 06:10 - 2021-04-08 06:20 - 450166784 _____ C:\Users\guypa\Downloads\Aomei Backupper Pro 6.4 & APA Pro 9.1 et divers outils BIOS&UEFI.iso 2021-04-08 06:06 - 2021-04-08 07:06 - 000000000 ____D C:\Users\guypa\Downloads\ventoy-1.0.31 2021-04-08 06:05 - 2021-04-08 06:06 - 010677979 _____ C:\Users\guypa\Downloads\ventoy-1.0.31-windows.zip 2021-04-07 12:12 - 2021-03-12 10:21 - 114551040 _____ C:\Users\guypa\Downloads\AOMEIBackupperSetup.exe 2021-04-07 12:10 - 2021-04-07 12:11 - 111501150 _____ C:\Users\guypa\Downloads\AOMEIBackupperSetup.rar 2021-04-07 06:21 - 2021-04-07 06:21 - 000004617 _____ C:\Users\guypa\Downloads\16k Topo Foix - Perpignan 2020.map 2021-04-05 06:35 - 2021-04-05 06:35 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\GpsGate.Splitter.exe 2021-04-05 03:44 - 2021-05-02 08:12 - 000000000 ____D C:\Users\guypa\AppData\Roaming\DuckLink 2021-04-05 03:44 - 2021-04-05 03:44 - 006142695 _____ (DuckLink Software ) C:\Users\guypa\Downloads\Install_DuckCapture_Standard.exe 2021-04-05 03:44 - 2021-04-05 03:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DuckLink 2021-04-05 03:44 - 2021-04-05 03:44 - 000000000 ____D C:\Program Files (x86)\DuckLink 2021-04-04 05:30 - 2021-04-04 05:30 - 000215601 _____ C:\Users\guypa\Downloads\com.extgpsforandroid.apk 2021-04-04 05:25 - 2021-04-04 05:25 - 000013967 _____ C:\Users\guypa\Downloads\symarctic-extgps_symarctic_extgps_jar_anglais_251100.jar 2021-04-04 05:21 - 2021-04-04 05:22 - 010478980 _____ C:\Users\guypa\Downloads\oziexplorer1-release.apk 2021-03-30 08:46 - 2021-03-30 08:46 - 000783504 _____ C:\Users\guypa\Downloads\W-8BEN-E_SC LES LIERRES.pdf 2021-03-30 08:12 - 2021-03-30 08:12 - 000000000 ____D C:\ProgramData\AutoUpdate 2021-03-30 08:11 - 2021-03-30 08:11 - 000000000 ____D C:\ProgramData\ELTIMA Software 2021-03-30 08:11 - 2021-03-30 08:11 - 000000000 ____D C:\Program Files\Eltima Software 2021-03-30 08:11 - 2021-02-18 10:28 - 000199168 _____ (ELTIMA Software) C:\WINDOWS\system32\Drivers\spbus.sys 2021-03-30 08:11 - 2021-02-18 10:28 - 000131072 _____ (ELTIMA Software) C:\WINDOWS\system32\evspd9.dll 2021-03-30 08:11 - 2021-02-18 10:28 - 000127488 _____ (ELTIMA Software) C:\WINDOWS\system32\Drivers\evsbc9.sys 2021-03-30 08:11 - 2021-02-18 10:28 - 000040448 _____ (ELTIMA Software) C:\WINDOWS\system32\Drivers\evserial9.sys 2021-03-30 08:11 - 2021-02-18 10:28 - 000021968 _____ (ELTIMA Software) C:\WINDOWS\system32\Drivers\sershare.sys 2021-03-30 08:11 - 2021-02-02 10:08 - 000057856 _____ (ELTIMA Software) C:\WINDOWS\system32\Drivers\sersw.sys 2021-03-29 17:52 - 2021-03-29 17:52 - 000032148 _____ C:\Users\guypa\Downloads\Imprimé fiscal Unique (IFU).pdf 2021-03-29 10:11 - 2021-03-29 10:11 - 001157931 _____ C:\Users\guypa\Downloads\TraceRB35(1).plt 2021-03-29 10:11 - 2021-03-29 10:11 - 000041680 _____ C:\Users\guypa\Downloads\RB 35(1).wpt 2021-03-27 19:32 - 2021-03-27 19:32 - 000000000 ____D C:\Users\guypa\AppData\Roaming\Titler 2021-03-27 19:27 - 2021-03-27 19:27 - 000000000 ____D C:\Users\guypa\AppData\Roaming\Acon Digital 2021-03-27 15:20 - 2021-03-27 15:20 - 000000000 ____D C:\Users\guypa\AppData\Local\Creative_Technology_Ltd 2021-03-27 15:20 - 2021-03-27 15:20 - 000000000 ____D C:\Users\guypa\AppData\Local\Creative 2021-03-27 15:18 - 2021-03-27 15:18 - 000000105 ___RH C:\WINDOWS\ctfile.rfc 2021-03-27 15:18 - 2020-12-07 19:20 - 000180184 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CtHdAsio.dll 2021-03-27 15:18 - 2020-12-07 19:20 - 000060376 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\AddMCat.exe 2021-03-27 15:18 - 2020-12-07 19:20 - 000040408 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\CtEpDef32.exe 2021-03-27 15:18 - 2020-12-07 19:19 - 000651216 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CtHdaC64.dll 2021-03-27 15:18 - 2020-12-07 19:19 - 000190424 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CtHdAs64.dll 2021-03-27 15:18 - 2020-12-07 19:19 - 000140240 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CtHSvc64.exe 2021-03-27 15:18 - 2020-12-07 19:09 - 000021335 _____ C:\WINDOWS\system32\CtHda.ini 2021-03-27 15:18 - 2020-12-07 19:09 - 000021237 _____ C:\WINDOWS\SysWOW64\CtHRFX64.hda 2021-03-27 15:18 - 2020-12-07 19:09 - 000021237 _____ C:\WINDOWS\system32\CTHRFX64.hda 2021-03-27 15:18 - 2020-12-07 19:09 - 000004942 _____ C:\WINDOWS\cthdaFRN.reg 2021-03-27 15:18 - 2020-12-07 19:09 - 000004850 _____ C:\WINDOWS\cthdaENG.reg 2021-03-27 15:18 - 2020-09-07 19:07 - 000009741 _____ C:\WINDOWS\system32\CTOPT352.cat 2021-03-27 15:18 - 2020-09-07 19:07 - 000009645 _____ C:\WINDOWS\SysWOW64\CTOPT352.cat 2021-03-27 15:18 - 2020-09-07 19:07 - 000009213 _____ C:\WINDOWS\system32\CTOPT399.cat 2021-03-27 15:18 - 2020-09-07 19:07 - 000009117 _____ C:\WINDOWS\SysWOW64\CTOPT399.cat 