==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804360 2016-04-21] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [122592 2021-05-26] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-08-27] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] HKU\S-1-5-21-2857827775-3264933001-2843727691-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50041472 2021-03-12] (Google LLC -> ) HKU\S-1-5-21-2857827775-3264933001-2843727691-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2013-01-24] (CANON INC.) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-18] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-08-27] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2014-08-27] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] Startup: C:\Users\Jérémy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2016-09-12] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {034C43A5-1E0A-4B6D-89CB-F3397F002D53} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [690616 2021-06-25] (Mozilla Corporation -> Mozilla Foundation) Task: {12F46691-4975-486D-917C-3F7027023204} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124856 2021-06-18] (Microsoft Corporation -> Microsoft Corporation) Task: {1BA55E1C-6B0E-46F7-BDEA-306371C8B127} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118088 2021-06-18] (Microsoft Corporation -> Microsoft Corporation) Task: {347C6C0B-127F-40EC-8173-66294A08BB23} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1271424 2014-09-02] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé] Task: {3A2C0C4D-745D-4D6C-937C-52291D735964} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {5C2FFDED-0A76-482F-8AE5-E135D6B70B73} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4903192 2021-06-25] (Avast Software s.r.o. -> AVAST Software) Task: {67D06F0D-4799-4433-8987-397B19D9B375} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {688844D4-9A7E-4D96-BF7A-6B9D50AB2716} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [60488 2014-11-05] (ASUSTeK Computer Inc. -> ASUS) Task: {719B365A-EC6A-40F8-ADFE-A82E97D2EDB7} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [120632 2014-06-11] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {9BDF3BB3-71DB-4CE5-A471-0C7B6C72D02B} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19853392 2014-12-17] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {9DB0A6D2-A7A1-488A-AC8D-1264D9404446} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9E831F67-F8C9-49E2-A1B2-2835F9FDD852} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1123200 2021-06-18] (Microsoft Corporation -> Microsoft Corporation) Task: {A48C4A3B-CDCF-424B-9985-4EB4A5C7BA73} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232 2014-12-31] (ASUSTeK Computer Inc. -> AsusTek) Task: {A4C22496-30A2-49C9-A0CA-BB9E6D587D59} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform) Task: {AA1D3674-1617-45E0-A583-8EA462B75465} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software) Task: {B16FB315-097A-4793-AD48-EC4C53B32A12} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118088 2021-06-18] (Microsoft Corporation -> Microsoft Corporation) Task: {B8C3458B-1D30-4292-9E25-8969D71AB589} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {C1F3F189-4A3B-4D61-9221-5E54F440C533} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {C3BF1D22-5767-43E7-B38B-1A0A5E56F0D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-11] (Google Inc -> Google Inc.) Task: {C71D17A5-F913-4162-A184-559D175BC60F} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe Task: {D268E2D6-808A-4486-A7E7-DDB87F8E1E0D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124856 2021-06-18] (Microsoft Corporation -> Microsoft Corporation) Task: {DA0141CD-027C-4B77-BE96-31465FDF0C9C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {EDFC4D11-922A-43B0-8DAD-573E82D2A083} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-09-11] (Google Inc -> Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{AF43C8F5-8C6D-405C-A4AB-D83FE6F830FC}: [NameServer] 1.0.0.1 Tcpip\..