Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022 Exécuté par #Phiilou (administrateur) sur NAYWAY (LENOVO 80WK) (14-09-2022 15:27:40) Exécuté depuis F:\Users\#Phiilou\Desktop Profils chargés: #Phiilou Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1889 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4> (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_cac487d7a695d2e9\igfxEM.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Wondershare\Dr.Fone\Addins\Recovery\ElevationService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (CyberGhost SRL -> CyberGhost S.A.) F:\Users\#Phiilou\Downloads\CrackNew Files(9-29-2O18) [C-F-V] Full\CyberGhost VPN Premium 6.5.2.42 + Crack\Setup\CyberGhost.Service.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_cac487d7a695d2e9\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_cac487d7a695d2e9\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_cac487d7a695d2e9\IntelCpHeciSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvltig.inf_amd64_3dea89b1f7584cc8\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Pango LLC -> Pango Inc.) C:\Program Files (x86)\Hotspot Shield\11.3.0\bin\cmw_srv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (SAGE FRANCE) [Fichier non signé] C:\Program Files (x86)\TELBAC\svctbw.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe (services.exe ->) (SIL) [Fichier non signé] C:\Program Files (x86)\SIL\FieldWorks 8\FwRemoteDatabaseConnectorService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212816 2022-06-05] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186408 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-06-06] (Adobe Inc. -> ) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-3116998409-2222522745-4026324010-1001\...\Run: [Discord] => C:\Users\#Phiilou\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-3116998409-2222522745-4026324010-1001\...\Run: [ut] => C:\Users\#Phiilou\AppData\Roaming\uTorrent\uTorrent.exe [1946664 2022-02-10] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3116998409-2222522745-4026324010-1001\...\Policies\Explorer: [] HKLM\...\Windows x64\Print Processors\Canon MP280 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDAA.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP280 series: C:\Windows\system32\CNMLMAA.DLL [385024 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\MPE3 Port: C:\Windows\system32\mpelocalmon.dll [26112 2018-05-14] (Copyright (c) Code Industry Ltd) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.126\Installer\chrmstp.exe [2022-09-13] (Google LLC -> Google LLC) Startup: C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2020-06-18] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) Startup: C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PlutoTV.lnk [2021-04-29] ShortcutTarget: PlutoTV.lnk -> C:\Users\#Phiilou\AppData\Roaming\Pluto TV\PlutoTV.exe (Pluto, Inc.) [Fichier non signé] Startup: C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2018-10-13] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {01DD8A46-8ABE-4739-8438-9B6BCD59DA6B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-12] (Microsoft Corporation -> Microsoft Corporation) Task: {055614F3-ED92-4A5F-BBA2-67558B3ADAFF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8516576 2022-09-13] (Microsoft Corporation -> Microsoft Corporation) Task: {07FD3A2B-31A2-44B6-80EA-45BC41E0D2A5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_114_pepper.exe [1456128 2019-01-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {2A236172-7265-4780-81F5-E34E59D21ADC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2BE58A6A-0533-4C02-8545-877034966F22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {332A0825-542C-4BF2-A7CA-8033D8110AD1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-11-02] (Piriform Software Ltd -> Piriform Ltd) Task: {33336B39-AE8C-4ABB-8D4F-3EF5B9509DAC} - System32\Tasks\Opera scheduled assistant Autoupdate 1576949953 => C:\Users\#Phiilou\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\#Phiilou\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {353DEE08-1702-4052-AA18-5B2B736134A3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-13] (Google Inc -> Google Inc.) Task: {3600A73F-07DF-4F54-87D9-219E4A62E65B} - \MicrosoftUpdateServices\MicrosoftUpdateServicesServices_пБчЫвАcеЬE -> Pas de fichier <==== ATTENTION Task: {3DED9F62-185F-45ED-A98A-29B7E9CBCD22} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {409D1739-1557-4DEF-97A8-8ED31B3D4F0C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-23] (Dropbox, Inc -> Dropbox, Inc.) Task: {44EA0ED6-357B-44D1-9AE4-94866113B96C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23706576 2022-09-12] (Microsoft Corporation -> Microsoft Corporation) Task: {44FA9B5F-CFB0-494C-8CF8-D62D1B3A1F2E} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {4D8C15BD-5745-45D4-82DE-B9E5BBDB3F34} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {59946B77-53D5-4C75-8593-795C6041E3FC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {68C14480-A5DD-4638-8962-F37E74E6DF84} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {6CC1CE3F-6E60-4DEC-94EA-00D68E1D0783} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {70E5DD8A-9F80-4A53-87C9-207F4D5CED6F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {7F6929C8-7108-4728-A08B-6683DEB94E9C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-13] (Microsoft