Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022 Exécuté par GB (administrateur) sur DESKTOP-AMODNS9 (Dell Inc. Dell System XPS L502X) (20-10-2022 11:09:39) Exécuté depuis D:\bureau Profils chargés: GB Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France) Navigateur par défaut: Brave Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCopyAccelerator.exe (cmd.exe ->) (AntGROUP) [Fichier non signé] C:\Program Files (x86)\Ant Download Manager\antCH\antCH.exe (D:\bureau\ZHPSuite.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <32> (explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\65.0.4.0\crashpad_handler.exe <2> (explorer.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] D:\bureau\ZHPSuite.exe (explorer.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) ("STMicroelectronics Srl" -> ) C:\Windows\System32\drivers\DellFFDPWmiService.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe (services.exe ->) (Privado Networks LLC -> Privado Networks AG) C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Wireguard.Service.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [ctfmon] => C:\Windows\System32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2020-09-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618096 2020-09-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [adm_tray.exe] => C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe [470240 2011-02-24] (Acronis, Inc -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [SystemExplorerAutoStart] => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY (Pas de fichier) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [AntDM] => C:\Program Files (x86)\Ant Download Manager\AntDM.exe [4805120 2021-02-01] (AntGROUP) [Fichier non signé] HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [Clavier+] => C:\Users\GB\AppData\Local\Clavier+\Clavier.exe [113664 2013-11-09] (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé] HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [PrivadoVPN] => C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.exe [6116488 2022-09-23] (Privado Networks LLC -> Privado Networks AG) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\Run: [MicrosoftEdgeAutoLaunch_FA9A8B9B95AF6AC163FDC89F3FE38723] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\...\RunOnce: [Application Restart #0] => C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe [2968368 2022-10-12] (Brave Software, Inc. -> Brave Software, Inc.) HKU\S-1-5-21-3823513517-4018291188-4233142150-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe [52794648 2022-10-20] (Google LLC -> Google, Inc.) HKLM\...\Windows x64\Print Processors\hpcpp250: C:\Windows\System32\spool\prtprocs\x64\hpcpp250.dll [850024 2020-08-20] (HP Inc. -> HP Inc.) HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\Windows\system32\HPMPW082.DLL [127592 2020-08-20] (HP Inc. -> HP Inc.) HKLM\...\Print\Monitors\HPMLM225: C:\Windows\system32\hpmlm225.dll [315496 2020-08-20] (HP Inc. -> HP Inc.) HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2152704 2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-14] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\106.1.44.112\Installer\chrmstp.exe [2022-10-14] (Brave Software, Inc. -> Brave Software, Inc.) AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinitx.dll [209128 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinit.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvdmi.inf_amd64_b79991c48f5211ac\nvinit.dll [182592 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) Startup: C:\Users\GB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled [2022-03-07] GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {04737CBB-C5A8-4E1A-8423-401A0E42CB15} - System32\Tasks\CCleanerSkipUAC - GB => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {088BF272-CB38-4AA9-9833-4DF067DA0A78} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {21FBB3F5-D4F5-4CFC-9102-8E531FF2F553} - System32\Tasks\GoogleUpdateTaskMachineUA{42390537-EB41-47C9-BFA5-42117CC5A76C} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-05] (Google LLC -> Google LLC) Task: {282D8D0A-182D-4C04-9AA5-5CB74878A184} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {38657463-A11E-43F8-B27C-6DE509226644} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {594843CD-AD29-493F-93AE-5EDD5E4D210A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "eb6d86eb-3785-45a0-8e09-21e984a4ac46" --version "6.04.10044" --silent Task: {618E1278-504E-477F-960D-CBFBCFF9652C} - \KMSpico Automatic Update Scheduler -> Pas de fichier <==== ATTENTION Task: {80EC9030-AB1A-4647-9B6B-10A8F4DA95AF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{10A18972-6A0F-48C9-B755-0E71BEF6E732} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {8CAC3251-8AA3-4F22-A757-413AA90A28E1} - System32\Tasks\Optimize Thumbnail Cache => C:\Program Files (x86)\Common Files\installshield\engine\8\intel 32\isupdate.exe [61104 2020-09-26] (Flexera Software LLC -> InstallShield®) [Fichier non signé] <==== ATTENTION Task: {9AC1C950-4B95-419A-A912-F38301CB2FFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AC69561D-A541-42CB-B342-60E67B201888} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform) Task: {ACEA572D-549C-4821-BD9A-3453A00D43EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B5C49F38-60BE-42DC-90D6-7C35B8412724} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {BE4062F7-3AEB-494B-8496-3746B901E164} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{451A49EF-C16A-4EE8-BF50-E62EA04BEE11} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {C93BD63A-E734-47BA-8247-A18DE38B9283} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E7E435CE-0F83-4F90-BE3B-A9D6CD729D69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MpCmdRun.exe [1348368 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F96A114B-6093-484D-967F-DECFD7220F75} - System32\Tasks\GoogleUpdateTaskMachineCore{3691DE51-FCE1-4CCE-A079-F48A93433A3D} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-05] (Google LLC -> Google LLC) Task: {FACE6B0E-5462-4882-BC21-66F0CCC1BA79} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116112 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings) AutoConfigURL: [HKLM] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [HKLM-x32] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [{04EB05DB-775B-455D-BFF8-ADBD7D21C2CC}] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [{5955054E-85D0-4B59-AC04-A4082D2C2D04}] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [{5C1E644A-1EE6-41F5-921D-822D6187A160}] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [{D4F01BD5-72EF-47A1-84DD-67DE02906643}] => hxxp://127.0.0.1:86/ <==== ATTENTION AutoConfigURL: [{FDC04062-72DA-4C6B-8863-2E1AE7226D4C}] => hxxp://127.0.0.1:86/ <==== ATTENTION Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\..\Interfaces\{0a66040f-e108-493a-8f5b-26de8a6c31fe}: [DhcpNameServer] 198.18.0.1 198.18.0.2 Tcpip\..\Interfaces\{1a6b1ee8-8fa1-4af1-9942-52db6ea5735f}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{634039EC-05BF-4716-A567-C4B5C106BFE7}: [NameServer] 198.18.0.1 198.18.0.2 Tcpip\..\Interfaces\{7486506b-1fed-46ef-9e27-c66c4c165a8a}: [NameServer] 1.1.1.1,8.8.8.8 Tcpip\..\Interfaces\{7486506b-1fed-46ef-9e27-c66c4c165a8a}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{9378331d-a0df-4f35-a546-b2f4cfc2e246}: [DhcpNameServer] 198.18.0.1 198.18.0.2 Tcpip\..\Interfaces\{a97c2990-2925-4631-9a9c-90ea30c69290}: [DhcpNameServer] 198.18.0.1 198.18.0.2 Tcpip\..\Interfaces\{bca714e5-e1e9-467a-8b46-ac72546688e0}: [NameServer] 198.18.0.1,198.18.0.2 ManualProxies: 0hxxp://127.0.0.1:86/ <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\GB\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-20] Edge Notifications: Default -> hxxps://slickperfect.com; hxxps://webslick24.com FireFox: ======== FF DefaultProfile: 3kn31g63.default FF ProfilePath: C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default [2022-10-18] FF Extension: (Dictionnaire français) - C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org.xpi [2021-05-02] FF Extension: (Français Language Pack) - C:\Users\GB\AppData\Roaming\Mozilla\Firefox\Profiles\3kn31g63.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2021-05-02] FF Plugin: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-02-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-02-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-3823513517-4018291188-4233142150-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\autoconfig.js [2018-11-08] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\cck2.cfg [2018-11-08] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default [2022-10-19] CHR Extension: (Google Docs hors connexion) - C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\GB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] Opera: ======= OPR