Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-01-2023 Exécuté par Jean Claude (administrateur) sur JEANCLAUDEDIVET (LENOVO 20250) (13-01-2023 14:25:20) Exécuté depuis C:\Users\Utilisateur\Downloads Profils chargés: Jean Claude Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2486 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (explorer.exe ->) (Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe (explorer.exe ->) (Lavasoft Software Canada Inc. -> Lavasoft) C:\Users\Utilisateur\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (explorer.exe ->) (Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenu.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <26> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Slack Technologies, Inc. -> Slack Technologies Inc.) C:\Users\Utilisateur\AppData\Local\slack\app-4.29.149\slack.exe <5> (svchost.exe ->) (Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804432 2015-11-16] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [216576 2020-09-01] (Open-Shell) [Fichier non signé] HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [565768 2019-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [HP ENVY 4520 series (NET)] => C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (Hewlett Packard -> HP Inc.) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [MicrosoftEdgeAutoLaunch_214C468C1C6DF33CE795C9511217D27D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879368 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [Opera Browser Assistant] => C:\Users\Utilisateur\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3916232 2022-12-20] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [Web Companion] => C:\Users\Utilisateur\AppData\Roaming\Lavasoft\Web Companion\Application\WebCompanion.exe [9677640 2023-01-12] (Lavasoft Software Canada Inc. -> Lavasoft) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Utilisateur\AppData\Local\slack\slack.exe [309040 2022-11-30] (Slack Technologies, Inc. -> Slack Technologies Inc.) HKU\S-1-5-21-2708153018-1850461473-996183158-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2708153018-1850461473-996183158-1004\...\Run: [MicrosoftEdgeAutoLaunch_99C76BC9AC5DF3CB0457759C6E93DA18] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879368 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4520 series): HPDiscoPMD711.dll (Pas de fichier) HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\Windows\system32\WSPDFelementMonitor.dll [96256 2016-11-15] (Wondershare Software) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2020-08-30] ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier) Startup: C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fjvsmys.lnk [2017-04-18] ShortcutTarget: Fjvsmys.lnk -> C:\Users\UTILIS~1\AppData\Roaming\DLNMTpt\ie4uinit.exe (Pas de fichier) GroupPolicy: Restriction - Chrome <==== ATTENTION GroupPolicy-x32: Restriction - Chrome <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {020520E8-ADF4-4031-BA9C-58AA2EEBF9F7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {02E3CAD8-23CA-4940-BC80-736403E7177F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {077CDFD9-7C4F-4A48-8E9E-C226CCA88738} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {1F030299-472E-4C52-881A-D1AF7CA1248D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {20326DBF-FC60-4D91-A807-C2AFC3709B93} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {22842819-6CDE-4AAA-A095-A361A7349C6C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {2A8709A6-04E1-4CAE-AE5A-7DB791CC05D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {2BD669BB-55C6-48E8-A5EE-96D97643E215} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {2D1427B7-4D63-4853-8F24-2EA58E70A653} - System32\Tasks\Opera scheduled Autoupdate 1602234282 => C:\Users\Utilisateur\AppData\Local\Programs\Opera\launcher.exe [2607560 2022-12-20] (Opera Norway AS -> Opera Software) Task: {2F80C3D0-4318-49DE-8B90-317B2C0ACA9D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier) Task: {355C9703-E9AF-4FBB-AF45-7F0EDD4E17E1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2708153018-1850461473-996183158-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {3BB00CB1-22EF-4E72-B9D2-1D45EB22D3B7} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2022-12-19] (Lenovo -> ) Task: {4551031B-400A-47D6-82B5-EB65340C0D71} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2708153018-1850461473-996183158-1004 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {50A16D72-0F28-476A-A1FB-5B45535B03B1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {55B2A6D3-F9F7-496F-B463-B172D7532AD6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8b604ce3-81ab-43d8-8084-845a6cdaa2aa => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {58A91E12-2193-4401-A701-9291E83F4D3F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {5AF7367C-9863-4BBA-AC07-BDBF186FE823} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {5CEDF2F9-7816-40F8-9E88-53646BCE8D0F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "8c52cdc6-5d97-4985-b1d3-d66d5c29ee31" --version "6.07.10191" --silent Task: {622F8B93-8C38-4643-ACC7-364793983D81} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {70225FB9-52ED-4C06-9875-19A21C3B8AB9} - System32\Tasks\Opera scheduled assistant Autoupdate 1602234291 => C:\Users\Utilisateur\AppData\Local\Programs\Opera\launcher.exe [2607560 2022-12-20] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Utilisateur\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {7A8A74A1-7344-4990-B77B-81FB93614A73} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {7AA77DFF-1F45-402D-8955-07FC2A5F7972} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.) Task: {7CCC9E36-6E13-4F2A-8F7D-9078942F334C} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {80A77BD7-1E66-45BF-8E9B-442BF6520F5B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {880377C5-D5BF-4C7E-84A8-C6395E59269B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-12-09] (Piriform Software Ltd -> Piriform) Task: {8AEE01D1-1F13-4422-AEC8-7EA96E1FB74A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {8EAAD343-E393-4C47-A14A-D691EE094F77} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2708153018-1850461473-996183158-1001 => C:\Users\Utilisateur\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2022-10-19] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {98FCE645-E0D3-465F-949C-AE6DB579874C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {9A0DD46A-D661-4EEA-B725-955499910CD5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {A65B7968-1015-49CA-86C4-C0B489D6ED25} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\76a21239-e6f9-42b7-9373-9dd246f0f6ea => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {B7A95914-87E4-4E59-B0AB-36BC1F3F2174} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {C536A81F-3633-47CF-97B2-426446E1B5B1} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2022-12-19] (Lenovo -> ) Task: {C97BB2DA-657B-4FA4-B684-B9951C4B38C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CBD06094-D58A-4826-86D4-3216932A12DD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D91B40DD-DFAD-4F19-BEFB-3A2CA319EF89} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {DC8B50B2-6853-4690-B5ED-23337D26A11F} - System32\Tasks\CCleanerSkipUAC - Jean Claude => C:\Program Files\CCleaner\CCleaner.exe [32602448 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {DF2648CA-A27E-4AA0-BBF8-1FB62399C768} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\77626956-4be0-4c38-8c49-acfa5ba4fe78 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {EDE7C43F-929E-4829-98DD-14BD9B25A851} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e498fa66-be60-4404-8fae-974826df6660 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {EE819922-4C28-45A7-9D53-27378CD6D9D9} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2f6262e7-50ec-461a-a268-117062789bb4}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fed8544c-3724-45e4-8a46-66ac299693d0}: [DhcpNameServer] 192.168.1.