==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1206.2\AvastBrowserCrashHandler.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1206.2\AvastBrowserCrashHandler64.exe (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\AvastUI.exe <6> (C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.534.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.534.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe (D:\Program Files\Everything\Everything.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (D:\Program Files\Everything\Everything.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (DriverStore\FileRepository\cui_dch.inf_amd64_95bc605201b64517\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_95bc605201b64517\igfxEM.exe (explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\61.0.3.0\crashpad_handler.exe <3> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <28> (explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe <7> (explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (explorer.exe ->) (voidtools -> voidtools) D:\Program Files\Everything\Everything.exe <2> (services.exe ->) (anytxt.net) [Fichier non signé] D:\Program Files\AnyTXT Searcher\ATService.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) D:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_95bc605201b64517\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82419944dda69b12\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_03b951be52cd2aa9\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ad50285c3647623\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3ad50285c3647623\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) D:\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) D:\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.534.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Everything] => D:\Program Files\Everything\Everything.exe [2261600 2021-05-12] (voidtools -> voidtools) HKLM\...\Run: [AvastUI.exe] => D:\Program Files\Avast Software\Avast\AvLaunch.exe [213760 2022-08-08] (Avast Software s.r.o. -> AVAST Software) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2087624067-1276621751-448620844-1025\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2087624067-1276621751-448620844-1025\...\Run: [MicrosoftEdgeAutoLaunch_ABB67434869FA037A8CD10F36FC5FC42] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2087624067-1276621751-448620844-1025\...\MountPoints2: {63f4478b-7fcd-11ea-8f66-dcf505233d3e} - "G:\setup.EXE" /AUTORUN HKU\S-1-5-21-2087624067-1276621751-448620844-1025\...\MountPoints2: {e9babb3a-f104-11e9-8f5c-dcf505233d3e} - "F:\setup.EXE" /AUTORUN HKU\S-1-5-21-2087624067-1276621751-448620844-500\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642320 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\61.0.3.0\GoogleDriveFS.exe [51041096 2022-07-18] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [54944 2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-04] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\103.1.17779.134\Installer\chrmstp.exe [2022-08-08] (Avast Software s.r.o. -> AVAST Software) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LastPass.LastPassRemove.bat [2022-06-05] () [Fichier non signé] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {01E431D0-F63B-4C68-AD54-0ECD52DCC9E8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2793640 2022-07-21] (Avast Software s.r.o. -> AVAST Software) Task: {11C4A33E-F55D-47C0-B673-CF214321BD1C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2087624067-1276621751-448620844-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {1255FAEB-5CFF-4816-9191-5374F381F860} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {25825157-2581-427C-BCF2-F65689F55EAD} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {275B6C51-E134-43AC-90D6-D5A1BD06DC80} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-12] (Microsoft Corporation -> Microsoft Corporation) Task: {3D4A2551-9480-4CDC-9EA0-AEFEF844A403} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-08-08] (Avast Software s.r.o. -> Avast Software) Task: {3E71B669-8223-4AE1-B76A-BA16E89EF07B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {442583A2-F992-4BE6-874E-B143B3279284} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {4B543499-602A-4ECE-A389-E87751C94203} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {5184B353-3345-4071-A7E2-F8461F20245B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup (Pas de fichier) Task: {5C77BF85-F6AB-4893-87D3-71D4ECA86E32} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2022-04-30] (Google Inc -> Google LLC) Task: {837DB7FB-3E44-45FB-BE8B-74B770CDE7BA} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {9594E56F-A7FA-4254-A81B-9E22C6186952} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [179936 2022-08-08] (Avast Software s.r.o. -> AVAST Software) Task: {ADFA6DE9-1CFF-436C-9407-B0284B47788B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {B58DAE90-3A3D-4E85-88C4-00DD9A93533D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-12] (Microsoft Corporation -> Microsoft Corporation) Task: {B6C17239-C55C-4FBC-913E-882248B34007} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2087624067-1276621751-448620844-1025 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {C0EBFCC7-5BE2-459A-A21D-9656D34C9840} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {C5788D80-BD8A-46C0-B365-945008A0ED17} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification (Pas de fichier) Task: {CD09B213-D263-4CC5-8866-4B89C196E32B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2022-04-30] (Google Inc -> Google LLC) Task: {D0A76B08-2409-420A-9396-2538DEF84F25} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob (Pas de fichier) Task: {D354EBCF-2B2F-46AA-85A0-D9D1D9A297AB} - System32\Tasks\Avast Emergency Update => D:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4928768 2022-08-08] (Avast Software s.r.o. -> AVAST Software) Task: {D6F519FE-CB3F-4364-9CF9-533AF917CBCF} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2793640 2022-07-21] (Avast Software s.r.o. -> AVAST Software) Task: {DC9E71E6-1E2E-47A8-986E-7F03204C5C05} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [179936 2022-08-08] (Avast Software s.r.o. -> AVAST Software) Task: {DDA9E156-9990-4544-8935-CF6DA591F8D3} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe /dotip (Pas de fichier) Task: {E4831A00-2B1C-4F4C-94FC-6DAC4DF30137} - System32\Tasks\CMPCUAC => C:\Program Files\CleanMyPC\CleanMyPC.exe -fts (Pas de fichier) Task: {E79635FC-30B9-4C74-AE1B-B34407396DDF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {E9AEDDE8-5222-46FF-A54D-12FD3596FFBA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {F8F069E5-9EF5-4F90-A3BC-13E02FB40BA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance (Pas de fichier) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{07e2609f-7a7f-4621-865f-fefb0838d917}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c7cdeefd-e2ec-4a46-860e-d9c5d5752ab4}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\MCS\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-14] FireFox: ======== FF DefaultProfile: zk0wmpqf.default FF ProfilePath: C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\zk0wmpqf.default [2022-08-09] FF ProfilePath: C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release [2022-08-09] FF Session Restore: Mozilla\Firefox\Profiles\25abtg83.default-release -> est activé. FF Notifications: Mozilla\Firefox\Profiles\25abtg83.default-release -> hxxps://www.verychic.fr FF Extension: (Cookie AutoDelete) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\CookieAutoDelete@kennydo.com.xpi [2022-07-13] FF Extension: (Correcteur orthographique & grammatical — LanguageTool) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2022-07-27] FF Extension: (S3.Traducteur) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\s3@translator.xpi [2022-05-01] FF Extension: (LastPass: Free Password Manager) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\support@lastpass.com.xpi [2022-07-27] FF Extension: (Google Translator for Firefox) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\translator@zoli.bod.xpi [2022-05-01] FF Extension: (uBlock Origin) - C:\Users\MCS\AppData\Roaming\Mozilla\Firefox\Profiles\25abtg83.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-06-14] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2022-05-07] [] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [Pas de fichier] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Pas de fichier] FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [Pas de fichier] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1206.2\npAvastBrowserUpdate3.dll [2022-08-08] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1206.2\npAvastBrowserUpdate3.dll [2022-08-08] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default [2022-08-14] CHR Notifications: Default -> hxxps://adsforcomputertech.com; hxxps://advtstudio.com; hxxps://allowsuccess.org; hxxps://infos-geek.com; hxxps://photos.google.com; hxxps://smartandroid.fr; hxxps://web.skype.com; hxxps://www.autoplus.fr; hxxps://www.doctissimo.fr; hxxps://www.facebook.com; hxxps://www.fdj.fr; hxxps://www.neonmag.fr; hxxps://www.ohmymag.com; hxxps://www.teleshopping.fr; hxxps://www.wish.com; hxxps://www.youtube.com; hxxps://www1.notifinfoback.com CHR StartupUrls: Default -> "hxxps://www.google.fr/webhp?rls=ig","hxxps://www.google.com/" CHR Session Restore: Default -> est activé. CHR Extension: (Google Traduction) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-07-13] CHR Extension: (Safe Torrent Scanner) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-15] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-07-27] CHR Extension: (Total Adblock - Ad