Profile: C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable [2022-10-18] OPR DefaultSuggestURL: Opera Stable -> hxxps://suggest.yandex.ru/suggest-ya.cgi?v=4&part={searchTerms}&l10n={language} OPR Extension: (Rich Hints Agent) - C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-10] OPR Extension: (Amazon Assistant Promotion) - C:\Users\GB\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-26] Brave: ======= BRA Profile: C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-10-20] BRA Extension: (Google Traduction) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-13] BRA Extension: (Onglets verticaux pour Google Chrome ™) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\acnamgmgmbamffefgplhkplaanebgkac [2022-08-16] BRA Extension: (Privacy Pass) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajhmfdgkijocedmfjonnpjfojldioehi [2022-06-17] BRA Extension: (CookiesBlock - cookie pop-ups) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajkknbgennjgacpfbhdobipfhhikbldg [2022-06-25] BRA Extension: (Video Downloader professional) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2021-01-07] BRA Extension: (Girl with a Lantern) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bhmcheeokigdlgjepckedmelfolakjmh [2022-04-14] BRA Extension: (Sidewise Tree Style Tabs) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\biiammgklaefagjclmnlialkmaemifgo [2021-03-14] BRA Extension: (Download with Ant Download Manager) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dalgiebmfcjackkbjfbfmlnflbdfbekj [2021-03-17] BRA Extension: (AutoplayStopper) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ejddcgojdblidajhngkogefpkknnebdh [2022-09-23] BRA Extension: (Convertio) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2022-05-09] BRA Extension: (Helium Backup) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gpglbgbpeobllokpmeagpoagjbfknanl [2020-12-05] BRA Extension: (LastPass: Free Password Manager) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2022-09-23] BRA Extension: (Bloqueur vidéo) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kkgpdmegkhdheglikjleejknplhdpbck [2022-01-16] BRA Extension: (The Flash Video Downloader) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmieilamoollaknppoffbmdgdcolcafa [2021-10-02] BRA Extension: (My IP address) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\monhkdcehmbdgkhgpccaccbbcgcfpjkd [2022-08-07] BRA Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2022-07-19] BRA Extension: (Brave Local Data Files Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-10-20] BRA Extension: (Brave NTP background images) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-20] BRA Extension: (Wallet Data Files Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-09-23] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-10-20] BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-10-20] BRA Extension: (Brave SpeedReader Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-13] BRA Extension: (Brave NTP sponsored images) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2022-10-20] BRA Extension: (Crypto Wallets) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2020-12-05] BRA Extension: (PDF Viewer) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2020-12-05] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\GB\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-10-19] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [881760 2011-02-12] (Acronis, Inc -> Acronis) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2022-02-25] (Apple Inc. -> Apple Inc.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) S3 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [284720 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.) S3 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3563568 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.) S3 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [490032 2020-08-08] (Dell Technologies Inc. -> Dell Technologies Inc.) S3 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [37056 2020-07-29] (Dell Inc -> ) R2 DellFFDPWmiService; C:\WINDOWS\System32\drivers\DellFFDPWmiService.exe [32528 2020-02-17] ("STMicroelectronics Srl" -> ) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4959176 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2020-10-01] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 Everything; C:\Program Files\Everything\Everything.exe [2261832 2020-11-27] (voidtools -> voidtools) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2021-12-20] (Malwarebytes Inc -> Malwarebytes) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-02] (HP Inc.) [Fichier non signé] R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-02] (HP Inc.) [Fichier non signé] R2 PrivadoVPN.Service; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Service.exe [64136 2022-09-23] (Privado Networks LLC -> Privado Networks AG) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-09-20] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2020-09-02] (Dell Inc. -> Dell Inc.) S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-02] (Miroslav Topolar -> Mister Group) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WireGuardTunnel$PrivadoVPN; C:\Program Files (x86)\PrivadoVPN\PrivadoVPN.Wireguard.Service.exe [20616 2022-09-23] (Privado Networks LLC -> Privado Networks AG) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [433168 2021-04-07] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S3 HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [29096 2020-08-21] (Hewlett-Packard Company -> Hewlett Packard) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-12-22] (Malwarebytes Inc -> Malwarebytes) R3 MpKsl86e7ed2e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8471AC34-3C90-4C52-A753-E2BECDC326D1}\MpKslDrv.sys [228632 2022-10-20] (Microsoft Windows -> Microsoft Corporation) R3 PrivadoVPNSplitTunneling; C:\WINDOWS\system32\DRIVERS\PrivadoVPNSplitTunneling.sys [32984 2022-08-08] (Privado Networks LLC -> ) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2021-02-02] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [455968 2022-10-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-14] (Microsoft Windows -> Microsoft Corporation) R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29680 2021-12-22] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) R3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2022-09-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-10-19 19:35 - 2022-10-20 10:44 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-10-19 19:35 - 2022-10-20 10:44 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-10-19 19:35 - 2022-10-19 19:35 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-10-18 15:15 - 2022-10-18 15:15 - 000002892 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - GB 2022-10-18 14:22 - 2022-10-18 14:22 - 000000000 ____D C:\WINDOWS\Panther 2022-10-17 18:48 - 2022-10-20 11:11 - 000000000 ____D C:\FRST 2022-10-15 10:23 - 2022-10-15 10:23 - 000000000 ____D C:\Users\GB\AppData\Roaming\AdvertismentImages 2022-10-14 12:13 - 2022-10-14 12:13 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2022-10-05 10:01 - 2022-10-05 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivadoVPN 2022-10-05 10:01 - 2022-10-05 10:01 - 000000000 ____D C:\Program Files (x86)\PrivadoVPN 2022-09-23 09:48 - 2022-09-23 09:48 - 000000000 ___HD C:\$WinREAgent 2022-09-23 09:44 - 2022-09-23 09:44 - 000000000 ____D C:\Users\GB\AppData\Roaming\com.adobe.dunamis 2022-09-20 15:58 - 2022-09-20 15:58 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-09-20 15:58 - 2022-09-20 15:58 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-09-20 15:57 - 2022-09-20 15:57 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-09-20 15:57 - 2022-09-20 15:57 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-09-20 15:57 - 2022-09-20 15:57 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-09-20 15:57 - 2022-09-20 15:57 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-09-20 15:57 - 2022-09-20 15:57 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-09-20 15:57 - 2022-09-20 15:57 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-09-20 15:56 - 2022-09-20 15:56 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-09-20 15:56 - 2022-09-20 15:56 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-09-20 15:56 - 2022-09-20 15:56 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-09-20 15:56 - 2022-09-20 15:56 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-09-20 15:56 - 2022-09-20 15:56 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-09-20 15:56 - 2022-09-20 15:56 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-09-20 15:56 - 2022-09-20 15:56 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-09-20 15:55 - 2022-09-20 15:55 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-09-20 