Corporation -> Microsoft Corporation) Task: {8C1CA5F4-C5AE-4349-B226-002F9334F329} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8516576 2022-09-13] (Microsoft Corporation -> Microsoft Corporation) Task: {8CDF7FF6-AB15-4133-9B42-B68873583049} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {9E304FE8-1F7F-46CA-870E-0A5D16C3789C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A23FAB5C-C7A8-472D-A5FB-63A39B9EAD57} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64408 2022-09-13] (Microsoft Corporation -> Microsoft Corporation) Task: {AC4F2C45-08F3-4CBB-A229-24C2A3F80AB3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {AF3F7CD5-106C-4C4A-BDD1-7F55A2DCA16E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {B0FB8125-66BF-4E7C-A070-CA9FE7443FD8} - System32\Tasks\Seagate_Install_Launch => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe (Pas de fichier) Task: {B333592A-4C5B-4DA4-9431-439D6F02872D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) Task: {B4DA2E10-E394-4494-A490-C0DB132C9FA2} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\26.0.1.231\WatchDog.exe [1053264 2022-07-25] (Bitdefender SRL -> Bitdefender) Task: {BEB37EAD-4D6C-425A-8489-3C438AA0C61C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-11-02] (Piriform Software Ltd -> Piriform Software Ltd) Task: {BEC0E108-265E-4887-9204-4EA93688BFD2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C77912FE-AF3A-4135-8F0B-15C5E9C44EBA} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4925264 2022-06-05] (Avast Software s.r.o. -> AVAST Software) Task: {C95D9CDF-772D-4668-AA46-097C3429D54F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CCBAF2C0-24EB-487A-BB25-549067D53E5E} - System32\Tasks\Opera scheduled Autoupdate 1541013498 => c:\users\#phiilou\appdata\local\programs\opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software) Task: {CDF0487A-588F-4F63-9FEF-7537F2B88F4B} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [274920 2022-09-09] (Bluestack Systems, Inc -> BlueStack Systems, Inc.) Task: {DFFB2635-DB9F-433A-B906-4B32ED281C03} - \Agent Activation Runtime\Agent Activation RuntimeServices_сY -> Pas de fichier <==== ATTENTION Task: {F32C0529-C349-4942-AEDA-AD60DA9F1181} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-23] (Dropbox, Inc -> Dropbox, Inc.) Task: {F4EE26E5-832A-4525-8F08-C03C34AD3F42} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2019-01-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {F4EE2B5C-8130-4611-8799-7864BD135BB4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-29] (Avast Software s.r.o. -> Avast Software) Task: {F8AAB1BC-C674-4EBA-B7B5-4F471347666A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-13] (Google Inc -> Google Inc.) Task: {FD4BFA8B-52F6-442A-8FDE-04A33A6E90E4} - \AntiMalwareSericeExecutable\AntiMalwareSericeExecutableServices_9ЖъфккШхЫbkуэсч -> Pas de fichier <==== ATTENTION Task: {FE76C719-81BE-460C-93D2-3EFCD1FE1EF1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142232 2022-09-13] (Microsoft Corporation -> Microsoft Corporation) Task: {FF8B7794-6A42-476A-BEB1-A9B0247A30DF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-07-22] (Nvidia Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3235fcdb-805b-4a9a-bcf2-9666c8f85af2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{68921a12-b5d8-4d34-983a-31e4e9713c0c}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{6b8aa06e-3871-4355-963b-0edf967f6698}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{8d69a473-414c-44b2-b009-ab6adc6889c2}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{9e5f0527-76c2-4650-a463-e5da7d4f631d}: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{c3003897-9af0-48d4-b24e-9e2ddde67417}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{c3003897-9af0-48d4-b24e-9e2ddde67417}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e4dbdeb4-a2be-4fe8-b93c-f93ab1d2166d}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{f7efa658-8d18-4627-8deb-e56fc08c6548}: [DhcpNameServer] 192.168.1.1 192.168.1.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\#Phiilou\AppData\Local\Microsoft\Edge\User Data\Default [2022-06-08] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKU\S-1-5-21-3116998409-2222522745-4026324010-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: 071pfu55.default FF ProfilePath: C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\k6uaahlz.default-release [2021-11-06] FF Extension: (Avast Online Security) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\k6uaahlz.default-release\Extensions\wrc@avast.com.xpi [2018-10-13] FF ProfilePath: C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default [2022-09-14] FF Extension: (IDM Integration Module) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2022-08-25] FF Extension: (Avast Online Security & Privacy) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default\Extensions\wrc@avast.com.xpi [2022-08-25] FF Extension: (Malwarebytes Browser Guard) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-09-14] FF Extension: (ImTranslator: Traducteur, Dictionnaire, Voix) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2022-08-25] FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\#Phiilou\AppData\Roaming\Mozilla\Firefox\Profiles\071pfu55.