\Interfaces\{AF43C8F5-8C6D-405C-A4AB-D83FE6F830FC}: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{C96E6BD0-F1E4-4D18-B376-C98D1E583922}: [DhcpNameServer] 212.27.40.241 212.27.40.240 HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.1.38,1] Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Jérémy\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-25] FireFox: ======== FF DefaultProfile: 4401yk4v.default FF ProfilePath: C:\Users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\4401yk4v.default [2021-06-25] FF DownloadDir: D:\Téléchargement FF Homepage: Mozilla\Firefox\Profiles\4401yk4v.default -> hxxps://www.youtube.com/watch?v=g5MSf_ig_IA FF Extension: (TinEye Reverse Image Search) - C:\Users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\4401yk4v.default\Extensions\tineye@ideeinc.com.xpi [2019-07-11] FF Extension: (uBlock Origin) - C:\Users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\4401yk4v.default\Extensions\uBlock0@raymondhill.net.xpi [2021-06-25] FF Extension: (EPUBReader) - C:\Users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\4401yk4v.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2020-06-24] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jérémy\AppData\Roaming\Mozilla\Firefox\Profiles\4401yk4v.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-05-22] FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-04-30] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-04-30] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Fichier non signé] FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> ) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-12-18] (Foxit Corporation -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-06] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] (WildTangent Inc -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default [2021-06-25] CHR DownloadDir: D:\Téléchargement CHR Notifications: Default -> hxxps://drive.google.com CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox" CHR Extension: (Slides) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Docs) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-11] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-05-22] CHR Extension: (Sheets) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Google Docs hors connexion) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-30] CHR Extension: (Ghostery – Bloqueur de publicité protégeant la vie privée) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2021-03-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Simple EPUB Reader) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2018-01-07] CHR Extension: (Gmail) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\Jérémy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-03] CHR HKU\S-1-5-21-2857827775-3264933001-2843727691-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8151120 2021-06-01] (Avast Software s.r.o. -> AVAST Software) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-08-27] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [622816 2021-05-26] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [370400 2021-05-26] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent Inc -> WildTangent) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] (Canon Inc. -> ) S2 libusbd; C:\Windows\SysWOW64\libusbd-nt.exe [18944 2005-03-09] (hxxp://libusb-win32.sourceforge.net) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-06-02] (Malwarebytes Inc -> Malwarebytes) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-08-27] (Atheros) [Fichier non signé] S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X] S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215336 2021-05-26] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-25] (Avast Software s.r.o. -> AVAST Software) R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4221952 2014-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.) R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2014-12-31] (ASUSTeK Computer Inc. -> ASUS Corporation) R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation) S3 libusb0; C:\Windows\SysWOW64\drivers\libusb0.sys [33792 2005-03-09] () [Fichier non signé] R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-25] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-25] (Malwarebytes Inc -> Malwarebytes) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) U0 msahci; system32\drivers\msahci.