Blocker) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gekdekpbfehejjiecgonmgmepbdnaggp [2022-08-04] CHR Extension: (Google Docs hors connexion) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-08-11] CHR Extension: (SuperSorter) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjebfgojnlefhdgmomncgjglmdckngij [2022-06-10] CHR Extension: (Ad Blocker App) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\iamhhblhmpldjchjecmapgoikpjmmfoe [2022-08-14] CHR Extension: (Translation Comparison) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kicpmhgmcajloefloefojbfdmenhmhjf [2022-06-10] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-08-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-10] CHR Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2022-07-26] CHR Extension: (Bookmarks clean up) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\oncbjlgldmiagjophlhobkogeladjijl [2022-06-10] CHR Extension: (Ocean) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgedigcdbemilinbicidhplhebjoafpl [2022-06-10] CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-10] CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-10] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-17] CHR Extension: (Google Docs hors connexion) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-17] CHR Extension: (LastPass: Free Password Manager) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-05-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-17] CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-07-10] CHR Extension: (Safe Torrent Scanner) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-05-27] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-27] CHR Extension: (Google Docs hors connexion) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-05-27] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-27] CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3 [2022-07-10] CHR Notifications: Profile 3 -> hxxps://www.facebook.com; hxxps://www.fdj.fr; hxxps://www.pagesjaunes.fr; hxxps://www.verychic.fr; hxxps://www.youtube.com CHR StartupUrls: Profile 3 -> "hxxps://www.google.fr/webhp?rls=ig","hxxps://www.google.com/" CHR Session Restore: Profile 3 -> est activé. CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-06-09] CHR Extension: (Total Adblock - Ad Blocker) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gekdekpbfehejjiecgonmgmepbdnaggp [2022-05-27] CHR Extension: (Google Docs hors connexion) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-27] CHR Extension: (LastPass: Free Password Manager) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-06-05] CHR Extension: (SuperSorter) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hjebfgojnlefhdgmomncgjglmdckngij [2022-05-27] CHR Extension: (Translation Comparison) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kicpmhgmcajloefloefojbfdmenhmhjf [2022-05-27] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-27] CHR Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\noaijdpnepcgjemiklgfkcfbkokogabh [2022-05-27] CHR Extension: (Bookmarks clean up) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\oncbjlgldmiagjophlhobkogeladjijl [2022-05-27] CHR Extension: (Ocean) - C:\Users\MCS\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pgedigcdbemilinbicidhplhebjoafpl [2022-05-27] CHR Profile: C:\Users\MCS\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-10] CHR HKU\S-1-5-21-2087624067-1276621751-448620844-1025\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R3 aswbIDSAgent; D:\Program Files\Avast Software\Avast\aswidsagent.exe [8507448 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 ATService; D:\Program Files\AnyTXT Searcher\atservice.exe [2039296 2022-08-04] (anytxt.net) [Fichier non signé] S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [179936 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; D:\Program Files\Avast Software\Avast\AvastSvc.exe [589568 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; D:\Program Files\Avast Software\Avast\afwServ.exe [2013440 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; D:\Program Files\Avast Software\Avast\aswToolsSvc.exe [589056 2022-08-08] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [179936 2022-08-08] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\103.1.17779.134\elevation_service.exe [1991960 2022-07-21] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; D:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [68336 2022-05-04] (CyberGhost S.R.L. -> CyberGhost S.R.L.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5030080 2022-04-30] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncHelper.exe [3389840 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [225368 2022-07-14] (HP Inc. -> HP Inc.