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-08-29] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-08-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-08-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default [2022-09-14] CHR DownloadDir: F:\Users\#Phiilou\Desktop\RoRo_ CHR Notifications: Default -> hxxps://www.locanto.ci CHR DefaultSearchURL: Default -> hxxps://www.gstatic.com/youtube/img/branding/favicon/favicon_144x144.png CHR Session Restore: Default -> est activé. CHR Extension: (YouTube) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\agimnkijcaahngcdmfeangaknmldooml [2021-04-21] CHR Extension: (Extension Surfshark VPN) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ailoabdmgclmfmhdagmlohpjlbpffblp [2022-07-29] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-31] CHR Extension: (Google Docs hors connexion) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-25] CHR Extension: (Shimeji Browser Extension) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gohjpllcolmccldfdggmamodembldgpc [2021-06-16] CHR Extension: (Avast Online Security & Privacy) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-07-30] CHR Extension: (GetEmail.io gets the email of anyone on Earth) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbnjdgffjfjbkdoghlpkedjfoddlgbge [2022-09-14] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-09-14] CHR Extension: (Unpaywall) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\iplffkdpngmdjhlpjmppncnlhomiipha [2021-11-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (HubSpot Sales) - C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiiaigjnkhngdbnoookogelabohpglmd [2022-09-14] CHR Profile: C:\Users\#Phiilou\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-15] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\#Phiilou\AppData\Roaming\Opera Software\Opera Stable [2022-02-25] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\#Phiilou\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-02-25] OPR Extension: (Amazon Assistant Promotion) - C:\Users\#Phiilou\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-23] OPR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\#Phiilou\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2022-01-23] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2019-01-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8432776 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [576336 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [576336 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-08-30] (Avast Software s.r.o. -> AVAST Software) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2454632 2022-02-10] (Bitdefender SRL -> Bitdefender) R2 CG6Service; F:\Users\#Phiilou\Downloads\CrackNew Files(9-29-2O18) [C-F-V] Full\CyberGhost VPN Premium 6.5.2.42 + Crack\Setup\CyberGhost.Service.exe [239184 2018-05-14] (CyberGhost SRL -> CyberGhost S.A.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12126112 2022-09-12] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-23] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-23] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46832 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.) R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) R2 ElevationService; C:\Program Files (x86)\Wondershare\Dr.Fone\Addins\Recovery\ElevationService.exe [913408 2020-08-11] () [Fichier non signé] R2 FwRemoteDatabaseConnectorService; C:\Program Files (x86)\SIL\FieldWorks 8\FwRemoteDatabaseConnectorService.exe [10240 2017-04-25] (SIL) [Fichier non signé] R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-08-06] (HP Inc. -> HP Inc.) R2 hshld_11.3.0; C:\Program Files (x86)\Hotspot Shield\11.3.0\bin\cmw_srv.exe [247608 2022-08-04] (Pango LLC -> Pango Inc.) R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> ) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [789072 2022-07-25] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-25] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R2 TBW32CONFIGSERVICE; C:\Program Files (x86)\TELBAC\svctbw.exe [122880 2007-07-19] (SAGE FRANCE) [Fichier non signé] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-10-16] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_3dea89b1f7584cc8\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvltig.inf_amd64_3dea89b1f7584cc8\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [38912 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [382608 2022-06-07] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255136 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102048 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25048 2022-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [45072 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271600 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548968 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [662160 2022-06-05] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218608 2022-06-05] (Avast Software s.r.o. -> AVAST Software) S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-10-13] (AVAST Software