2021-03-27 15:18 - 2020-09-07 12:42 - 000184320 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTOPT352.dll 2021-03-27 15:18 - 2020-09-07 12:42 - 000167424 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT352.dll 2021-03-27 15:18 - 2020-09-07 12:41 - 000079872 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT399.dll 2021-03-27 15:18 - 2020-09-07 12:40 - 000088576 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTOPT399.dll 2021-03-27 15:18 - 2008-12-22 21:13 - 000061440 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTChkAud.dll 2021-03-27 15:18 - 2008-12-22 21:13 - 000049664 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTChkAud.dll 2021-03-27 15:18 - 2006-12-05 14:53 - 000042496 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\AddCat.exe 2021-03-27 15:18 - 2006-12-05 14:53 - 000042496 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\AddCat.exe 2021-03-27 15:17 - 2021-03-27 15:18 - 000000000 ____D C:\Program Files (x86)\Creative 2021-03-27 15:17 - 2021-03-27 15:17 - 000001389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sound Blaster Command.lnk 2021-03-27 15:17 - 2021-03-27 15:17 - 000000000 ____D C:\ProgramData\Creative 2021-03-27 12:00 - 2021-04-22 06:41 - 000000077 ____H C:\Users\guypa\.NitroShare 2021-03-27 11:22 - 2021-03-27 11:24 - 147000856 _____ (Creative Technology Ltd. ) C:\Users\guypa\Downloads\SBZMasterInstaller_3.4.98.00.exe 2021-03-27 11:15 - 2021-03-27 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-03-27 10:58 - 2021-03-27 10:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Eraser 2021-03-27 10:58 - 2021-03-27 10:58 - 000000000 ____D C:\Program Files (x86)\PDF Eraser 2021-03-27 10:58 - 2019-03-24 11:22 - 000000015 _____ C:\Users\guypa\AppData\Roaming\pecodec.dll 2021-03-27 10:57 - 2021-05-02 08:12 - 000000000 ____D C:\Users\guypa\AppData\Roaming\7-PDFSplitMerge 2021-03-27 10:57 - 2021-03-27 10:58 - 007968840 _____ (hxxps://www.PDFEraser.net ) C:\Users\guypa\Downloads\pdferaser.exe 2021-03-27 10:57 - 2021-03-27 10:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-PDF 2021-03-27 10:57 - 2021-03-27 10:57 - 000000000 ____D C:\Program Files (x86)\7-PDF 2021-03-27 10:56 - 2021-03-27 10:56 - 009400032 _____ (7-PDF, Germany - Thorsten Niebergall-Hodes ) C:\Users\guypa\Downloads\7-PDFSplitMerge.exe 2021-03-27 10:54 - 2021-03-27 10:54 - 000001136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Allway Sync.lnk 2021-03-27 10:53 - 2021-03-27 10:53 - 011212400 _____ (Botkind Inc. ) C:\Users\guypa\Downloads\allwaysync-x64-20-2-1.exe 2021-03-27 10:50 - 2021-03-27 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 2021-03-27 10:50 - 2021-03-27 10:50 - 000000000 ____D C:\Program Files\PDF24 2021-03-27 10:47 - 2021-03-27 10:49 - 126983984 _____ (geek software GmbH ) C:\Users\guypa\Downloads\pdf24-creator-10.0.12.exe 2021-03-27 10:45 - 2021-03-27 10:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Icecream PDF Editor 2021-03-27 10:45 - 2021-03-27 10:45 - 000000000 ____D C:\Program Files (x86)\Icecream PDF Editor 2021-03-27 10:44 - 2021-03-27 10:44 - 022546416 _____ (Icecream Apps ) C:\Users\guypa\Downloads\pdf_editor_setup.exe 2021-03-27 10:42 - 2021-03-27 10:42 - 000025616 _____ (franson.biz) C:\WINDOWS\system32\Drivers\bizVSerialNT.sys 2021-03-27 10:42 - 2021-03-27 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Franson GpsGate 2.6 2021-03-27 10:42 - 2021-03-27 10:42 - 000000000 ____D C:\Program Files (x86)\Franson 2021-03-27 10:41 - 2021-03-29 15:14 - 000000000 ____D C:\WINDOWS\Downloaded Installations 2021-03-27 10:41 - 2021-03-27 10:41 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\gpsgateclient.exe 2021-03-27 10:38 - 2021-03-27 10:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Route Generator 2021-03-27 10:37 - 2021-03-27 10:38 - 000000000 ____D C:\Program Files (x86)\Route Generator 2021-03-27 10:35 - 2021-03-27 10:37 - 070011971 _____ C:\Users\guypa\Downloads\routegen-win32-1.9.1.exe 2021-03-27 10:25 - 2021-04-28 06:58 - 000000000 ____D C:\Users\guypa\AppData\Local\pCloud 2021-03-27 10:24 - 2021-04-21 16:04 - 000002499 _____ C:\ProgramData\Bureau\pCloud Drive.lnk 2021-03-27 10:24 - 2020-06-25 04:19 - 000270088 _____ (Callback Technologies, Inc.) C:\WINDOWS\system32\cbfsconnectNetRdr2017.dll 2021-03-27 10:24 - 2020-06-25 04:19 - 000234248 _____ (Callback Technologies, Inc.) C:\WINDOWS\SysWOW64\cbfsconnectNetRdr2017.dll 2021-03-27 10:24 - 2020-06-25 04:19 - 000189192 _____ (Callback Technologies, Inc.) C:\WINDOWS\system32\cbfsconnectMntNtf2017.dll 2021-03-27 10:24 - 2020-06-25 04:18 - 000162056 _____ (Callback Technologies, Inc.) C:\WINDOWS\SysWOW64\cbfsconnectMntNtf2017.dll 2021-03-27 10:24 - 2020-06-25 03:19 - 000010504 _____ (Callback Technologies, Inc.) C:\WINDOWS\system32\cbfsconnectevtmsg.dll 