15:55 - 2022-09-20 15:55 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-09-20 15:54 - 2022-09-20 15:54 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-09-20 15:53 - 2022-09-20 15:53 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-09-20 15:53 - 2022-09-20 15:53 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-09-20 15:53 - 2022-09-20 15:53 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-09-20 15:53 - 2022-09-20 15:53 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-09-20 15:52 - 2022-09-20 15:52 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-09-20 15:52 - 2022-09-20 15:52 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-09-20 15:52 - 2022-09-20 15:52 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-09-20 05:53 - 2022-09-20 05:53 - 000489368 _____ (WireGuard LLC) C:\WINDOWS\system32\Drivers\wireguard.sys 2022-09-12 09:47 - 2022-10-20 11:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-30 16:23 - 2022-08-30 16:23 - 000003666 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{42390537-EB41-47C9-BFA5-42117CC5A76C} 2022-08-30 16:23 - 2022-08-30 16:23 - 000003542 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{3691DE51-FCE1-4CCE-A079-F48A93433A3D} 2022-08-20 08:23 - 2022-08-20 08:23 - 000000000 ____D C:\Users\GB\AppData\Local\AutodeskDesktopApp 2022-08-20 08:22 - 2022-08-20 08:22 - 000000036 _____ C:\WINDOWS\SysWOW64\id.dat 2022-08-16 10:13 - 2022-08-16 10:13 - 000003688 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{451A49EF-C16A-4EE8-BF50-E62EA04BEE11} 2022-08-16 10:13 - 2022-08-16 10:13 - 000003564 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{10A18972-6A0F-48C9-B755-0E71BEF6E732} ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-10-20 11:11 - 2020-12-07 21:01 - 000000000 ____D C:\Users\GB\AppData\LocalLow\Mozilla 2022-10-20 10:56 - 2021-03-18 19:30 - 000000000 ____D C:\Users\GB\AppData\Roaming\ZHP 2022-10-20 10:44 - 2021-02-04 18:00 - 000000000 ____D C:\Program Files\CCleaner 2022-10-20 10:44 - 2020-12-07 20:43 - 000000000 ____D C:\ProgramData\PrivadoVPN 2022-10-20 10:43 - 2020-12-05 16:33 - 000000000 ____D C:\Program Files (x86)\Google 2022-10-20 10:41 - 2020-12-12 15:22 - 000000000 ____D C:\ProgramData\NVIDIA 2022-10-20 10:41 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-10-20 10:40 - 2022-03-07 09:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-10-20 10:40 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp 2022-10-20 10:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-10-20 10:37 - 2020-12-05 17:28 - 000000000 ____D C:\Users\GB\AppData\Local\Everything 2022-10-20 10:37 - 2020-12-05 16:18 - 000000000 ____D C:\Users\GB\AppData\Roaming\Everything 2022-10-20 09:55 - 2022-03-07 09:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-10-20 09:44 - 2021-09-10 19:07 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2022-10-20 09:38 - 2020-12-05 19:33 - 000000000 ____D C:\ProgramData\SystemExplorer 2022-10-19 19:36 - 2020-12-05 19:55 - 000000000 ____D C:\Program Files\Google 2022-10-19 19:08 - 2022-03-07 09:58 - 000441968 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-10-19 11:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-10-19 11:37 - 2022-06-20 15:48 - 000000000 ____D C:\Program Files (x86)\Autodesk 2022-10-19 11:37 - 2022-06-20 15:14 - 000000000 ____D C:\ProgramData\Autodesk 2022-10-18 19:52 - 2021-01-31 17:33 - 000000000 ____D C:\Users\GB\AppData\Roaming\vlc 2022-10-18 19:51 - 2022-03-07 09:22 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-10-18 19:51 - 2019-12-07 16:50 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat 2022-10-18 19:51 - 2019-12-07 16:50 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat 2022-10-18 19:51 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-10-18 16:09 - 2020-12-11 12:01 - 000000000 ____D C:\Program Files (x86)\Adobe 2022-10-18 16:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-10-18 16:05 - 2022-05-07 15:05 - 000000000 ____D C:\WINDOWS\Minidump 2022-10-18 15:57 - 2020-12-05 16:04 - 000000000 ____D C:\Users\GB\AppData\Local\Packages 2022-10-18 15:54 - 2020-12-05 16:39 - 000000000 ____D C:\Users\GB\AppData\Local\PlaceholderTileLogoFolder 2022-10-18 15:51 - 2022-06-20 15:26 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2022-10-18 15:36 - 2022-06-26 18:11 - 000003678 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-10-18 15:36 - 2022-06-26 18:11 - 000003484 