s.r.o. -> The OpenVPN Project) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [321928 2022-06-05] (Avast Software s.r.o. -> AVAST Software) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [321792 2022-09-09] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 hsstap; C:\WINDOWS\System32\drivers\hsstap.sys [39424 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Pango) S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [116864 2018-12-04] (Huawei Technologies Co., Ltd.) [Fichier non signé] R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2022-09-13] (Martin Malik - REALiX -> REALiX(tm)) S3 hwusbfake; C:\WINDOWS\system32\DRIVERS\ewusbfake.sys [116224 2018-12-04] (Huawei Technologies Co., Ltd.) [Fichier non signé] R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2022-07-22] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 orange_zte_cdc_acm; C:\WINDOWS\system32\DRIVERS\orange_zte_cdc_acm.sys [77824 2018-12-23] (ZTE) [Fichier non signé] S3 orange_zte_cdc_ecm; C:\WINDOWS\System32\drivers\orange_zte_cdc_ecm.sys [36352 2018-12-23] (ZTE) [Fichier non signé] S3 orange_zte_cpo; C:\WINDOWS\system32\DRIVERS\orange_zte_cpo.sys [14336 2018-12-04] (ZTE) [Fichier non signé] S3 orange_zte_ecm_enum; C:\WINDOWS\System32\drivers\orange_zte_ecm_enum.sys [52224 2018-12-23] (ZTE) [Fichier non signé] S3 orange_zte_ecm_enum_filter; C:\WINDOWS\System32\drivers\orange_zte_ecm_enum_filter.sys [52224 2018-12-23] (ZTE) [Fichier non signé] S3 orange_zte_wcpo; C:\WINDOWS\system32\DRIVERS\orange_zte_wcpo.sys [10752 2018-12-23] (ZTE) [Fichier non signé] R1 pango_netfilter2; C:\WINDOWS\System32\drivers\pango_netfilter2.sys [89088 2022-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Pango Inc) S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2022-06-29] (nordvpn s.a. -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-12] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-12] (Microsoft Windows -> Microsoft Corporation) S3 MpKsla998695e; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{906D5DD2-E00B-472F-96F9-4251C1876822}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-14 15:27 - 2022-09-14 15:27 - 000000000 ____D C:\FRST 2022-09-14 15:15 - 2022-09-14 15:22 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\ZHP 2022-09-14 15:15 - 2022-09-14 15:15 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\ZHP 2022-09-14 15:02 - 2022-09-14 15:02 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Adobe 2022-09-14 15:02 - 2022-09-14 15:02 - 000000000 ____D C:\Users\#Phiilou\ansel 2022-09-14 15:00 - 2022-09-14 15:00 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\slack 2022-09-14 14:59 - 2022-09-14 14:59 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2022-09-14 14:57 - 2022-09-14 14:57 - 000196456 _____ C:\ProgramData\cl.1663167326.bdinstall.v2.bin 2022-09-14 14:57 - 2022-09-14 14:57 - 000110760 _____ C:\ProgramData\cl.kit.1663167322.bdinstall.v2.bin 2022-09-14 14:55 - 2022-09-14 14:55 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2022-09-14 14:55 - 2022-09-14 14:55 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2022-09-14 14:53 - 2022-09-14 14:53 - 000154724 _____ C:\ProgramData\agent.1663167206.bdinstall.v2.bin 2022-09-14 14:53 - 2022-09-14 14:53 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Bitdefender 2022-09-14 14:53 - 2022-09-14 14:53 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2022-09-14 14:53 - 2022-09-14 14:53 - 000000000 ____D C:\Program Files\Bitdefender Agent 2022-09-14 14:47 - 2022-09-14 14:47 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\mbam 2022-09-14 14:10 - 2022-09-14 14:51 - 000000000 ___HD C:\ProgramData\Dllhost 2022-09-14 14:10 - 2022-09-14 14:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\WindowsDefenderServices 2022-09-14 14:10 - 2022-09-14 14:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\SettingSysHost 2022-09-14 14:10 - 2022-09-14 14:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\MicrosoftUpdateServices 2022-09-14 14:10 - 2022-09-14 14:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\AntiMalwareSericeExecutable 2022-09-14 14:10 - 2022-09-14 14:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-09-14 14:10 - 2022-09-14 14:10 - 000000000 ___HD C:\ProgramData\HostData 2022-09-14 14:10 - 2022-09-14 14:10 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Yandex 2022-09-14 13:57 - 2022-04-29 10:04 - 000042704 _____ (TEFINCOM S.A.) C:\WINDOWS\Nord.Setup.dll 2022-09-13 21:47 - 2022-09-13 21:47 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Cloud Game 2022-09-13 21:25 - 2022-09-13 21:47 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\BlueStacks X 2022-09-13 21:25 - 2022-09-13 21:25 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\cache 2022-09-13 21:23 - 2022-09-14 14:21 - 000003018 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper_nxt 2022-09-13 21:23 - 2022-09-13 21:57 - 000000000 ____D C:\ProgramData\BlueStacks_nxt 2022-09-13 21:23 - 2022-09-13 21:34 - 000000000 ____D C:\ProgramData\boost_interprocess 2022-09-13 21:23 - 2022-09-13 21:23 - 000000000 ____D C:\Program Files\BlueStacks_nxt 2022-09-13 21:22 - 2022-09-13 21:22 - 000002004 _____ C:\Users\Public\Desktop\BlueStacks X.lnk 2022-09-13 21:22 - 2022-09-13 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks X 2022-09-13 21:21 - 2022-09-13 21:22 - 000000000 ____D C:\Program Files (x86)\BlueStacks X 2022-09-13 20:54 - 2022-09-13 20:54 - 000000000 ___HD C:\$WinREAgent 2022-09-13 20:53 - 2022-09-13 20:53 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2022-09-13 20:53 - 2022-07-22 04:25 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2022-09-13 20:49 - 2022-09-13 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com 2022-09-13 20:49 - 2022-09-13 20:49 - 000000000 ____D C:\Program Files\Cybelsoft 2022-09-13 20:49 - 2022-07-28 04:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2022-09-13 20:49 - 2022-07-28 04:53 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe 2022-09-13 20:49 - 2022-07-28 04:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-09-13 20:49 - 2022-07-28 04:53 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2022-09-13 20:49 - 2022-07-28 04:53 - 001471984 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2022-09-13 20:49 - 2022-07-28 04:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2022-09-13 20:49 - 2022-07-28 04:53 - 001432328 _____ C:\WINDOWS\system32\vulkan-1.dll 2022-09-13 20:49 - 2022-07-28 04:53 - 001213424 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2022-09-13 20:49 - 2022-07-28 04:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2022-09-13 20:49 - 2022-07-28 04:53 - 001145592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2022-09-13 20:49 - 2022-07-28 04:50 - 000865776 _____ C:\WINDOWS\system32\nvofapi64.dll 2022-09-13 20:49 - 2022-07-28 04:50 - 000771568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2022-09-13 20:49 - 2022-07-28 04:50 - 000687624 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2022-09-13 20:49 - 2022-07-28 04:49 - 002127872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2022-09-13 20:49 - 2022-07-28 04:49 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2022-09-13 20:49 - 2022-07-28 04:49 - 001182720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2022-09-13 20:49 - 2022-07-28 04:49 - 000714760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2022-09-13 20:49 - 2022-07-28 04:48 - 010269680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 008803848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 005362696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 003066888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 001607680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 001059320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 000845312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2022-09-13 20:49 - 2022-07-28 04:48 - 000456200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2022-09-13 20:49 - 2022-07-28 04:47 - 005735944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2022-09-13 20:49 - 2022-07-28 04:47 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2022-09-13 20:49 - 2022-07-22 04:25 - 000093241 _____ C:\WINDOWS\system32\nvinfo.pb 2022-09-13 20:48 - 2022-09-13 20:48 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Cybelsoft 2022-09-13 20:42 - 2022-09-13 21:28 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-09-13 20:38 - 2022-09-13 20:40 - 000000000 ____D C:\ProgramData\ProductData 2022-09-13 20:38 - 2022-09-13 20:39 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\instinfo 2022-09-13 20:37 - 2022-09-13 20:38 - 000000000 ____D C:\Users\#Phiilou\AppData\LocalLow\IObit 2022-09-13 20:37 - 2022-09-13 20:37 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS 2022-09-13 20:37 - 2022-09-13 20:37 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952} 2022-09-13 20:36 - 2022-09-13 20:40 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\IObit 2022-09-13 20:36 - 2022-09-13 20:38 - 000000000 ____D C:\ProgramData\IObit 2022-08-31 23:02 - 2022-08-31 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-08-29 15:25 - 2022-08-29 15:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-08-29 15:25 - 2022-08-29 15:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-08-29 15:25 - 2022-08-29 15:25 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-08-29 15:25 - 2022-08-29 15:25 - 000046832 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2022-08-26 18:49 - 2022-09-14 15:01 - 000000000 ____D C:\Program Files\TeamViewer 2022-08-26 18:49 - 2022-08-26 18:49 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2022-08-26 18:49 - 2022-08-26 18:49 - 000000877 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2022-08-26 00:30 - 2022-09-13 21:53 - 000001799 _____ C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\ICQ.lnk 2022-08-26 00:30 - 2022-08-26 00:30 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ 2022-08-26 00:30 - 2022-08-26 00:30 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\ICQ 2022-08-26 00:29 - 2022-09-13 21:54 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\ICQ 2022-08-25 17:50 - 2022-08-25 17:50 - 000001242 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk 2022-08-25 17:50 - 2022-08-25 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield 2022-08-25 17:50 - 2022-08-25 17:50 - 000000000 ____D C:\Program Files (x86)\Hotspot Shield 2022-08-25 17:50 - 2022-08-04 11:03 - 000089088 _____ (Pango Inc) C:\WINDOWS\system32\Drivers\pango_netfilter2.sys 