2021-03-27 10:24 - 2020-06-25 00:55 - 000481296 _____ (Callback Technologies, Inc.) C:\WINDOWS\system32\Drivers\cbfsconnect2017.sys 2021-03-27 10:24 - 2020-06-25 00:55 - 000020496 _____ (Callback Technologies, Inc.) C:\WINDOWS\system32\Drivers\vpnpbus.sys 2021-03-27 10:23 - 2021-03-27 10:23 - 039907800 _____ (pCloud AG) C:\Users\guypa\Downloads\pCloud_Windows_3.10.1_x86.exe 2021-03-27 10:19 - 2021-03-27 10:19 - 000000885 _____ C:\Users\guypa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk 2021-03-27 10:19 - 2021-03-27 10:19 - 000000000 ____D C:\Program Files\MediaInfo 2021-03-27 10:18 - 2021-03-27 10:18 - 006066712 _____ (MediaArea.net) C:\Users\guypa\Downloads\MediaInfo_GUI_20.09_Windows.exe 2021-03-27 10:14 - 2021-03-27 10:14 - 000000000 ____D C:\Users\guypa\OneDrive\Documents\NewBlue 2021-03-27 10:14 - 2021-03-27 10:14 - 000000000 ____D C:\Users\guypa\.ApplicationManager 2021-03-27 10:13 - 2021-04-18 05:34 - 000000000 ____D C:\ProgramData\proDAD 2021-03-27 10:13 - 2021-03-27 10:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue 2021-03-27 10:13 - 2021-03-27 10:14 - 000000000 ____D C:\Program Files\NewBlueFX 2021-03-27 10:13 - 2021-03-27 10:13 - 000000000 ____D C:\Program Files (x86)\NewBlueFX 2021-03-27 10:11 - 2021-03-27 10:11 - 000000000 ____D C:\Users\guypa\AppData\Roaming\proDAD 2021-03-27 10:11 - 2021-03-27 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD 2021-03-27 10:11 - 2021-03-27 10:11 - 000000000 ____D C:\Program Files\proDAD 2021-03-27 09:56 - 2021-03-27 10:09 - 867874032 _____ C:\Users\guypa\Downloads\NewBlueOFXBridgeAndTitlerProForEdius-201011.exe 2021-03-27 09:56 - 2021-03-27 09:59 - 143386336 _____ C:\Users\guypa\Downloads\vitascene-40-edius64bit.exe 2021-03-27 09:55 - 2021-03-27 19:27 - 000000000 ____D C:\ProgramData\Acon Digital 2021-03-27 09:55 - 2021-03-27 09:55 - 000000000 ____D C:\Program Files\Acon Digital 2021-03-27 09:54 - 2021-03-27 09:54 - 000002124 _____ C:\ProgramData\Bureau\EDIUS X.lnk 2021-03-27 09:54 - 2021-03-27 09:54 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared 2021-03-27 09:41 - 2021-03-27 09:48 - 000000000 ____D C:\Users\guypa\AppData\Local\GlobalMapper 2021-03-27 09:41 - 2021-03-27 09:41 - 000000008 _____ C:\WINDOWS\SysWOW64\WIN.INI 2021-03-27 09:41 - 2021-03-27 09:41 - 000000008 _____ C:\WINDOWS\SysWOW64\SYSTEM.INI 2021-03-27 09:41 - 2021-03-27 09:41 - 000000008 _____ C:\WINDOWS\SysWOW64\PROTOCOL.INI 2021-03-27 09:41 - 2021-03-27 09:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Global Mapper 2021-03-27 09:41 - 2021-03-27 09:41 - 000000000 ____D C:\Program Files\GlobalMapper17_64bit 2021-03-27 09:38 - 2021-03-27 09:53 - 1249062403 _____ C:\Users\guypa\Downloads\Grass_Valley_EDIUS_X_license_until_30th_June_2021.ZIP 2021-03-27 09:25 - 2021-03-27 09:25 - 000188222 _____ C:\Users\guypa\Downloads\2020_IFU_FR_CC_IS-RF_022344.pdf 2021-03-27 09:17 - 2021-04-26 05:23 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-27 09:17 - 2021-04-26 05:23 - 000003538 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d722d24f5912d 2021-03-27 08:34 - 2021-05-02 08:19 - 001772722 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-27 08:30 - 2021-03-27 08:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-03-27 08:28 - 2021-05-02 08:17 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2403722559-2359336973-2458211709-1004 2021-03-27 08:28 - 2021-05-02 08:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-27 08:28 - 2021-04-21 03:13 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-03-27 08:28 - 2021-04-21 03:13 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-03-27 08:28 - 2021-03-27 11:06 - 000003840 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2021-03-27 08:28 - 2021-03-27 08:28 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2021-03-27 08:28 - 2021-03-27 08:28 - 000007623 _____ C:\WINDOWS\diagerr.xml 2021-03-27 08:28 - 2021-03-27 08:28 - 000003496 _____ C:\WINDOWS\system32\Tasks\EPSON WF-7620 Series Update {155F20EE-D045-4603-9D07-7F2FC3CE3ABE} 2021-03-27 08:28 - 2021-03-27 08:28 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000003318 _____ C:\WINDOWS\system32\Tasks\EPSON WF-7620 Series Invitation {155F20EE-D045-4603-9D07-7F2FC3CE3ABE} 2021-03-27 08:28 - 2021-03-27 08:28 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-03-27 08:28 - 2021-03-27 08:28 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002882 _____ C:\WINDOWS\system32\Tasks\TrackerAutoUpdate 2021-03-27 08:28 - 2021-03-27 08:28 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2403722559-2359336973-2458211709-500 2021-03-27 08:28 - 2021-03-27 08:28 - 000002804 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-guy.palmade@free.fr 2021-03-27 08:28 - 2021-03-27 