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-25 22:03 - 2021-06-25 22:04 - 000022413 _____ C:\Users\Jérémy\Desktop\FRST.txt 2021-06-25 22:02 - 2021-06-25 22:04 - 000000000 ____D C:\FRST 2021-06-25 22:01 - 2021-06-25 22:01 - 002300416 _____ (Farbar) C:\Users\Jérémy\Desktop\FRST64.exe 2021-06-25 18:03 - 2021-06-25 18:03 - 000328749 _____ C:\Users\Public\Desktop\ZHPDiag.txt 2021-06-25 18:03 - 2021-06-25 18:03 - 000328749 _____ C:\ProgramData\Desktop\ZHPDiag.txt 2021-06-25 17:29 - 2021-06-25 17:29 - 003472024 _____ (Nicolas Coolman) C:\Users\Jérémy\Desktop\ZHPSuite.exe 2021-06-25 17:27 - 2021-06-25 18:03 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\ZHP 2021-06-25 17:27 - 2021-06-25 17:58 - 000000831 _____ C:\Users\Jérémy\Desktop\ZHPSuite.lnk 2021-06-25 17:27 - 2021-06-25 17:27 - 000000000 ____D C:\Users\Jérémy\AppData\Local\ZHP 2021-06-25 16:40 - 2021-06-25 16:40 - 000030597 _____ C:\Users\Jérémy\Desktop\result.txt 2021-06-25 15:59 - 2021-06-25 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibUSB-Win32 2021-06-25 15:59 - 2021-06-25 15:59 - 000000000 ____D C:\Program Files (x86)\LibUSB-Win32-0.1.10.1 2021-06-25 15:59 - 2005-03-09 20:50 - 000046592 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusb0.dll 2021-06-25 15:59 - 2005-03-09 20:50 - 000033792 _____ C:\WINDOWS\SysWOW64\Drivers\libusb0.sys 2021-06-25 15:59 - 2005-03-09 20:50 - 000019456 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusbd-9x.exe 2021-06-25 15:59 - 2005-03-09 20:50 - 000018944 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusbd-nt.exe 2021-06-25 15:58 - 2021-06-25 15:58 - 000000000 ____D C:\Users\Jérémy\AppData\Local\BraveSoftware 2021-06-25 15:19 - 2021-06-25 15:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-06-25 11:30 - 2021-06-25 11:30 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-06-25 11:30 - 2021-06-25 11:30 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-06-25 10:24 - 2021-06-25 10:23 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2021-06-25 10:24 - 2021-06-25 10:23 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8c07ea3d99b85b7d.tmp 2021-06-25 10:18 - 2021-06-25 15:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-06-21 06:09 - 2021-06-21 06:09 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\Remo 2021-06-21 06:09 - 2009-02-12 15:11 - 000026024 _____ (EldoS Corporation) C:\WINDOWS\system32\Drivers\rsdrvx64.sys 2021-06-20 23:21 - 2021-06-20 23:21 - 000000000 ____D C:\Users\Jérémy\AppData\Local\iMobie_Inc 2021-06-20 23:20 - 2021-06-20 23:20 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\iMobie 2021-06-20 23:18 - 2021-06-20 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie 2021-06-20 23:15 - 2021-06-20 23:15 - 000000000 ____D C:\Users\Public\Thunder Network 2021-06-20 23:15 - 2021-06-20 23:15 - 000000000 ____D C:\ProgramData\Thunder Network 2021-06-20 23:13 - 2021-06-20 23:13 - 000000000 ____D C:\Program Files (x86)\iMobie 2021-06-20 22:39 - 2021-06-20 22:46 - 000000000 ____D C:\Users\Jérémy\Desktop\Vidéo Nints 2021-06-20 16:05 - 2021-06-20 16:08 - 378246323 _____ C:\Users\Jérémy\Downloads\wetransfer-424beb.zip 2021-06-18 18:21 - 2021-06-05 07:23 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2021-06-18 18:21 - 2021-06-05 06:42 - 002132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-06-18 18:21 - 2021-06-05 06:30 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-05-26 20:08 - 2021-05-26 20:08 - 000215336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2021-05-26 11:50 - 2021-05-26 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2021-05-17 00:12 - 2021-05-17 00:13 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\PDFsam Visual 2021-05-17 00:02 - 2021-05-17 00:02 - 000002001 _____ C:\Users\Public\Desktop\PDFsam Basic.lnk 2021-05-17 00:02 - 2021-05-17 00:02 - 000002001 _____ C:\ProgramData\Desktop\PDFsam Basic.lnk 2021-05-17 00:02 - 2021-05-17 00:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFsam Basic 2021-05-17 00:02 - 2021-05-17 00:02 - 000000000 ____D C:\Program Files (x86)\PDFsam Basic 2021-05-16 21:10 - 2021-04-06 08:51 - 001678056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-04-30 12:47 - 2021-04-30 12:47 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-06-25 22:03 - 2019-02-06 08:15 - 000000000 ____D C:\ProgramData\Mozilla 2021-06-25 22:03 - 2016-11-18 07:50 - 000000000 ____D C:\Users\Jérémy\AppData\LocalLow\Mozilla 2021-06-25 21:59 - 2014-10-29 14:12 - 000808278 _____ C:\WINDOWS\system32\perfh00C.dat 2021-06-25 21:59 - 2014-10-29 14:12 - 000157082 _____ C:\WINDOWS\system32\perfc00C.dat 2021-06-25 21:59 - 2014-03-18 17:26 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-25 