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKU\S-1-5-21-2708153018-1850461473-996183158-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Utilisateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-13] FireFox: ======== FF DefaultProfile: ynpipzis.default-1491829850359-1628944906006 FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gamkpy1.default-release-1 [2023-01-13] FF Homepage: Mozilla\Firefox\Profiles\5gamkpy1.default-release-1 -> Qwant.fr FF Notifications: Mozilla\Firefox\Profiles\5gamkpy1.default-release-1 -> hxxps://twitter.com FF Extension: (Search and Print Recipes Search) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\5gamkpy1.default-release-1\Extensions\{05d16aec-af04-4d37-8eea-0306fad42be5}.xpi [2022-12-17] [UpdateUrl:hxxps://cdn.searchandprint-cdn.recipes/xpi/searchandprint/yhs/1020/search/updates.json] FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\7w91402o.default-release-1660925916136 [2023-01-12] FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006 [2023-01-12] FF Homepage: Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006 -> hxxps://www.qwant.com/?l=fr FF Notifications: Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006 -> hxxps://wordpress.com; hxxps://www.pinterest.fr; hxxps://mail.google.com FF Extension: (AdBlocker Ultimate) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\adblockultimate@adblockultimate.net.xpi [2022-09-30] FF Extension: (Privacy Badger) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2022-09-28] FF Extension: (AdBlocker for YouTube™) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2022-06-29] FF Extension: (Bouton Enregistrer Pinterest) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-08-05] FF Extension: (Qwant VIPrivacy) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\qwantcomforfirefox@jetpack.xpi [2022-09-01] FF Extension: (Mountains & Valleys ) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\{4fe67be9-e60f-451a-a7a9-65b3455b540c}.xpi [2021-12-03] FF Extension: (Blog2Social: Social Media Poster Extension) - C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\ynpipzis.default-1491829850359-1628944906006\Extensions\{563240a1-a26c-432b-a8bb-b1a726957699}.xpi [2022-09-15] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.0-git -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-2708153018-1850461473-996183158-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Utilisateur\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-12-07] (Citrix Online -> Citrix Online) Opera: ======= OPR Profile: C:\Users\Utilisateur\AppData\Roaming\Opera Software\Opera Stable [2023-01-13] OPR Notifications: Opera Stable -> hxxps://evasionentrenous.forumactif.org OPR StartupUrls: Opera Stable -> "hxxp://qwant.fr/" OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Utilisateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-11-04] OPR Extension: (Coupons Opera | coupons et codes de réduction) - C:\Users\Utilisateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\eplcjggklbefnipglcfdfalbbjpmkbkl [2022-10-21] OPR Extension: (Opera Wallet) - C:\Users\Utilisateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-12-15] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Utilisateur\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-28] StartMenuInternet: (HKU\S-1-5-21-2708153018-1850461473-996183158-1001) OperaStable - "C:\Users\Utilisateur\AppData\Local\Programs\Opera\Launcher.exe" ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-07-24] (Adobe Inc. -> Adobe Systems) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncHelper.exe [3478912 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1099280 2017-03-28] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2022-12-07] (HP Inc. -> HP Inc.) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe [16648 2019-12-04] (Lenovo -> Lenovo Group Ltd.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8892256 2022-12-22] (Malwarebytes Inc. -> Malwarebytes) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.248.1127.0001\OneDriveUpdaterService.exe [3845000 2023-01-12] (Microsoft Corporation -> Microsoft Corporation) S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16184216 2022-06-23] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 wampapache64; c:\wamp64\bin\apache\apache2.4.51\bin\httpd.exe [29696 2021-10-07] (Apache Software Foundation) [Fichier non signé] S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.6.5\bin\mysqld.exe [32744 2021-11-05] (MariaDB Corporation Ab -> ) S3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.36\bin\mysqld.exe [42024736 2021-09-07] (Oracle America, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> ) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-03-28] (Martin Malik - REALiX -> REALiX(tm)) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-10-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-12-11] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2020-09-06] (Microsoft Corporation) [Fichier non signé] R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [649512 2019-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 MpKsldf017503; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A7AD5EA2-81D8-4348-950E-7DDD834F60E5}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-01-13 14:25 - 2023-01-13 14:29 - 000031359 _____ C:\Users\Utilisateur\Downloads\FRST.txt 2023-01-13 10:50 - 2023-01-13 10:50 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2023-01-13 09:22 - 2023-01-13 09:22 - 000000000 ___HD C:\$WinREAgent 2023-01-13 06:58 - 2023-01-13 06:59 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64(2).exe 2023-01-13 06:55 - 2023-01-13 06:55 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64(1).exe 2023-01-13 06:50 - 2023-01-13 06:50 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64.exe 2023-01-13 06:39 - 2023-01-13 06:39 - 000402707 _____ C:\Users\Utilisateur\Desktop\ZHPDiag.txt 2023-01-13 06:19 - 2023-01-13 06:22 - 000000916 _____ C:\Users\Utilisateur\Desktop\ZHPSuite.lnk 2023-01-13 06:19 - 2023-01-13 06:19 - 003510472 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite.exe 2023-01-12 18:11 - 2023-01-12 18:11 - 000002499 _____ C:\Users\Utilisateur\Desktop\WebCompanion - Raccourci.lnk 2023-01-12 18:09 - 2023-01-12 18:09 - 000566592 _____ (Lavasoft) C:\Users\Utilisateur\Downloads\WcInstaller(1).exe 2023-01-12 18:02 - 2023-01-12 18:02 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lavasoft 2023-01-12 18:01 - 2023-01-12 18:01 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Lavasoft 2023-01-12 18:01 - 2023-01-12 18:01 - 000000000 ____D C:\ProgramData\Lavasoft 2023-01-12 18:00 - 2023-01-12 18:00 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Lavasoft 2023-01-12 17:58 - 2023-01-12 17:58 - 000566592 _____ (Lavasoft) C:\Users\Utilisateur\Downloads\WcInstaller.exe 2023-01-12 17:08 - 2023-01-12 17:08 - 006213940 _____ C:\Users\Utilisateur\Downloads\CrystalDiskInfo8_17_13(2).zip 2023-01-12 17:00 - 2023-01-12 17:01 - 006197492 _____ C:\Users\Utilisateur\Downloads\CrystalDiskInfo8_17_13(1).zip 2023-01-12 14:31 - 2023-01-12 14:31 