08:28 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-27 08:28 - 2021-03-27 08:28 - 000002704 _____ C:\WINDOWS\system32\Tasks\AOMEI Sauvegarde mes Fichiers(1) 2020-01-13, 12-08-44 2021-03-27 08:28 - 2021-03-27 08:28 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-03-27 08:28 - 2021-03-27 08:28 - 000000943 _____ C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {A449BCDC-CD78-43E3-AD7D-EAD2C9BBD2A1}.job 2021-03-27 08:28 - 2021-03-27 08:28 - 000000757 _____ C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {A449BCDC-CD78-43E3-AD7D-EAD2C9BBD2A1}.job 2021-03-27 08:28 - 2021-03-27 08:28 - 000000020 ___SH C:\Users\guypa\ntuser.ini 2021-03-27 08:28 - 2021-03-27 08:28 - 000000000 ____D C:\WINDOWS\SysWOW64\NV 2021-03-27 08:28 - 2021-03-27 08:28 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys 2021-03-27 08:28 - 2021-03-27 08:28 - 000000000 ____D C:\WINDOWS\system32\NV 2021-03-27 08:28 - 2019-11-22 11:27 - 000003396 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2906834656-3311697818-3905056113-500 2021-03-27 08:28 - 2019-10-17 09:46 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3682022614-1241091583-2239385556-500 2021-03-27 08:25 - 2021-05-02 08:17 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-27 08:23 - 2021-05-02 08:13 - 000008192 ___SH C:\DumpStack.log.tmp 2021-03-27 08:23 - 2021-05-02 07:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-27 08:23 - 2021-04-16 19:56 - 000449776 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-27 08:12 - 2021-05-02 08:17 - 000002426 _____ C:\Users\guypa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-03-27 08:12 - 2021-05-02 08:13 - 000000000 ____D C:\Users\guypa 2021-03-27 08:12 - 2021-03-27 08:23 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\Voisinage réseau 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\Voisinage d'impression 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\Modèles 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\Mes documents 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\Menu Démarrer 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2021-03-27 08:12 - 2021-03-27 08:12 - 000000000 _SHDL C:\Users\guypa\AppData\Local\Historique 2021-03-27 08:11 - 2021-03-27 08:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-03-27 08:10 - 2021-03-27 08:10 - 000000000 ____D C:\ProgramData\ssh 2021-03-27 08:08 - 2021-03-27 08:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-03-27 08:08 - 2021-03-27 08:08 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-03-27 08:08 - 2021-03-27 08:08 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-03-27 08:08 - 2021-03-27 08:08 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-03-27 08:08 - 2021-03-27 08:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax 2021-03-27 08:08 - 2021-03-27 08:08 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-03-27 08:08 - 2021-03-27 08:08 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-03-27 08:08 - 2021-03-27 08:08 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2021-03-27 08:07 - 2021-03-27 08:07 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-03-27 08:07 - 2021-03-27 08:07 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-03-27 08:07 - 2021-03-27 08:07 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-03-27 08:07 - 2021-03-27 08:07 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-03-27 08:07 - 2021-03-27 08:07 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-03-27 08:07 - 2021-03-27 08:07 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-03-27 08:07 - 2021-03-27 08:07 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-03-27 08:07 - 2021-03-27 08:07 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-03-27 08:07 - 2021-03-27 08:07 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-03-27 08:07 - 2021-03-27 08:07 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax 2021-03-27 08:07 - 2021-03-27 08:07 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-03-27 08:07 - 2021-03-27 08:07 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-03-27 08:07 - 2021-03-27 08:07 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-03-27 08:07 - 2021-03-27 08:07 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb 2021-03-27 08:07 - 2021-03-27 08:07 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb 2021-03-27 08:07 - 2021-03-27 08:07 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-03-27 08:07 - 2021-03-27 08:07 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-03-27 08:07 - 2021-03-27 08:07 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-03-27 08:07 - 2021-03-27 08:07 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-03-27 08:07 - 2021-03-27 08:07 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-03-27 