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\OneDriveUpdaterService.exe [3830160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136520 2021-12-05] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [193776 2022-05-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ss_conn_service; D:\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2022-05-13] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; D:\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2022-05-13] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14585832 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 Microsoft SharePoint Workspace Audit Service; "C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" /auditservice [X] S3 ose64; "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [150840 2022-04-25] (Alcorlink Corp. -> ) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [113496 2021-01-14] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [235576 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389120 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258048 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104960 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47976 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275024 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553928 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113968 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [89032 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [859872 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [670776 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221512 2022-08-08] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324840 2022-08-08] (Avast Software s.r.o. -> AVAST Software) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [165104 2022-05-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-10-18] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2022-04-30] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [139488 2022-04-25] (GENESYS LOGIC, INC. -> Genesys Logic) R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-05-26] (Martin Malik - REALiX -> REALiX(tm)) R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_skl.inf_amd64_21716d1984912f3d\iaLPSS2_SPI_ICL.sys [160024 2020-04-28] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_skl.inf_amd64_a59239db7de9954f\iaLPSS2_UART2_ICL.sys [312600 2020-04-28] (Intel Corporation -> Intel Corporation) R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-28] (Intel Corporation -> Intel Corporation) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [171768 2022-05-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [48368 2022-05-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-14 18:14 - 2022-08-14 18:15 - 000035815 _____ C:\Users\MCS\Desktop\FRST.txt 2022-08-14 18:14 - 2022-08-14 18:15 - 000000000 ____D C:\FRST 2022-08-14 18:12 - 2022-08-14 18:12 - 002370048 _____ (Farbar) C:\Users\MCS\Desktop\FRST64.exe 2022-08-14 15:18 - 2022-08-14 15:18 - 000000000 ___HD C:\$WinREAgent 2022-08-14 14:05 - 2022-08-14 18:11 - 000344251 _____ C:\Users\Public\Desktop\ZHPDiag.txt 2022-08-14 14:05 - 2022-08-14 14:05 - 000426122 _____ C:\Users\MCS\Desktop\ZHPDiag.html 2022-08-14 14:01 - 2022-08-14 14:01 - 000000906 _____ C:\Users\MCS\Desktop\ZHPSuite.lnk 2022-08-14 13:58 - 2022-08-14 18:11 - 000000000 ____D C:\Users\MCS\AppData\Roaming\ZHP 2022-08-14 13:58 - 2022-08-14 13:58 - 000000000 ____D C:\Users\MCS\AppData\Local\ZHP 2022-08-13 23:42 - 2022-08-13 23:42 - 000000000 ____D C:\WINDOWS\Panther 2022-08-12 10:36 - 2022-08-12 10:36 - 000061543 _____ C:\Users\MCS\Desktop\RETOUR STAND PRIVE.pdf 2022-08-11 18:07 - 2022-08-11 18:07 - 000000000 ____D C:\Users\MCS\AppData\LocalLow\uTorrent.WebView2 2022-08-11 06:38 - 2022-08-11 06:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2022-08-10 18:05 - 2022-08-14 10:56 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-10 07:42 - 2022-08-10 07:43 - 000000000 ___HD C:\ProgramData\Anytxt 2022-08-10 07:42 - 2022-08-10 07:42 - 000000767 _____ C:\Users\Public\Desktop\AnyTXT Searcher.lnk 2022-08-10 07:42 - 2022-08-10 07:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyTXT Searcher 2022-08-10 07:42 - 2022-08-10 07:42 - 000000000 ____D C:\Program Files\Common Files\ATFLT 2022-08-10 07:42 - 2022-08-10 07:42 - 000000000 ____D C:\Program Files (x86)\MSECache 2022-08-09 18:14 - 2022-08-11 06:37 - 000002204 _____ C:\WINDOWS\system32\Tasks\CMPCUAC 2022-08-08 23:03 - 2022-08-08 23:03 - 000001049 _____ C:\Users\Public\Desktop\Avast Premium Sécurité.lnk 2022-08-08 23:03 - 2022-08-08 23:03 - 000001049 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Sécurité.lnk 2022-08-08 23:02 - 2022-08-08 18:52 - 000270592 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-08-08 18:57 - 2022-08-08 18:57 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-08-08 18:55 - 2022-08-08 18:56 - 000000000 ____D C:\Users\MCS\AppData\Local\Avast Software 2022-08-08 18:55 - 2022-08-08 18:55 - 000003856 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2022-08-08 