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d831f3291cfd8e 2022-10-18 15:24 - 2020-12-12 19:20 - 000000000 ____D C:\Users\GB\AppData\Local\CrashDumps 2022-10-17 19:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-10-17 19:11 - 2020-09-27 09:36 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-10-17 09:06 - 2021-12-20 20:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2022-10-16 20:25 - 2022-03-07 00:37 - 000000000 ____D C:\Users\GB 2022-10-14 16:49 - 2020-12-27 01:45 - 000000000 ____D C:\Users\GB\AppData\Roaming\dvdcss 2022-10-14 16:08 - 2020-12-05 19:55 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-10-14 12:13 - 2022-07-21 12:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-10-14 11:24 - 2020-12-06 20:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-10-14 11:24 - 2020-12-05 18:32 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-10-14 11:19 - 2020-09-27 09:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-10-09 19:14 - 2021-01-20 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ant Renamer 2022-10-09 19:14 - 2021-01-20 19:40 - 000000000 ____D C:\Program Files (x86)\Ant Renamer 2022-10-08 14:08 - 2020-12-05 16:18 - 000000000 ____D C:\Program Files\Everything 2022-10-05 10:01 - 2021-12-24 21:36 - 000000466 __RSH C:\ProgramData\ntuser.pol 2022-10-05 10:01 - 2020-12-07 20:43 - 000000000 ____D C:\ProgramData\Package Cache 2022-09-22 10:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-09-22 10:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-09-22 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-09-22 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-09-22 10:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-09-22 10:23 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-09-22 10:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-09-20 16:40 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-09-20 16:37 - 2020-12-07 12:01 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-09-20 16:27 - 2020-12-07 12:00 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-09-20 15:52 - 2022-03-07 10:01 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== Fichiers à la racine de certains dossiers ======== 2021-01-08 03:29 - 2021-01-08 03:29 - 019470392 _____ (TeamViewer) C:\Users\GB\TeamViewerQS.exe 2022-01-25 16:34 - 2008-02-11 12:33 - 000418816 _____ (c't Magazin für Computertechnik) C:\Program Files (x86)\h2testw.exe 2021-08-09 14:01 - 2021-08-09 14:01 - 000000171 _____ () C:\Users\GB\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0 2020-12-27 02:08 - 2020-12-27 02:08 - 000007859 _____ () C:\Users\GB\AppData\Roaming\pcouffin.cat 2020-12-27 02:08 - 2020-12-27 02:08 - 000001167 _____ () C:\Users\GB\AppData\Roaming\pcouffin.inf 2020-12-27 02:08 - 2020-12-27 02:08 - 000082816 _____ (VSO Software) C:\Users\GB\AppData\Roaming\pcouffin.sys 2021-03-05 15:03 - 2021-03-05 15:03 - 000156725 _____ () C:\Users\GB\AppData\Roaming\Windows Service.vbs 2021-06-07 14:09 - 2022-05-12 21:10 - 000008704 _____ () C:\Users\GB\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-12-10 11:21 - 2021-12-10 11:21 - 000000017 _____ () C:\Users\GB\AppData\Local\resmon.resmoncfg 2022-06-21 09:25 - 2022-06-21 09:25 - 000000000 _____ () C:\Users\GB\AppData\Local\{C48EA334-4519-416D-A66A-ADB0861153DD} ==================== SigCheckExt ========================= 2020-12-30 19:51 - 2012-07-25 01:00 - 000093696 _____ (Seiko Epson Corporation.) C:\WINDOWS\system32\esxw2_a1.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000052224 _____ (HP Inc.) C:\WINDOWS\system32\hpbmiapi.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000052736 _____ (HP Inc.) C:\WINDOWS\system32\hpboid.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000012800 _____ (HP Inc.) C:\WINDOWS\system32\hpboidps.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000078848 _____ (HP Inc.) C:\WINDOWS\system32\hpbpro.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000013312 _____ (HP Inc.) C:\WINDOWS\system32\hpbprops.dll 2019-02-02 00:40 - 2019-02-02 00:40 - 000070144 _____ (HP Inc.) C:\WINDOWS\system32\HPBWSDR.DLL 2019-02-02 00:10 - 2019-02-02 00:10 - 000180736 _____ (HP Inc.) C:\WINDOWS\system32\hplbddrv.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000067072 _____ (HP Inc.) C:\WINDOWS\system32\HPZidr12.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000050688 _____ (HP Inc.) C:\WINDOWS\system32\HPZinw12.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000066048 _____ (HP Inc.) C:\WINDOWS\system32\HPZipm12.