08:07 - 2021-03-27 08:07 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv 2021-03-27 08:07 - 2021-03-27 08:07 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2021-03-27 08:07 - 2021-03-27 08:07 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv 2021-03-27 08:07 - 2021-03-27 08:07 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-03-27 08:07 - 2021-03-27 08:07 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2021-03-27 08:07 - 2021-03-27 08:07 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2021-03-27 08:02 - 2021-03-27 08:02 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-03-27 08:02 - 2021-03-27 08:02 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-03-27 08:02 - 2021-03-27 08:02 - 000000000 ____D C:\Program Files\MSBuild 2021-03-27 08:02 - 2021-03-27 08:02 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-03-27 08:02 - 2021-03-27 08:02 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-03-27 07:59 - 2021-03-27 07:59 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-03-27 06:26 - 2021-04-08 09:48 - 000000000 ___DC C:\WINDOWS\Panther 2021-03-27 06:23 - 2021-04-16 04:36 - 000000000 ___HD C:\$WinREAgent 2021-03-26 19:56 - 2021-03-27 15:18 - 000000000 ____D C:\Users\Public\Creative 2021-03-26 19:46 - 2021-03-27 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NitroShare 2021-03-26 19:46 - 2021-03-26 19:46 - 000000000 ____D C:\Program Files\NitroShare 2021-03-26 19:45 - 2021-03-26 19:45 - 009308628 _____ (Nathan Osman ) C:\Users\guypa\Downloads\nitroshare-0.3.4-windows-x86_64.exe 2021-03-26 19:39 - 2021-03-26 19:39 - 001617552 _____ C:\Users\guypa\Downloads\Everything-1.4.1.1005.x64.zip 2021-03-26 17:20 - 2021-03-26 17:20 - 007310824 _____ (HeiDoc V.O.F.) C:\Users\guypa\Downloads\Windows-ISO-Downloader.exe 2021-03-26 16:50 - 2021-03-26 16:50 - 000000000 ___HD C:\Users\guypa\AppData\Roaming\Obsidium x64 2021-03-26 16:50 - 2021-03-26 16:50 - 000000000 ___HD C:\Users\guypa\.obs64 2021-03-26 16:49 - 2021-03-26 16:49 - 007460576 _____ (Code Sector ) C:\Users\guypa\Downloads\teracopy(1).exe 2021-03-26 16:42 - 2021-03-26 16:42 - 000001432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncBackFree.lnk 2021-03-26 16:40 - 2021-03-26 16:40 - 022734632 _____ (2BrightSparks Pte Ltd ) C:\Users\guypa\Downloads\SyncBack_Setup(1).exe 2021-03-26 16:29 - 2021-03-26 16:29 - 001166306 _____ C:\Users\guypa\Downloads\Q-Dir_Installer_x64(1).zip 2021-03-26 15:58 - 2021-03-26 15:58 - 006566999 _____ C:\Users\guypa\Downloads\fsSetup313.exe 2021-03-26 13:52 - 2021-03-27 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2021-03-26 13:52 - 2021-03-26 13:52 - 000000000 ____D C:\Program Files\VS Revo Group 2021-03-26 12:59 - 2021-03-27 08:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-03-26 12:58 - 2021-05-02 08:17 - 000000000 ____D C:\Program Files\CCleaner 2021-03-26 12:57 - 2021-03-26 12:58 - 031273232 _____ (Piriform Software Ltd) C:\Users\guypa\Downloads\ccsetup578.exe 2021-03-26 12:49 - 2021-03-26 12:49 - 007495512 _____ (VS Revo Group ) C:\Users\guypa\Downloads\revosetup(2).exe 2021-03-26 12:29 - 2020-11-11 04:54 - 000159600 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys 2021-03-26 12:26 - 2020-11-11 04:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2021-03-26 12:24 - 2020-10-05 15:05 - 001492800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvppcgenco64_145831832.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 001690976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 001507224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 001161112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000816368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000673520 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000670616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000555248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000543128 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-03-26 12:24 - 2020-10-05 15:03 - 000230720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2021-03-26 12:24 - 2020-10-05 15:03 - 000047424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 007707544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 006860184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 004174064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 002508528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 002098072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 001731824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445671.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 001585560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445671.