18:55 - 2022-08-08 18:55 - 000003626 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA 2022-08-08 18:55 - 2022-08-08 18:55 - 000003502 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore 2022-08-08 18:55 - 2022-08-08 18:55 - 000003272 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon) 2022-08-08 18:55 - 2022-08-08 18:55 - 000002570 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2022-08-08 18:55 - 2022-08-08 18:55 - 000002535 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk 2022-08-08 18:55 - 2022-08-08 18:55 - 000000000 ____D C:\Program Files (x86)\AVAST Software 2022-08-08 18:54 - 2022-08-08 18:54 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Avast Software 2022-08-08 18:52 - 2022-08-08 23:02 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-08-08 18:52 - 2022-08-08 18:52 - 000670776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000553928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000324840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000275024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000258048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000221512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000113968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000104960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000089032 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000047976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000024528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-08-08 18:52 - 2022-08-08 18:52 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2022-08-08 18:52 - 2022-08-08 18:51 - 000859872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-08-08 18:52 - 2022-08-08 18:51 - 000389120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-08-08 18:52 - 2022-08-08 18:51 - 000235576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-08-08 18:49 - 2022-08-14 11:36 - 000000000 ____D C:\ProgramData\Avast Software 2022-08-07 19:39 - 2022-08-07 19:39 - 000000783 _____ C:\Users\Public\Desktop\Notepad++.lnk 2022-08-06 12:19 - 2022-08-06 12:19 - 000000000 ____D C:\ProgramData\Auslogics 2022-08-04 13:09 - 2022-08-04 13:09 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2022-08-04 13:09 - 2022-08-04 13:09 - 000001865 _____ C:\Users\MCS\Desktop\Google Drive.lnk 2022-08-04 13:09 - 2022-07-18 18:08 - 000384584 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3758.sys 2022-08-01 23:04 - 2022-08-01 23:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer 2022-08-01 23:04 - 2022-08-01 23:04 - 000000000 ____D C:\ProgramData\Ant Renamer 2022-08-01 20:40 - 2022-08-06 12:30 - 000000000 ____D C:\Users\MCS\Desktop\Mariage NIKO 2022-08-01 15:55 - 2022-08-01 15:56 - 000003584 _____ C:\Users\MCS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2022-07-27 22:11 - 2022-08-04 12:18 - 000000000 ____D C:\Users\MCS\Desktop\MARIAGE NICOLAS 2022-07-23 09:53 - 2022-07-23 10:08 - 000000000 ____D C:\Users\MCS\Desktop\blanes 2022-07-23 07:54 - 2022-08-11 06:37 - 000002444 _____ C:\WINDOWS\system32\Tasks\IObitSelfCheckTask 2022-07-23 07:54 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys 2022-07-23 07:54 - 2016-03-22 11:02 - 000036824 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe 2022-07-20 19:01 - 2022-07-20 19:01 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2022-07-13 07:52 - 2022-08-14 11:36 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-07-11 19:10 - 2022-08-14 11:04 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2087624067-1276621751-448620844-500 2022-07-10 17:50 - 2022-07-10 17:50 - 000000000 ____D C:\Users\MCS\AppData\Local\SquirrelTemp 2022-07-10 16:06 - 2022-08-14 11:04 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-07-10 16:06 - 2022-08-14 11:04 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-10 16:02 - 2022-07-10 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2022-07-10 15:54 - 2022-07-10 15:57 - 345280512 _____ C:\Users\MCS\Desktop\ProPlus2021Retail.img 2022-07-10 08:38 - 2022-08-12 17:58 - 000000000 ____D C:\Program Files\Microsoft Office 2022-07-10 06:19 - 2022-08-01 08:26 - 000000000 ____D C:\WINDOWS\Minidump 2022-07-09 11:57 - 2022-07-09 11:57 - 000095689 _____ C:\Users\MCS\Desktop\facture_freemobile_20220619.pdf 2022-07-08 12:13 - 2022-07-08 12:34 - 000000000 ____D C:\Users\MCS\Desktop\CapsLock Indicator 2022-07-08 12:05 - 2022-07-08 12:05 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Jonas Kohl 2022-07-06 09:58 - 2022-07-06 09:58 - 000105516 _____ C:\Users\MCS\Desktop\facture_freemobile_20220419.pdf 2022-07-06 09:58 - 2022-07-06 09:58 - 000099670 _____ C:\Users\MCS\Desktop\facture_freemobile_20220519.pdf 2022-07-06 09:57 - 2022-07-06 09:57 - 000120416 _____ C:\Users\MCS\Desktop\facture_freemobile_20220528.pdf 2022-07-06 09:57 - 2022-07-06 09:57 - 000113714 _____ C:\Users\MCS\Desktop\facture_freemobile_20220628.pdf 2022-06-30 