2022-08-25 16:58 - 2022-08-25 16:58 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-08-25 16:58 - 2022-08-25 16:58 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-08-25 16:58 - 2022-08-25 16:58 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-08-25 16:58 - 2022-08-25 16:58 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-08-25 16:58 - 2022-08-25 16:58 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-08-25 16:58 - 2022-08-25 16:58 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-08-25 16:58 - 2022-08-25 16:58 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-08-25 16:57 - 2022-08-25 16:57 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-08-25 16:57 - 2022-08-25 16:57 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-08-25 16:57 - 2022-08-25 16:57 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2022-08-25 16:57 - 2022-08-25 16:57 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-08-25 16:57 - 2022-08-25 16:57 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-08-25 16:57 - 2022-08-25 16:57 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-08-25 16:57 - 2022-08-25 16:57 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-08-25 16:57 - 2022-08-25 16:57 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-08-25 16:56 - 2022-08-25 16:56 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-08-25 16:56 - 2022-08-25 16:56 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-08-25 16:56 - 2022-08-25 16:56 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-25 16:56 - 2022-08-25 16:56 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-07-04 15:54 - 2022-09-14 15:00 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Telegram Desktop 2022-07-04 15:54 - 2022-09-14 15:00 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop 2022-07-04 15:29 - 2022-07-04 15:29 - 000025048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-06-29 17:50 - 2022-06-29 17:50 - 000049744 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapnordvpn.sys ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-14 15:16 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-09-14 15:14 - 2018-10-13 11:17 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-14 15:09 - 2021-02-19 15:00 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-09-14 15:09 - 2019-12-07 14:50 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat 2022-09-14 15:09 - 2019-12-07 14:50 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat 2022-09-14 15:09 - 2019-12-07 09:13 - 000000000 ____D C:\WINDOWS\INF 2022-09-14 15:02 - 2021-02-19 14:52 - 000000000 ____D C:\Users\#Phiilou 2022-09-14 15:02 - 2018-10-13 11:22 - 000000000 ____D C:\ProgramData\NVIDIA 2022-09-14 15:02 - 2018-10-13 11:19 - 000000000 __SHD C:\Users\#Phiilou\IntelGraphicsProfiles 2022-09-14 15:01 - 2021-02-19 14:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-09-14 15:01 - 2021-02-19 14:50 - 000008192 ___SH C:\DumpStack.log.tmp 2022-09-14 15:01 - 2021-02-19 14:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-09-14 15:00 - 2021-05-19 13:14 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Slack 2022-09-14 15:00 - 2021-05-19 13:14 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc 2022-09-14 15:00 - 2018-10-30 23:52 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\SquirrelTemp 2022-09-14 15:00 - 2018-10-13 13:48 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-09-14 15:00 - 2018-10-13 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-09-14 15:00 - 2018-10-13 13:48 - 000000000 ____D C:\Program Files\WinRAR 2022-09-14 14:59 - 2021-02-19 14:59 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-09-14 14:59 - 2018-10-13 12:48 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2022-09-14 14:57 - 2019-12-07 09:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-09-14 14:51 - 2019-06-28 11:27 - 000000000 ____D C:\Program Files (x86)\R-Wipe & Clean 2022-09-14 14:47 - 2022-02-16 21:43 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-09-14 14:47 - 2018-10-13 11:21 - 000000000 ____D C:\Users\#Phiilou\AppData\LocalLow\Mozilla 2022-09-14 14:41 - 2021-02-19 14:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-09-14 14:24 - 2021-10-08 17:20 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\vlc 2022-09-14 14:21 - 2021-02-19 14:59 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-09-14 14:21 - 2021-02-19 14:59 - 000003578 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-09-14 14:21 - 2021-02-19 14:59 - 000003458 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003454 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-09-14 14:21 - 2021-02-19 14:59 - 000003354 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-09-14 14:21 - 2021-02-19 14:59 - 000003212 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000002974 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-09-14 14:21 - 2021-02-19 14:59 - 000002672 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-09-14 14:15 - 2018-10-13 11:42 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\AVAST Software 2022-09-14 14:13 - 2018-10-13 13:47 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\CrashDumps 2022-09-14 14:12 - 2018-10-13 11:38 - 000000000 ____D C:\ProgramData\AVAST Software 2022-09-14 14:11 - 