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 000813464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-03-26 12:24 - 2020-10-05 15:02 - 000657304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-03-26 12:24 - 2020-10-05 15:00 - 007001536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-03-26 12:24 - 2020-10-05 15:00 - 005972824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-03-26 12:24 - 2020-10-05 14:42 - 000058620 _____ C:\WINDOWS\system32\nvinfo.pb 2021-03-26 12:23 - 2021-03-26 12:24 - 000000000 ____D C:\Users\guypa\AppData\Local\NhNotifSys 2021-03-26 12:23 - 2021-03-26 12:23 - 000002407 _____ C:\Users\guypa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk 2021-03-26 12:09 - 2021-05-02 08:12 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-03-26 10:59 - 2021-03-27 11:15 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2021-03-26 10:33 - 2021-05-02 08:13 - 000000000 __SHD C:\Users\guypa\IntelGraphicsProfiles 2021-03-26 10:33 - 2021-05-02 08:13 - 000000000 ____D C:\Intel 2021-03-26 10:33 - 2021-03-26 10:34 - 000000000 ____D C:\Users\guypa\AppData\Local\Intel 2021-03-26 10:33 - 2021-03-26 10:33 - 000000000 ____D C:\Users\guypa\AppData\LocalLow\Intel 2021-03-26 10:33 - 2021-03-26 10:33 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2021-03-26 10:32 - 2020-09-11 12:36 - 000305992 _____ C:\WINDOWS\system32\libmfxhw64.dll 2021-03-26 10:32 - 2020-09-11 12:36 - 000254520 _____ C:\WINDOWS\SysWOW64\libmfxhw32.dll 2021-03-26 10:32 - 2020-09-11 12:36 - 000171472 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-03-26 10:32 - 2020-09-11 12:36 - 000146752 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 026676016 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 013519664 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 001790192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-03-26 10:32 - 2020-09-11 12:35 - 001790192 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-03-26 10:32 - 2020-09-11 12:35 - 001386224 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-03-26 10:32 - 2020-09-11 12:35 - 001386224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-03-26 10:32 - 2020-09-11 12:35 - 001096800 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 001096800 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000949856 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000949856 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000507696 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000462640 _____ C:\WINDOWS\system32\ze_loader.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000370480 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-03-26 10:32 - 2020-09-11 12:35 - 000148784 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-03-26 10:17 - 2021-03-26 10:17 - 000002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-02 10:52 - 2020-01-08 19:55 - 000000000 ____D C:\Users\guypa\AppData\Roaming\TeraCopy 2021-05-02 10:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-05-02 10:31 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2021-05-02 10:27 - 2020-01-12 17:35 - 000000000 ____D C:\Users\guypa\.OziExplorer 2021-05-02 10:27 - 2020-01-12 17:34 - 000000000 ____D C:\OziExplorer 2021-05-02 08:58 - 2020-01-08 14:24 - 000000000 ____D C:\ProgramData\Mozilla 2021-05-02 08:57 - 2020-01-08 14:24 - 000000000 ____D C:\Users\guypa\AppData\LocalLow\Mozilla 2021-05-02 08:19 - 2019-12-07 16:49 - 000791604 _____ C:\WINDOWS\system32\perfh00C.dat 2021-05-02 08:19 - 2019-12-07 16:49 - 000149770 _____ C:\WINDOWS\system32\perfc00C.dat 2021-05-02 08:19 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-05-02 08:17 - 2020-01-08 12:57 - 000000000 ___RD C:\Users\guypa\OneDrive 2021-05-02 08:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-05-02 08:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-05-02 08:17 - 2019-11-22 12:29 - 000000000 ____D C:\ProgramData\NVIDIA 2021-05-02 08:14 - 2020-01-08 15:31 - 000000000 ____D C:\ProgramData\FLEXnet 2021-05-02 08:13 - 2020-03-26 11:56 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat 2021-05-02 08:13 - 2020-03-26 11:54 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2021-05-02 08:13 - 2020-01-22 08:33 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2021-05-02 08:13 - 2020-01-12 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OziExplorer 2021-05-02 08:13 - 2020-01-08 16:18 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat 2021-05-02 08:12 - 2020-01-08 16:17 - 000000000 ____D C:\ProgramData\AomeiBR 2021-05-02 08:12 - 2020-01-08 15:58 - 000000000 ____D C:\Program Files (x86)\PDFTK Builder 2021-05-02 08:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration 2021-05-01 14:27 - 2020-01-12 17:44 - 000000000 ____D C:\Users\guypa\AppData\Local\D3DSCache 2021-05-01 12:18 - 2020-01-08 19:32 - 000001024 ____H C:\SYSTAG.BIN 2021-04-30 04:06 - 2020-01-08 12:58 - 000000000 ____D C:\Users\guypa\AppData\Local\PlaceholderTileLogoFolder 2021-04-27 18:07 - 2020-01-11 18:22 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-04-25 18:50 - 2020-01-08 12:56 - 000000000 ____D C:\Users\guypa\AppData\Local\Packages 2021-04-21 16:05 - 2019-11-22 12:23 - 000000000 ____D C:\ProgramData\Package Cache 2021-04-21 12:12 - 2020-01-09 06:29 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-04-21 12:12 - 2020-01-08 14:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-04-21 12:11 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-04-21 05:55 - 2020-06-14 07:21 - 000000000 ____D C:\Users\guypa\AppData\Roaming\vlc 2021-04-20 13:03 - 2020-01-26 19:28 - 000000000 ____D C:\Users\guypa\AppData\Roaming\audacity 2021-04-20 03:17 - 2020-01-08 14:24 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-04-16 19:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-04-16 04:41 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-04-16 04:41 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-04-16 04:36 - 2020-01-09 05:47 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-04-16 04:33 - 2020-01-09 05:47 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-04-11 04:19 - 2020-01-12 18:34 - 000000000 ____D C:\Users\guypa\AppData\Local\Downloaded Installations 2021-04-11 03:15 - 2019-10-17 09:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-04-08 10:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF ==================== Fichiers à la racine de certains dossiers ======== 2020-01-26 19:25 - 2020-01-26 19:25 - 000000256 _____ () C:\ProgramData\fontcacheev1.dat 2020-01-19 09:28 - 2021-03-26 16:03 - 000002090 _____ () C:\Users\guypa\AppData\Roaming\FSLog.log 2021-03-27 10:58 - 2019-03-24 11:22 - 000000015 _____ () C:\Users\guypa\AppData\Roaming\pecodec.dll 2020-06-18 18:51 - 2020-06-18 18:58 - 000000007 _____ () C:\Users\guypa\AppData\Local\nanocom.cfg ==================== SigCheckExt ========================= 2018-01-31 15:39 - 2018-01-31 15:39 - 002271232 _____ (Intel(R) Corporation) C:\WINDOWS\system32\accesor.dll 2021-03-27 15:18 - 2008-12-22 21:13 - 000049664 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTChkAud.dll 2018-01-31 15:42 - 2018-01-31 15:42 - 000505856 _____ (Intel Corporation) C:\WINDOWS\system32\IPROSetMonitor.exe 2018-01-31 15:40 - 2018-01-31 15:40 - 001568256 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncs2dmix.dll 2018-01-31 15:37 - 2018-01-31 15:37 - 000671232 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncs2instutility.dll 2018-01-25 13:10 - 2018-01-25 13:10 - 000349696 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Ncs2Setp.dll 2018-01-31 15:34 - 2018-01-31 15:34 - 004811264 _____ (Intel(R) Corporation) C:\WINDOWS\system32\ncscolib.dll 2006-04-03 23:00 - 2006-04-03 23:00 - 000024576 _____ C:\WINDOWS\FransonRegistryRestoration.exe 2021-03-27 15:18 - 2008-12-22 21:13 - 000061440 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTChkAud.dll 2021-03-27 15:18 - 2020-09-07 12:42 - 000167424 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT352.dll 2021-03-27 15:18 - 2020-09-07 12:41 - 000079872 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT399.dll 2011-06-28 00:15 - 2011-06-28 00:15 - 000118784 _____ () C:\WINDOWS\SysWOW64\GateApiXP.dll 2011-06-28 00:15 - 2011-06-28 00:15 - 000163840 _____ () C:\WINDOWS\SysWOW64\GpsGateComClient.dll 2005-09-21 15:05 - 2005-09-21 15:05 - 000135168 _____ () C:\WINDOWS\SysWOW64\GpsShapeXP.dll 2005-09-21 15:05 - 2005-09-21 15:05 - 000286720 _____ () C:\WINDOWS\SysWOW64\GpsToolsXP.dll 2005-09-21 15:05 - 2005-09-21 15:05 - 000258048 _____ () C:\WINDOWS\SysWOW64\GpsViewXP.dll 2005-09-21 15:05 - 2005-09-21 15:05 - 000253952 _____ () C:\WINDOWS\SysWOW64\MapLibXP.dll 2020-01-08 20:06 - 2020-01-08 20:06 - 001447178 _____ (Igor Pavlov) C:\Users\guypa\Downloads\7z1900-x64.exe 2020-01-21 11:17 - 2020-01-21 11:17 - 002661103 _____ C:\Users\guypa\Downloads\Clover_Setup 3.0.406.exe 2020-01-21 18:42 - 2018-09-02 21:13 - 004296704 _____ (Microsoft Corporation) C:\Users\guypa\Downloads\D3DCompiler_47.dll 2021-05-02 10:51 - 2021-05-02 10:51 - 002298368 _____ (Farbar) C:\Users\guypa\Downloads\FRST64.exe 2020-01-13 08:19 - 2020-01-13 08:19 - 004299497 _____ C:\Users\guypa\Downloads\fsSetup310.exe 2021-03-26 15:58 - 2021-03-26 15:58 - 006566999 _____ C:\Users\guypa\Downloads\fsSetup313.exe 2020-01-26 09:02 - 2020-01-26 09:02 - 004582682 _____ C:\Users\guypa\Downloads\gmail-backup-0.107.exe 2020-01-26 08:28 - 2020-01-26 08:29 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup (1).exe 2020-01-26 14:25 - 2020-01-26 14:25 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup (2).exe 2020-01-26 14:28 - 2020-01-26 