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000047104 _____ (HP Inc.) C:\WINDOWS\system32\HPZipr12.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000038400 _____ (HP Inc.) C:\WINDOWS\system32\hpzipt12.dll 2019-02-02 00:42 - 2019-02-02 00:42 - 000024064 _____ (HP Inc.) C:\WINDOWS\system32\hpzisn12.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 003404288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libcrypto-1_1-x64.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\system32\libssl-1_1-x64.dll 2022-01-25 16:34 - 2008-02-11 12:33 - 000418816 _____ (c't Magazin für Computertechnik) C:\Program Files (x86)\h2testw.exe 2021-08-26 17:56 - 2020-02-20 19:04 - 000931328 __RSH C:\WINDOWS\flvdec.dll 2020-12-15 11:12 - 1999-05-26 10:46 - 000212480 _____ (Eastman Kodak) C:\WINDOWS\pcdlib32.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2021-08-26 18:01 - 2009-09-27 09:39 - 000401920 ___SH (The Public) C:\WINDOWS\SysWOW64\avisynth.dll 2021-08-26 18:01 - 2005-07-14 12:31 - 000032256 ___SH C:\WINDOWS\SysWOW64\AVSredirect.dll 2021-08-26 18:01 - 2004-02-22 10:11 - 000764416 ___SH (Abysmal Software) C:\WINDOWS\SysWOW64\devil.dll 2021-08-26 17:56 - 2004-07-02 18:33 - 000327749 _____ (RealNetworks, Inc.) C:\WINDOWS\SysWOW64\drvc.dll 2021-08-26 18:01 - 2016-07-12 12:13 - 004646912 ___SH C:\WINDOWS\SysWOW64\ffms2.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000055296 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPZidr12.dll 2019-02-02 00:41 - 2019-02-02 00:41 - 000039424 _____ (HP Inc.) C:\WINDOWS\SysWOW64\HPZipr12.dll 2021-08-26 18:01 - 2004-01-25 00:00 - 000070656 ___SH (www.helixcommunity.org) C:\WINDOWS\SysWOW64\i420vfw.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libcrypto-1_1.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 001276928 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\libeay32.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) C:\WINDOWS\SysWOW64\libssl-1_1.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL 2020-12-05 19:43 - 1987-12-19 23:00 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll 2021-08-26 17:56 - 2016-09-02 18:50 - 000214016 __RSH (Florin Ghido, florin.ghido@gmail.com) C:\WINDOWS\SysWOW64\OptimFROG.dll 2021-08-26 17:56 - 2004-10-10 10:50 - 000278528 _____ (Real Networks, Inc) C:\WINDOWS\SysWOW64\pncrt.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000276992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\SysWOW64\ssleay32.dll 2021-08-26 17:56 - 2010-01-07 01:00 - 000107520 __RSH C:\WINDOWS\SysWOW64\TAKDSDecoder.dll 2020-12-05 19:43 - 1987-12-19 23:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll 2021-08-26 17:56 - 2012-10-05 20:54 - 000188416 __RSH C:\WINDOWS\SysWOW64\winDCE32.dll 2021-08-26 18:01 - 2004-01-25 00:00 - 000070656 ___SH (www.helixcommunity.org) C:\WINDOWS\SysWOW64\yv12vfw.dll ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {b539ca8f-9da1-11ec-a563-88532ee4749b} displayorder {current} toolsdisplayorder {memdiag} timeout 3 Chargeur de d‚marrage Windows ----------------------------- identificateur {6ecd8e6c-9dec-11ec-a564-91051ffed04f} device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6ecd8e6d-9dec-11ec-a564-91051ffed04f} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{6ecd8e6d-9dec-11ec-a564-91051ffed04f} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {af88e08a-6fe1-4f37-aae9-62e1d864be23} device ramdisk=[C:]\Aomei\AomeiBoot.wim,{f26c0366-64bc-4e0b-9a8c-440a3af3168d} description Aomei PE osdevice ramdisk=[C:]\Aomei\AomeiBoot.wim,{f26c0366-64bc-4e0b-9a8c-440a3af3168d} systemroot \Windows detecthal Yes winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {6ecd8e6c-9dec-11ec-a564-91051ffed04f} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {b539ca8f-9da1-11ec-a563-88532ee4749b} nx OptIn bootmenupolicy Standard Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {b539ca8f-9da1-11ec-a563-88532ee4749b} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {6ecd8e6c-9dec-11ec-a564-91051ffed04f} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {6ecd8e6d-9dec-11ec-a564-91051ffed04f} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume2 ramdisksdipath \Recovery\WindowsRE\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {f26c0366-64bc-4e0b-9a8c-440a3af3168d} ramdisksdidevice partition=C: ramdisksdipath \Aomei\AomeiBoot.sdi ==================== Fin de FRST.txt ========================