21:59 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf 2021-06-25 21:58 - 2016-09-11 18:51 - 000003944 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7E108D7F-246D-48BF-A57F-9C5B4D0F7A73} 2021-06-25 21:55 - 2016-09-11 18:33 - 000000165 _____ C:\Users\Jérémy\AppData\Roaming\sp_data.sys 2021-06-25 17:59 - 2020-11-28 13:29 - 000004476 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-06-25 17:59 - 2020-07-06 13:20 - 000003534 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-06-25 17:59 - 2020-07-06 13:18 - 000003406 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-06-25 17:59 - 2019-06-11 19:15 - 000003178 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2857827775-3264933001-2843727691-1001 2021-06-25 17:59 - 2018-02-04 16:35 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-06-25 17:59 - 2017-02-05 19:10 - 000003180 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice 2021-06-25 17:59 - 2016-09-11 19:08 - 000002794 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-06-25 17:59 - 2016-09-11 18:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-06-25 17:59 - 2016-09-11 18:52 - 000003502 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-06-25 17:59 - 2016-09-11 18:52 - 000003374 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-06-25 17:59 - 2015-03-17 06:30 - 000002986 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON 2021-06-25 17:59 - 2015-03-17 06:28 - 000003382 _____ C:\WINDOWS\system32\Tasks\Update Checker 2021-06-25 17:59 - 2015-03-17 06:25 - 000003562 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3 2021-06-25 17:59 - 2015-03-17 06:19 - 000003538 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher 2021-06-25 17:59 - 2015-03-17 06:17 - 000003168 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2021-06-25 16:37 - 2016-09-11 18:39 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2857827775-3264933001-2843727691-1001 2021-06-25 15:33 - 2018-07-20 10:04 - 000000000 ____D C:\Users\Jérémy\AppData\Local\AVAST Software 2021-06-25 15:19 - 2016-09-11 19:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-25 15:18 - 2016-09-11 19:03 - 000001177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-06-25 11:50 - 2016-09-11 19:08 - 000000000 ____D C:\Program Files\CCleaner 2021-06-25 10:25 - 2019-04-25 18:21 - 000003910 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-06-25 10:23 - 2020-10-15 19:36 - 000182600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2021-06-25 10:23 - 2020-04-15 12:52 - 000524400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2021-06-25 10:23 - 2019-01-14 19:59 - 000366616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2021-06-25 10:23 - 2019-01-05 11:09 - 000250392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2021-06-25 10:23 - 2019-01-05 11:09 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2021-06-25 10:23 - 2019-01-05 11:09 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2021-06-25 10:23 - 2018-10-20 06:27 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2021-06-25 10:23 - 2017-11-19 17:39 - 000216928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2021-06-25 10:23 - 2016-09-11 18:54 - 000851192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2021-06-25 10:23 - 2016-09-11 18:54 - 000471920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2021-06-25 10:23 - 2016-09-11 18:54 - 000327536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2021-06-25 10:23 - 2016-09-11 18:54 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2021-06-25 10:23 - 2016-09-11 18:54 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2021-06-25 09:21 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache 2021-06-25 08:49 - 2020-07-06 13:22 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-06-25 08:49 - 2020-07-06 13:22 - 000002208 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-06-25 08:49 - 2020-07-06 13:22 - 000002208 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-06-25 08:30 - 2016-09-11 18:38 - 000000000 ____D C:\Users\Jérémy\OneDrive 2021-06-25 08:29 - 2016-09-11 19:06 - 000000000 ___RD C:\Users\Jérémy\Google Drive 2021-06-21 06:50 - 2016-09-18 11:51 - 000000000 ____D C:\Users\Jérémy\AppData\Roaming\vlc 2021-06-20 20:26 - 2016-09-11 18:57 - 000000000 ____D C:\Users\Jérémy\AppData\Local\CrashDumps 2021-06-20 20:19 - 2016-09-11 18:52 - 000000000 ____D C:\ProgramData\AVAST Software 2021-06-20 20:18 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-06-20 20:18 - 2013-08-22 16:44 - 000508832 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-06-20 17:14 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI 2021-06-20 17:10 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData 2021-06-20 17:10 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Windows Defender 2021-06-20 13:38 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-06-20 13:04 - 2016-09-11 19:39 - 000002345 _____ C:\Users\Jérémy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk 2021-06-18 19:26 - 2016-09-11 21:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-06-18 19:23 - 2016-09-11 21:49 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-06-18 17:49 - 2013-08-22 17:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-18 12:03 - 2014-10-29 08:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-06-13 09:13 - 2017-04-11 14:10 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-06-05 20:10 - 2020-11-08 13:02 - 000000000 ____D C:\ProgramData\CanonIJPLM 2021-06-02 20:51 - 2020-11-17 00:34 - 000001966 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-06-02 20:51 - 2020-11-17 00:34 - 000001966 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2021-06-02 20:51 - 2020-08-03 09:26 - 000001978 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-06-01 17:04 - 2020-04-15 12:52 - 000522864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd08ea2262cfabd45.tmp 2021-05-26 20:08 - 2020-10-15 19:36 - 000180944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9b7404684683bcb0.tmp 2021-05-26 20:08 - 2019-01-05 11:09 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc9df17d153c30538.tmp 2021-05-26 20:08 - 2019-01-05 11:09 - 000099296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2319fe1d0f099665.tmp 2021-05-26 20:08 - 2018-10-20 06:27 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw8a3fdf8c7dbed557.tmp 2021-05-26 20:08 - 2016-09-11 18:54 - 000471352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswef0b89279cbd9a55.tmp 2021-05-26 20:08 - 2016-09-11 18:54 - 000326976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw284e530236012c42.tmp 2021-05-26 20:08 - 2016-09-11 18:54 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw0fc77250ed131996.tmp 2021-05-26 20:08 - 2016-09-11 18:54 - 000082856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbd1ef0c3b107f156.tmp 2021-05-26 20:07 - 2019-01-14 19:59 - 000365536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw57e0f994534f16a3.tmp 2021-05-26 20:07 - 2019-01-05 11:09 - 000035664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5799abe48d46ea79.tmp 2021-05-26 20:07 - 2017-11-19 17:39 - 000216360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5d8863a4ff4952da.tmp 2021-05-26 20:07 - 2016-09-11 18:54 - 000851144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw00b7a675d99f1f34.tmp 2021-05-26 11:50 - 2019-08-05 12:47 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002432 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-05-26 11:50 - 2019-08-05 12:47 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk ==================== Fichiers à la racine de certains dossiers ======== 2016-09-11 18:33 - 2021-06-25 21:55 - 000000165 _____ () C:\Users\Jérémy\AppData\Roaming\sp_data.sys ==================== SigCheckExt ========================= 2014-08-27 21:48 - 2014-08-27 21:48 - 000361600 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\AthCredentialProvider.dll 2016-09-11 19:54 - 2013-01-24 16:24 - 000359936 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6PPM.DLL 2016-09-11 19:54 - 2013-01-24 16:24 - 000039424 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6UI.DLL 2020-04-14 10:45 - 2013-04-01 23:19 - 000574464 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll 2020-04-14 10:44 - 2014-03-24 12:37 - 000422400 _____ (Realtek) C:\WINDOWS\SwUSB.exe 2016-05-18 15:49 - 2016-05-18 15:49 - 000974848 _____ C:\WINDOWS\SysWOW64\cis-2.4.dll 2016-09-11 19:54 - 2013-01-24 16:23 - 000366592 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNMNPPM.DLL 2016-05-18 15:49 - 2016-05-18 15:49 - 000081920 _____ C:\WINDOWS\SysWOW64\issacapi_bs-2.3.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000065536 _____ C:\WINDOWS\SysWOW64\issacapi_pe-2.3.