14:28 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup (3).exe 2020-01-26 14:30 - 2020-01-26 14:30 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup (4).exe 2020-01-26 18:37 - 2020-01-26 18:37 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup (5).exe 2020-01-26 08:23 - 2020-01-26 08:24 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup(1).exe 2020-01-26 09:23 - 2020-01-26 09:23 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup(2).exe 2020-01-26 08:14 - 2020-01-26 08:14 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\GMailBackup.exe 2021-04-15 13:16 - 2021-04-15 13:16 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\GpsGate.Splitter(1).exe 2021-04-05 06:35 - 2021-04-05 06:35 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\GpsGate.Splitter.exe 2021-03-27 10:41 - 2021-03-27 10:41 - 002595251 _____ (Franson ) C:\Users\guypa\Downloads\gpsgateclient.exe 2020-01-21 17:18 - 2020-01-21 17:18 - 011706936 _____ C:\Users\guypa\Downloads\HotShots-2.2.0-setup.exe 2021-04-05 03:44 - 2021-04-05 03:44 - 006142695 _____ (DuckLink Software ) C:\Users\guypa\Downloads\Install_DuckCapture_Standard.exe 2020-03-20 08:30 - 2020-03-20 08:30 - 009994876 _____ () C:\Users\guypa\Downloads\IPDT_Installer_4.1.4.36_64bit.exe 2020-01-21 20:27 - 2020-01-21 20:25 - 009398272 _____ (MPC-HC Team) C:\Users\guypa\Downloads\mpc-hc64.exe 2020-01-21 20:27 - 2020-01-21 20:25 - 002524672 _____ (MPC-HC Team) C:\Users\guypa\Downloads\mpciconlib.dll 2020-01-09 07:30 - 2020-01-09 07:30 - 008219283 _____ (Mathias Svensson) C:\Users\guypa\Downloads\MultiCommander_x64_(9.5.0.2570).exe 2020-01-18 18:34 - 2020-01-18 18:34 - 000292187 _____ C:\Users\guypa\Downloads\NewFolderEx.exe 2021-04-21 15:28 - 2021-04-21 15:29 - 009308628 _____ (Nathan Osman ) C:\Users\guypa\Downloads\nitroshare-0.3.4-windows-x86_64(1).exe 2021-03-26 19:45 - 2021-03-26 19:45 - 009308628 _____ (Nathan Osman ) C:\Users\guypa\Downloads\nitroshare-0.3.4-windows-x86_64.exe 2021-04-15 07:44 - 2021-04-15 07:45 - 008790316 _____ ( ) C:\Users\guypa\Downloads\oziexp_setup(1).exe 2020-01-12 17:33 - 2020-01-12 17:34 - 008790316 _____ ( ) C:\Users\guypa\Downloads\oziexp_setup.exe 2020-03-25 18:49 - 2020-03-25 18:49 - 013463513 _____ (Jacek Pazera ) C:\Users\guypa\Downloads\Pazera_Free_Audio_Extractor(1).exe 2020-03-25 18:48 - 2020-03-25 18:49 - 013463513 _____ (Jacek Pazera ) C:\Users\guypa\Downloads\Pazera_Free_Audio_Extractor.exe 2020-01-08 15:57 - 2020-01-08 15:57 - 003316072 _____ ( ) C:\Users\guypa\Downloads\pdftkb_setup.exe 2018-08-01 10:53 - 2018-07-30 12:08 - 006993488 _____ (Macrovision Corporation) C:\Users\guypa\Downloads\PL2303-Prolific_DriverInstaller_v1200.exe 2018-07-31 10:12 - 2013-01-15 12:20 - 000212992 _____ (Prolific) C:\Users\guypa\Downloads\PL2303_CheckChipVersion_v1006.exe 2020-05-14 11:33 - 2004-04-16 18:11 - 005770841 _____ (PC SOFT) C:\Users\guypa\Downloads\RemplaceVite.EXE 2021-03-27 10:35 - 2021-03-27 10:37 - 070011971 _____ C:\Users\guypa\Downloads\routegen-win32-1.9.1.exe 2020-01-26 18:43 - 2020-01-26 18:43 - 023138507 _____ (UpSafe) C:\Users\guypa\Downloads\setup (1).exe 2020-01-12 19:32 - 2008-07-03 12:45 - 000826451 _____ (Piotr Chodzinski ) C:\Users\guypa\Downloads\Setup.exe 2021-05-02 10:36 - 2021-05-02 10:36 - 003468952 _____ (Nicolas Coolman) C:\Users\guypa\Downloads\ZHPSuite.exe 2021-03-27 10:58 - 2019-03-24 11:22 - 000000015 _____ C:\Users\guypa\AppData\Roaming\pecodec.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {3865ea3b-0d08-11ea-a787-00d861c047b6} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume11 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {0c42d9c7-0d00-11ea-9d67-00d861c047b6} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {3865ea3b-0d08-11ea-a787-00d861c047b6} description Hard Drive Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {0c42d9ca-0d00-11ea-9d67-00d861c047b6} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {0c42d9c7-0d00-11ea-9d67-00d861c047b6} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {0c42d9ca-0d00-11ea-9d67-00d861c047b6} device ramdisk=[\Device\HarddiskVolume14]\Recovery\WindowsRE\Winre.wim,{0c42d9cb-0d00-11ea-9d67-00d861c047b6} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume14]\Recovery\WindowsRE\Winre.wim,{0c42d9cb-0d00-11ea-9d67-00d861c047b6} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {0c42d9c7-0d00-11ea-9d67-00d861c047b6} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {0c42d9ca-0d00-11ea-9d67-00d861c047b6} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume11 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {0c42d9cb-0d00-11ea-9d67-00d861c047b6} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume14 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================