2019-12-07 09:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2022-09-14 13:56 - 2021-02-19 14:59 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-09-13 21:28 - 2021-02-19 14:50 - 000623784 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-09-13 21:28 - 2018-10-13 11:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-09-13 21:23 - 2021-08-09 11:05 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\BlueStacksSetup 2022-09-13 21:23 - 2018-11-30 20:17 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Bluestacks 2022-09-13 21:21 - 2019-05-05 00:07 - 000000000 ____D C:\Users\Public\BlueStacks 2022-09-13 21:15 - 2018-10-13 11:32 - 000000000 ____D C:\ProgramData\DriversCloud.com 2022-09-13 21:14 - 2021-11-27 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-09-13 21:14 - 2018-10-13 11:21 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-09-13 21:10 - 2019-02-18 18:00 - 000000000 ____D C:\Program Files\Microsoft Office 2022-09-13 21:10 - 2018-10-13 11:46 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\NVIDIA 2022-09-13 21:10 - 2018-10-13 11:22 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-09-13 20:53 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-09-13 20:53 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-09-13 20:53 - 2018-10-13 11:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2022-09-13 20:53 - 2018-10-13 11:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2022-09-13 20:50 - 2018-10-13 11:46 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\NVIDIA Corporation 2022-09-13 20:33 - 2021-08-09 11:52 - 000000000 ____D C:\Users\#Phiilou\Downloads\MEmu Download 2022-09-12 23:08 - 2018-10-13 11:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-09-12 23:07 - 2020-09-14 11:55 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-31 23:02 - 2018-10-14 00:00 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-08-31 22:57 - 2019-12-07 09:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-26 19:35 - 2018-11-23 18:38 - 000000000 ____D C:\Users\#Phiilou\AppData\Roaming\TeamViewer 2022-08-26 18:49 - 2018-11-23 18:40 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\TeamViewer 2022-08-26 18:48 - 2018-11-23 18:38 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-08-25 23:01 - 2018-10-14 00:00 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2022-08-25 23:01 - 2018-10-14 00:00 - 000001218 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2022-08-25 23:00 - 2019-12-07 14:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-25 23:00 - 2019-12-07 14:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-08-25 23:00 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-08-25 23:00 - 2019-12-07 09:03 - 000000000 ____D C:\WINDOWS\servicing 2022-08-25 17:50 - 2018-10-13 11:41 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-25 17:49 - 2019-08-29 13:47 - 000000000 ____D C:\ProgramData\Hotspot Shield 2022-08-25 16:56 - 2021-02-19 14:52 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-08-25 16:35 - 2018-10-13 12:02 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-08-25 16:03 - 2021-02-19 14:59 - 000004284 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2022-08-25 16:03 - 2021-02-19 14:59 - 000004052 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2022-08-25 15:44 - 2019-12-07 09:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2022-08-25 15:44 - 2018-10-13 12:02 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-08-23 16:12 - 2018-10-13 11:11 - 000000000 ____D C:\Users\#Phiilou\AppData\Local\Packages ==================== Fichiers à la racine de certains dossiers ======== 2021-04-02 11:47 - 2021-04-02 11:47 - 000000068 _____ () C:\Users\#Phiilou\AppData\Roaming\changzhi_leidian.data 2019-05-17 10:51 - 2019-05-17 10:51 - 000000410 _____ () C:\Users\#Phiilou\AppData\Local\oobelibMkey.log 2020-04-01 19:34 - 2020-04-01 19:34 - 000000822 _____ () C:\Users\#Phiilou\AppData\Local\recently-used.xbel 2019-03-25 20:43 - 2020-03-07 13:47 - 000007602 _____ () C:\Users\#Phiilou\AppData\Local\resmon.resmoncfg ==================== SigCheckExt ========================= 2021-06-08 12:33 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\WINDOWS\system32\divx.dll 2021-06-08 12:33 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\WINDOWS\system32\Lagarith.dll 2021-06-08 12:33 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\WINDOWS\system32\mcdvd_32.dll 2019-06-28 11:44 - 2018-05-14 22:34 - 000026112 _____ (Copyright (c) Code Industry Ltd ) C:\WINDOWS\system32\mpelocalmon.dll 2019-06-28 11:44 - 2018-05-14 22:34 - 000016896 _____ (Copyright (c) Code Industry Ltd ) C:\WINDOWS\system32\mpelocalui.dll 2021-06-08 12:33 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg4c32.dll 2021-06-08 12:33 - 2003-05-21 22:50 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3a.dll 2019-06-05 00:20 - 2019-06-05 00:20 - 000013312 _____ (ZTE) C:\WINDOWS\system32\orange_zte_CPOCoinstaller.dll 2021-06-08 12:33 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\WINDOWS\system32\vp6vfw.dll 2021-06-08 12:33 - 2004-07-03 19:59 - 000524288 _____ C:\WINDOWS\system32\xvidcore.dll 2021-06-08 12:33 - 2004-07-03 20:08 - 000139264 _____ C:\WINDOWS\system32\xvidvfw.dll 2019-09-01 19:12 - 2007-11-09 11:50 - 000294912 _____ (Sage) C:\WINDOWS\SysWOW64\ASD100.dll 2019-09-01 19:11 - 1998-01-12 17:12 - 000031232 _____ (F.H.L.P.) C:\WINDOWS\SysWOW64\Capi2032.dll 2019-09-01 17:12 - 2007-11-09 10:58 - 000667648 _____ (Sage) C:\WINDOWS\SysWOW64\cbaseintf.dll 2019-09-01 17:12 - 2007-11-09 10:36 - 000274432 _____ (Sage) C:\WINDOWS\SysWOW64\cbaselocal.dll 2019-09-01 19:12 - 2007-11-09 11:50 - 000835584 _____ (Sage) C:\WINDOWS\SysWOW64\cbodbc32.dll 2019-09-01 17:12 - 2007-02-13 10:17 - 001966080 _____ (Amyuni Technologies hxxp://www.amyuni.com) C:\WINDOWS\SysWOW64\cdintf251.dll 2019-09-01 19:12 - 2007-11-07 09:18 - 000077824 _____ (Sage) C:\WINDOWS\SysWOW64\ChpsLib.dll 2019-09-01 19:12 - 2007-11-07 09:18 - 001040384 _____ (Sage) C:\WINDOWS\SysWOW64\CIALLib.dll 2019-09-01 19:12 - 2007-11-07 09:17 - 000557056 _____ (Sage) C:\WINDOWS\SysWOW64\CPTALib.dll 2019-09-01 17:12 - 2006-03-28 20:43 - 000274432 _____ (Compagnie Internationale d'Edition de Logiciel) C:\WINDOWS\SysWOW64\crun500.dll 2019-09-01 19:11 - 1996-10-28 20:02 - 000018768 _____ (Eicon Technology Corporation) C:\WINDOWS\SysWOW64\ecncb.dll 2019-09-01 19:11 - 1996-10-04 11:41 - 000117248 _____ (Eicon Technology Corp.) C:\WINDOWS\SysWOW64\Ex25.dll 2019-09-01 19:12 - 2007-11-07 09:18 - 000155648 _____ (Sage) C:\WINDOWS\SysWOW64\FSalLib.dll 2019-09-01 19:12 - 2007-11-07 09:18 - 000159744 _____ (Sage) C:\WINDOWS\SysWOW64\ImmoLib.dll 2019-09-01 19:11 - 2003-03-19 07:20 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll 2019-09-01 19:11 - 2003-03-19 06:44 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2019-09-01 17:12 - 2007-10-25 13:15 - 000151552 _____ (Sage) C:\WINDOWS\SysWOW64\mlcorert.dll 2019-09-01 17:12 - 2007-02-13 09:12 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2019-09-01 17:12 - 2007-02-13 09:12 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2019-09-01 19:12 - 2005-04-25 13:26 - 003003904 _____ (Sage) C:\WINDOWS\SysWOW64\Pms1lib.dll 2019-09-01 17:12 - 2007-11-05 10:03 - 000565248 _____ C:\WINDOWS\SysWOW64\SAGEPERS.DLL 2019-09-01 17:20 - 2006-12-05 12:28 - 000921600 _____ (FarPoint Technologies, Inc.) C:\WINDOWS\SysWOW64\spr32d60.dll 2019-09-01 19:12 - 2007-11-07 09:18 - 000126976 _____ (Sage) C:\WINDOWS\SysWOW64\TresLib.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {d6d4e22c-8b0c-11eb-9e44-806e6f6e6963} {4abbacd2-cedf-11e8-a36b-fe6cc9e4f04d} {4abbacd4-cedf-11e8-a36b-fe6cc9e4f04d} {4abbacd5-cedf-11e8-a36b-fe6cc9e4f04d} {4abbacd3-cedf-11e8-a36b-fe6cc9e4f04d} {4abbacd0-cedf-11e8-a36b-fe6cc9e4f04d} {4abbacd1-cedf-11e8-a36b-fe6cc9e4f04d} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {4ec5533d-72b9-11eb-bf1d-8a207f3d2794} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {4abbacd0-cedf-11e8-a36b-fe6cc9e4f04d} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {4abbacd1-cedf-11e8-a36b-fe6cc9e4f04d} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {4abbacd2-cedf-11e8-a36b-fe6cc9e4f04d} description EFI Network Application logicielle (101fffff) -------------------------------- identificateur {4abbacd3-cedf-11e8-a36b-fe6cc9e4f04d} description Realtek PXE B04 D00 Application logicielle (101fffff) -------------------------------- identificateur {4abbacd4-cedf-11e8-a36b-fe6cc9e4f04d} description WDC WD10SPZX-24Z10T0 Application logicielle (101fffff) -------------------------------- identificateur {4abbacd5-cedf-11e8-a36b-fe6cc9e4f04d} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\bootmgfw.efi description SAMSUNG MZVLW128HEGR-000L2 Application logicielle (101fffff) -------------------------------- identificateur {4abbacd7-cedf-11e8-a36b-fe6cc9e4f04d} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\bootmgfw.efi description EFI Network 0 for IPv4 (8C-16-45-C9-47-87) Application logicielle (101fffff) -------------------------------- identificateur {4abbacd8-cedf-11e8-a36b-fe6cc9e4f04d} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\bootmgfw.efi description EFI Network 0 for IPv6 (8C-16-45-C9-47-87) Application logicielle (101fffff) -------------------------------- identificateur {4abbacd9-cedf-11e8-a36b-fe6cc9e4f04d} description EFI Network 0 for IPv6 (8C-16-45-C9-47-87) Application logicielle (101fffff) -------------------------------- identificateur {955c1c30-f7a7-11e8-9ce2-8c1645c94787} description EFI Network 0 for IPv6 (8C-16-45-C9-47-87) Application logicielle (101fffff) -------------------------------- identificateur {d6d4e22c-8b0c-11eb-9e44-806e6f6e6963} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {4ec5533f-72b9-11eb-bf1d-8a207f3d2794} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {4ec5533d-72b9-11eb-bf1d-8a207f3d2794} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {4ec5533f-72b9-11eb-bf1d-8a207f3d2794} device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{4ec55340-72b9-11eb-bf1d-8a207f3d2794} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{4ec55340-72b9-11eb-bf1d-8a207f3d2794} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {4ec5533d-72b9-11eb-bf1d-8a207f3d2794} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {4ec5533f-72b9-11eb-bf1d-8a207f3d2794} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume4 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {4ec55340-72b9-11eb-bf1d-8a207f3d2794} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================