20:29 - 2022-06-30 20:29 - 000000000 ____D C:\ProgramData\ASUS 2022-06-29 20:54 - 2022-06-29 20:54 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant 2022-06-24 07:25 - 2022-08-07 19:39 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Notepad++ 2022-06-18 09:16 - 2022-06-18 09:16 - 000054814 _____ C:\Users\MCS\Desktop\20210504151920857_Transportbox im Motorraum.pdf 2022-06-16 20:01 - 2022-06-16 20:02 - 000002198 _____ C:\Users\Public\Desktop\Smart Switch.lnk 2022-06-16 20:01 - 2022-06-16 20:02 - 000000000 ____D C:\Program Files (x86)\Samsung 2022-06-11 13:32 - 2022-06-11 14:20 - 000327969 _____ C:\Users\MCS\Desktop\Maryse Cezard Lecerf.pdf 2022-06-11 13:27 - 2022-06-11 13:30 - 000197622 _____ C:\Users\MCS\Desktop\facebook-LAROCHE7947.zip 2022-06-10 08:20 - 2022-06-10 08:20 - 000508888 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-06-09 21:09 - 2022-06-09 21:09 - 000000000 ____D C:\Program Files\ModifiableWindowsApps 2022-06-09 06:22 - 2022-06-09 06:22 - 000000000 ____D C:\Users\MCS\AppData\Roaming\IsolatedStorage 2022-06-09 06:22 - 2022-06-09 06:22 - 000000000 ____D C:\ProgramData\IsolatedStorage 2022-06-08 19:16 - 2022-08-14 11:36 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-06-08 19:16 - 2022-06-14 18:41 - 000000000 ____D C:\Users\MCS\AppData\Roaming\TeamViewer 2022-06-08 19:16 - 2022-06-08 19:16 - 000001114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2022-06-08 19:16 - 2022-06-08 19:16 - 000001102 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2022-06-08 19:16 - 2022-06-08 19:16 - 000000000 ____D C:\Users\MCS\AppData\Local\TeamViewer 2022-06-08 10:11 - 2022-06-08 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2022-06-08 10:10 - 2022-06-16 19:58 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Samsung 2022-06-08 10:10 - 2022-06-08 10:12 - 000000000 ____D C:\ProgramData\Samsung 2022-06-08 10:10 - 2022-05-13 09:06 - 000171768 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2022-06-08 10:10 - 2022-05-13 09:06 - 000165104 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys 2022-06-08 10:10 - 2022-05-13 09:06 - 000048368 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys 2022-06-08 10:10 - 2022-01-25 11:29 - 000144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\SysWOW64\secman.dll 2022-06-07 19:31 - 2022-08-13 22:35 - 000000000 ____D C:\Users\MCS\AppData\Local\CrashDumps 2022-06-06 18:44 - 2022-06-06 18:44 - 000000000 ____D C:\Users\MCS\AppData\Local\Remove_Empty_Directories 2022-06-06 17:13 - 2022-06-06 17:13 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled 2022-06-06 17:13 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll 2022-06-05 11:39 - 2022-06-05 11:39 - 000001124 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk 2022-06-05 11:38 - 2020-10-14 04:07 - 000038400 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys 2022-06-05 05:58 - 2022-06-05 05:58 - 000000000 ____D C:\Program Files\Intel 2022-06-05 05:42 - 2022-06-05 05:42 - 000000000 ___HD C:\$Windows.~WS 2022-06-05 05:41 - 2022-06-05 05:41 - 000000000 ____D C:\Users\MCS\AppData\Local\Downloaded Installations 2022-06-05 05:31 - 2022-06-05 05:37 - 000000000 ____D C:\Users\MCS\AppData\Roaming\FreeFileSync 2022-06-04 18:40 - 2022-06-04 18:40 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Ashisoft 2022-06-04 18:12 - 2022-06-04 18:15 - 000000000 ____D C:\Users\Public\CyberLink 2022-06-04 18:12 - 2022-06-04 18:12 - 000000000 ____D C:\Users\MCS\AppData\Roaming\CyberLink 2022-06-04 18:11 - 2022-08-09 19:20 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information 2022-06-04 17:51 - 2022-06-04 18:25 - 000000000 ____D C:\ProgramData\CLSK 2022-06-04 17:48 - 2022-08-09 16:21 - 000000000 ___HD C:\ProgramData\CyberLink 2022-06-04 17:42 - 2022-06-04 17:42 - 000000000 ____D C:\ProgramData\GraphicsType13 2022-06-04 17:42 - 2022-06-04 17:42 - 000000000 ____D C:\Program Files (x86)\WondershareUpdate 2022-06-04 17:30 - 2022-08-11 18:16 - 000000000 ____D C:\Users\MCS\AppData\Roaming\vlc 2022-06-04 17:29 - 2022-06-04 17:29 - 000000000 ____D C:\Program Files\VideoLAN 2022-06-01 19:59 - 2022-06-01 19:59 - 000011917 _____ C:\Users\MCS\Desktop\SDCARD.xlsx 2022-06-01 08:43 - 2022-06-05 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2022-06-01 08:43 - 2022-06-01 08:43 - 000000000 ____D C:\Users\MCS\AppData\Local\VS Revo Group 2022-06-01 08:43 - 2022-06-01 08:43 - 000000000 ____D C:\ProgramData\VS Revo Group 2022-06-01 08:43 - 2022-06-01 08:43 - 000000000 ____D C:\Program Files\VS Revo Group 2022-05-29 18:35 - 2022-05-29 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2022-05-26 23:05 - 2022-05-26 23:05 - 000000000 ____R C:\WINDOWS\SysWOW64\version_IObitDel.dll 2022-05-26 22:57 - 2022-05-26 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8 2022-05-26 22:53 - 2022-08-11 19:56 - 000000000 ____D C:\Users\MCS\AppData\Roaming\uTorrent 2022-05-26 21:18 - 2022-08-11 18:08 - 000000000 ____D C:\Users\MCS\AppData\Local\BitTorrentHelper 2022-05-26 21:11 - 2022-07-23 16:25 - 000000000 ____D C:\ProgramData\ProductData 2022-05-26 21:11 - 2022-05-26 21:11 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS 2022-05-26 21:10 - 2022-07-23 16:27 - 000000000 ____D C:\Users\MCS\AppData\Roaming\IObit 2022-05-26 21:10 - 2022-07-23 07:54 - 000000000 ____D C:\ProgramData\IObit 2022-05-24 12:54 - 2022-05-24 12:54 - 000000000 ____D C:\Users\MCS\AppData\Roaming\SolidDocuments 2022-05-20 10:17 - 2022-08-05 17:43 - 000000000 ____D C:\Users\MCS\AppData\Local\ElevatedDiagnostics 2022-05-19 14:38 - 2022-06-06 18:50 - 000002672 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-05-19 14:11 - 2022-05-19 14:11 - 000000000 ____D C:\Users\Public\Thunder Network 2022-05-19 14:11 - 2022-05-19 14:11 - 000000000 ____D C:\ProgramData\Thunder Network 2022-05-18 18:47 - 2022-05-18 18:47 - 000514664 _____ (Intel) C:\WINDOWS\system32\libvpl.dll 2022-05-18 18:47 - 2022-05-18 18:47 - 000455264 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll 2022-05-18 18:46 - 2022-05-18 18:46 - 000948560 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2022-05-18 18:46 - 2022-05-18 18:46 - 000709376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 001969824 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-05-18 18:45 - 2022-05-18 18:45 - 001969824 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-05-18 18:45 - 2022-05-18 18:45 - 001526432 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-05-18 18:45 - 2022-05-18 18:45 - 001526432 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-05-18 18:45 - 2022-05-18 18:45 - 001432320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 001432320 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 001145600 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 001145600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 000594280 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 000467904 _____ C:\WINDOWS\system32\ze_tracing_layer.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 000454552 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 000375728 _____ C:\WINDOWS\system32\ze_loader.dll 2022-05-18 18:45 - 2022-05-18 18:45 - 000141760 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2022-05-18 18:44 - 2022-05-18 18:44 - 027948464 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2022-05-18 18:44 - 2022-05-18 18:44 - 020672432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2022-05-18 18:44 - 2022-05-18 18:44 - 000500144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-05-18 18:44 - 2022-05-18 18:44 - 000362928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-14 17:50 - 2022-04-30 13:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-14 17:11 - 2022-04-30 12:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-08-14 15:27 - 2022-04-30 13:10 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-14 14:01 - 2022-04-30 12:27 - 000000000 ____D C:\Users\MCS 2022-08-14 13:59 - 2022-04-30 14:12 - 000000000 ____D C:\Users\MCS\AppData\Roaming\Everything 2022-08-14 13:57 - 2021-11-24 08:49 - 000000000 ____D C:\Users\MCS\Desktop\DUPLI 2022-08-14 13:24 - 2022-04-30 13:31 - 000000000 ____D C:\Users\MCS\AppData\Local\D3DSCache 2022-08-14 13:10 - 2021-12-05 10:14 - 000000000 ____D C:\Users\MCS\AppData\LocalLow\Mozilla 2022-08-14 11:41 - 2022-04-30 13:17 - 000794444 _____ C:\WINDOWS\system32\perfh00C.dat 2022-08-14 11:41 - 2022-04-30 13:17 - 000150558 _____ C:\WINDOWS\system32\perfc00C.dat 2022-08-14 11:41 - 2022-04-30 13:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-14 11:41 - 2022-04-30 12:36 - 001770906 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-08-14 11:36 - 2022-04-30 13:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-08-14 11:36 - 2022-04-30 13:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-08-14 11:36 - 2022-04-30 12:27 - 000000000 ____D C:\Users\Administrateur 2022-08-14 11:36 - 2022-04-30 12:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-08-14 11:36 - 2019-11-11 07:12 - 000000000 __SHD C:\Users\MCS\IntelGraphicsProfiles 2022-08-14 11:36 - 2019-04-05 02:50 - 000000000 ___HD C:\Intel 2022-08-14 11:35 - 2022-05-01 04:03 - 000000000 ____D C:\Users\MCS\AppData\Local\Everything 2022-08-14 11:06 - 2022-05-04 18:29 - 000000000 ____D C:\Users\MCS\AppData\Roaming\CyberGhost 2022-08-14 11:04 - 2022-04-30 13:31 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2087624067-1276621751-448620844-1025 2022-08-14 10:56 - 2022-05-01 20:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-14 10:56 - 2021-01-14 08:55 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-14 10:54 - 2022-04-30 13:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-08-13 23:07 - 2022-05-04 18:29 - 000000000 ____D C:\Users\MCS\AppData\Local\CyberGhost 2022-08-13 21:05 - 2022-04-30 13:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-13 