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000057344 _____ C:\WINDOWS\SysWOW64\issacapi_se-2.3.dll 2020-04-14 10:44 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\SysWOW64\ISSRemoveSP.exe 2014-05-13 15:58 - 2014-05-13 15:58 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll 2021-06-25 15:59 - 2005-03-09 20:50 - 000046592 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusb0.dll 2021-06-25 15:59 - 2005-03-09 20:50 - 000019456 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusbd-9x.exe 2021-06-25 15:59 - 2005-03-09 20:50 - 000018944 _____ (hxxp://libusb-win32.sourceforge.net) C:\WINDOWS\SysWOW64\libusbd-nt.exe 2016-05-18 15:49 - 2016-05-18 15:49 - 000045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MACXMLProto.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000118784 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MaDRM.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000049152 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaJGUILib.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000045320 _____ (MARKANY) C:\WINDOWS\SysWOW64\MAMACExtract.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000024576 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MASetupCleaner.exe 2016-05-18 15:49 - 2016-05-18 15:49 - 000045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaXMLProto.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000057344 _____ (Marktek) C:\WINDOWS\SysWOW64\MK_Lyric.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000245760 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSCLib.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000155648 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSFLib.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000352256 _____ (Sample Corporation) C:\WINDOWS\SysWOW64\MSLUR71.dll 2016-10-24 15:32 - 2016-10-24 15:32 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2016-10-24 15:32 - 2016-10-24 15:32 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2016-10-24 15:32 - 2016-10-24 15:32 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000040960 _____ (Telechips Inc.,) C:\WINDOWS\SysWOW64\MTTELECHIP.dll 2016-05-18 15:49 - 2016-05-18 15:49 - 000057344 _____ (Marktek Inc.) C:\WINDOWS\SysWOW64\MTXSYNCICON.dll 2018-04-18 18:45 - 2011-07-13 18:52 - 002226176 _____ (Debenu Pty Ltd) C:\WINDOWS\SysWOW64\QuickPDFAX0726.dll 2017-03-16 17:13 - 2016-05-18 15:49 - 004659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll 2018-04-18 18:45 - 2000-07-15 02:00 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb6stkit.dll 2014-10-29 08:25 - 2009-07-22 12:04 - 000024576 _____ C:\ProgramData\SetStretch.exe 2021-06-25 22:01 - 2021-06-25 22:01 - 002300416 _____ (Farbar) C:\Users\Jérémy\Desktop\FRST64.exe 2021-06-25 17:29 - 2021-06-25 17:29 - 003472024 _____ (Nicolas Coolman) C:\Users\Jérémy\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {f634044b-7848-11e6-8260-806e6f6e6963} {f634044c-7848-11e6-8260-806e6f6e6963} {f634044d-7848-11e6-8260-806e6f6e6963} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {fdf27694-784c-11e6-b94c-ec214b633f7e} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {f634044b-7848-11e6-8260-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {f634044c-7848-11e6-8260-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {f634044d-7848-11e6-8260-806e6f6e6963} description UEFI:Network Device Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 8.1 locale fr-FR inherit {bootloadersettings} recoverysequence {fdf27696-784c-11e6-b94c-ec214b633f7e} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {fdf27694-784c-11e6-b94c-ec214b633f7e} nx OptIn bootmenupolicy Standard detecthal Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {fdf27696-784c-11e6-b94c-ec214b633f7e} device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{fdf27697-784c-11e6-b94c-ec214b633f7e} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{fdf27697-784c-11e6-b94c-ec214b633f7e} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {fdf27694-784c-11e6-b94c-ec214b633f7e} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {fdf27696-784c-11e6-b94c-ec214b633f7e} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {fdf27697-784c-11e6-b94c-ec214b633f7e} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume2 ramdisksdipath \Recovery\WindowsRE\boot.sdi LastRegBack: 2021-06-21 06:56 ==================== Fin de FRST.txt ========================