21:05 - 2022-04-30 13:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-13 19:39 - 2022-04-30 13:29 - 000000000 ____D C:\Users\MCS\AppData\Local\Packages 2022-08-13 10:50 - 2021-12-03 13:18 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-11 06:37 - 2022-05-01 20:05 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-11 06:37 - 2022-05-01 20:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-08-11 06:37 - 2022-04-30 13:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-08-11 06:37 - 2022-04-30 12:24 - 000003618 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-11 06:37 - 2022-04-30 12:24 - 000003394 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-10 08:08 - 2021-12-31 15:03 - 000000000 ____D C:\Users\MCS\Desktop\Camera 2022-08-10 07:42 - 2022-04-30 13:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-08-08 23:02 - 2022-04-30 13:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-08-07 19:39 - 2021-12-05 19:31 - 000000783 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2022-08-07 18:02 - 2022-05-01 20:05 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-04 13:09 - 2022-04-30 15:24 - 000000000 ____D C:\Users\MCS\AppData\Local\Google 2022-08-04 13:09 - 2022-04-30 15:24 - 000000000 ____D C:\Program Files\Google 2022-08-01 23:04 - 2021-06-29 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Attribute Changer 2022-07-23 07:54 - 2022-04-25 10:14 - 000000000 ____D C:\Users\MCS\AppData\LocalLow\IObit 2022-07-22 07:57 - 2021-12-08 15:14 - 000000000 ____D C:\Users\MCS\Desktop\Office 2022-07-19 17:02 - 2022-04-30 14:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-07-19 16:59 - 2022-04-30 14:56 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======== 2022-08-01 15:55 - 2022-08-01 15:56 - 000003584 _____ () C:\Users\MCS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2022-05-01 19:08 - 2022-05-01 19:08 - 000000000 _____ () C:\Users\MCS\AppData\Local\oobelibMkey.log ==================== SigCheckExt ========================= 2022-04-30 18:50 - 2022-05-01 09:23 - 000018432 _____ C:\WINDOWS\system32\SppExtComObjHook.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2015-03-17 01:34 - 2015-03-17 01:34 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2022-05-26 23:05 - 2022-05-26 23:05 - 000000000 ____R C:\WINDOWS\SysWOW64\version_IObitDel.dll 2020-10-29 01:14 - 2011-12-10 14:23 - 000976384 _____ (Quick And Easy Software) C:\Users\MCS\Desktop\Disk_Eject.exe 2022-08-14 18:12 - 2022-08-14 18:12 - 002370048 _____ (Farbar) C:\Users\MCS\Desktop\FRST64.exe ==================== FCheck ================================ (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2022-05-26] <==== ATTENTION (zéro octet Fichier/Dossier) ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {038f6e08-e282-11ec-b925-806e6f6e6963} {038f6e09-e282-11ec-b925-806e6f6e6963} {038f6e0a-e282-11ec-b925-806e6f6e6963} timeout 1 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume3 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {9500a02d-c877-11ec-983b-8130ee8110d5} displayorder {current} toolsdisplayorder {memdiag} timeout 10 Application logicielle (101fffff) -------------------------------- identificateur {038f6e08-e282-11ec-b925-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {038f6e09-e282-11ec-b925-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {038f6e0a-e282-11ec-b925-806e6f6e6963} description UEFI:Network Device Chargeur de d‚marrage Windows ----------------------------- identificateur {5816b461-56c8-11e9-bdb5-04d4c46bf624} device ramdisk=[C:]\Recovery\FAC_BOOT\Boot.wim,{ramdiskoptions} path \windows\system32\boot\winload.efi description WinPE osdevice ramdisk=[C:]\Recovery\FAC_BOOT\Boot.wim,{ramdiskoptions} systemroot \windows nx OptIn detecthal Yes winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {baf982dc-5545-11ec-ad22-95ad2c8251ca} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {9500a02d-c877-11ec-983b-8130ee8110d5} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {baf982dc-5545-11ec-ad22-95ad2c8251ca} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{baf982dd-5545-11ec-ad22-95ad2c8251ca} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride PushButtonReset osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{baf982dd-5545-11ec-ad22-95ad2c8251ca} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {9500a02d-c877-11ec-983b-8130ee8110d5} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {baf982dc-5545-11ec-ad22-95ad2c8251ca} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options Ramdisk du programme d'installation ------------------------------------------- identificateur {ramdiskoptions} description Ramdisk options ramdisksdidevice partition=C: ramdisksdipath \Windows\System32\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {baf982dd-5545-11ec-ad22-95ad2c8251ca} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================