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-01-12 14:31 - 2023-01-12 14:31 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-12 13:58 - 2023-01-12 13:58 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\Tvsukernel 2023-01-11 17:47 - 2023-01-11 17:48 - 026000709 _____ C:\Users\Utilisateur\Downloads\spotpresen.mp4 2023-01-11 14:27 - 2023-01-11 14:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo 2023-01-11 10:32 - 2023-01-11 10:32 - 000029607 _____ C:\Users\Utilisateur\Documents\Présentation du site sur la chaine YouTube d'Eric.odt 2023-01-10 12:55 - 2023-01-10 12:57 - 047667914 _____ C:\Users\Utilisateur\Downloads\spottest.mp4 2023-01-09 18:23 - 2023-01-09 18:23 - 001892983 _____ C:\Users\Utilisateur\Downloads\default 2023-01-09 06:30 - 2023-01-09 06:30 - 000035035 _____ C:\Users\Utilisateur\Downloads\8xE6r5uW 2023-01-05 08:59 - 2023-01-05 08:59 - 000027287 _____ C:\Users\Utilisateur\Documents\Mail envoyés aux titulaires de compte sur le site pour leurs proposer l'abonnement à la lettre mensuelle.odt 2023-01-02 15:14 - 2023-01-02 15:14 - 000680247 _____ C:\Users\Utilisateur\Documents\Scan_0001.pdf 2023-01-01 16:43 - 2023-01-01 17:07 - 001253292 _____ C:\WINDOWS\Minidump\010123-50531-01.dmp 2023-01-01 16:42 - 2023-01-13 10:42 - 000008192 ___SH C:\DumpStack.log.tmp 2022-12-30 13:51 - 2022-12-30 13:51 - 000031706 _____ C:\Users\Utilisateur\Downloads\DrEsRX_l 2022-12-30 07:15 - 2022-12-30 07:15 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH.lnk 2022-12-30 07:15 - 2022-12-30 07:15 - 000001259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion - Convertisseur d'images.lnk 2022-12-30 07:15 - 2022-12-30 07:15 - 000000000 ____D C:\Users\Utilisateur\Suite NCH Software 2022-12-30 07:14 - 2022-12-30 07:14 - 001858272 _____ (NCH Software) C:\Users\Utilisateur\Downloads\PixillionConvertisseurImage_FR(2).exe 2022-12-29 15:59 - 2023-01-01 16:43 - 765277555 _____ C:\WINDOWS\MEMORY.DMP 2022-12-29 15:59 - 2022-12-29 16:19 - 001192516 _____ C:\WINDOWS\Minidump\122922-40890-01.dmp 2022-12-27 13:32 - 2022-12-27 13:49 - 001177620 _____ C:\WINDOWS\Minidump\122722-40015-01.dmp 2022-12-25 17:50 - 2023-01-12 19:46 - 000030173 _____ C:\Users\Utilisateur\Documents\MOTS DE PASSE ENREGISTRES.odt 2022-12-24 14:03 - 2022-12-24 14:03 - 000004280 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1602234282 2022-12-24 14:03 - 2022-12-24 14:03 - 000001468 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk 2022-12-24 10:44 - 2022-12-24 11:04 - 000658020 _____ C:\WINDOWS\Minidump\122422-34703-01.dmp 2022-12-24 10:35 - 2022-12-24 10:35 - 000000000 _____ C:\WINDOWS\Minidump\122422-50843-01.dmp 2022-12-20 19:40 - 2022-12-20 19:40 - 000004520 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1602234291 2022-12-20 19:26 - 2022-12-20 19:42 - 001159148 _____ C:\WINDOWS\Minidump\122022-41250-01.dmp 2022-12-17 09:11 - 2022-12-17 09:49 - 000735244 _____ C:\WINDOWS\Minidump\121722-48390-01.dmp 2022-12-17 09:07 - 2022-12-17 09:07 - 000000000 _____ C:\WINDOWS\Minidump\121722-42859-01.dmp 2022-12-17 09:05 - 2022-12-17 09:05 - 000000000 _____ C:\WINDOWS\Minidump\121722-40531-01.dmp 2022-12-16 19:17 - 2022-12-16 19:45 - 001221036 _____ C:\WINDOWS\Minidump\121622-41390-01.dmp 2022-12-15 13:40 - 2022-12-15 13:55 - 001231932 _____ C:\WINDOWS\Minidump\121522-66109-01.dmp 2022-12-15 10:37 - 2022-12-15 10:38 - 000000000 _____ C:\Users\Utilisateur\Downloads\_mhHxqGi.htm 2022-12-15 07:58 - 2022-12-15 13:40 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-12-15 07:58 - 2022-12-15 07:58 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-12-15 07:58 - 2022-12-15 07:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-12-14 14:53 - 2022-12-14 14:53 - 000261551 _____ C:\Users\Utilisateur\Downloads\109926068-126001072782.pdf 2022-12-13 09:31 - 2022-12-13 09:31 - 000118032 _____ C:\Users\Utilisateur\Downloads\PROCURATION SUCCESSION DIVET Jean-Claude.pdf 2022-12-13 09:30 - 2022-12-13 09:30 - 000013206 _____ C:\Users\Utilisateur\Downloads\2dc50a1b50e84e5586b75d715ef4ca78.jpeg 2022-12-12 13:43 - 2022-12-12 13:43 - 006213940 _____ C:\Users\Utilisateur\Downloads\CrystalDiskInfo8_17_13.zip 2022-12-11 16:50 - 2022-12-11 16:51 - 000218713 _____ C:\Users\Utilisateur\Downloads\Consoude-1024x768.jpeg 2022-12-11 16:34 - 2022-12-11 16:34 - 000230500 _____ C:\Users\Utilisateur\Downloads\Verveine-citronee-1024x768.jpeg 2022-12-05 15:48 - 2022-12-05 15:48 - 000202410 _____ C:\Users\Utilisateur\Downloads\doc96646277-2.pdf 2022-12-05 15:47 - 2022-12-05 15:47 - 000062833 _____ C:\Users\Utilisateur\Downloads\doc96646201-4.pdf 2022-12-05 15:44 - 2022-12-05 15:44 - 000202410 _____ C:\Users\Utilisateur\Downloads\doc96646277-1.pdf 2022-12-05 15:44 - 2022-12-05 15:44 - 000062833 _____ C:\Users\Utilisateur\Downloads\doc96646201-3.pdf 2022-12-05 15:43 - 2022-12-05 15:43 - 000062833 _____ C:\Users\Utilisateur\Downloads\doc96646201-2.pdf 2022-12-05 15:43 - 2022-12-05 15:43 - 000062833 _____ C:\Users\Utilisateur\Downloads\doc96646201-1.pdf 2022-12-05 15:42 - 2022-12-05 15:42 - 000202410 _____ C:\Users\Utilisateur\Downloads\doc96646277.pdf 2022-12-05 15:41 - 2022-12-05 15:41 - 000062833 _____ C:\Users\Utilisateur\Downloads\doc96646201.pdf 2022-12-03 09:16 - 2022-12-03 09:16 - 000075538 _____ C:\Users\Utilisateur\Downloads\109926068-119000573292.pdf 2022-12-03 09:12 - 2022-12-03 09:12 - 000263290 _____ C:\Users\Utilisateur\Downloads\109926068-158000344504.pdf 2022-12-03 09:11 - 2022-12-03 09:11 - 000305927 _____ C:\Users\Utilisateur\Downloads\RE1_01_109926068_611000515074.pdf 2022-12-01 21:10 - 2022-12-01 21:10 - 000015009 _____ C:\Users\Utilisateur\Downloads\f(1).txt 2022-12-01 21:04 - 2022-12-01 21:04 - 000015048 _____ C:\Users\Utilisateur\Downloads\f.txt 2022-12-01 18:17 - 2022-12-01 18:17 - 000121352 _____ C:\Users\Utilisateur\Downloads\AC1_01_109926068_600007605408-1.pdf 2022-12-01 18:04 - 2022-12-01 18:04 - 000121352 _____ C:\Users\Utilisateur\Downloads\AC1_01_109926068_600007605408.pdf 2022-12-01 18:01 - 2022-12-01 18:01 - 001465202 _____ C:\Users\Utilisateur\Downloads\D1E0454068633_011_320_0_1_2_1_2_20201229171317_30110.pdf 2022-12-01 14:26 - 2022-12-01 14:26 - 000725723 _____ C:\Users\Utilisateur\Downloads\Scabieuses et soucis.jpeg 2022-11-30 14:28 - 2022-11-30 14:28 - 000252201 _____ C:\Users\Utilisateur\Downloads\doc96505132.pdf 2022-11-30 14:27 - 2022-11-30 14:27 - 000085574 _____ C:\Users\Utilisateur\Downloads\doc96474753-1.pdf 2022-11-29 19:41 - 2022-11-29 19:49 - 000000000 ____D C:\Users\Utilisateur\Documents\PROPOSITIONS D'HEBERMENT CHRISTOPHE 2022-11-29 19:30 - 2022-11-29 19:30 - 000029424 _____ C:\Users\Utilisateur\Downloads\PR2211-0039_signed-20221129193015.pdf 2022-11-29 15:32 - 2022-11-29 15:32 - 000140897 _____ C:\Users\Utilisateur\Downloads\doc89548510.pdf 2022-11-29 15:31 - 2022-11-29 15:31 - 000085572 _____ C:\Users\Utilisateur\Downloads\doc96474753.pdf 2022-11-23 05:39 - 2022-11-23 05:39 - 000414357 _____ C:\Users\Utilisateur\Downloads\doc96199462.pdf 2022-11-23 05:38 - 2022-11-23 05:38 - 000060382 _____ C:\Users\Utilisateur\Downloads\doc96199375.pdf 2022-11-23 05:36 - 2022-11-23 05:36 - 000233278 _____ C:\Users\Utilisateur\Downloads\doc96199376.pdf 2022-11-10 19:35 - 2022-11-10 19:35 - 000006991 _____ C:\Users\Utilisateur\Downloads\SLET8BZ0Q0-1-recapitulatif-cni-1.pdf 2022-11-10 19:35 - 2022-11-10 19:35 - 000006991 _____ C:\Users\Utilisateur\Downloads\SLET8BZ0Q0-1-recapitulatif-cni.pdf 2022-11-10 14:30 - 2022-11-10 14:30 - 000007027 _____ C:\Users\Utilisateur\Downloads\XLXLZC338Y-1-recapitulatif-cni.pdf 2022-11-06 15:31 - 2022-11-06 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DMSI 2022-11-06 15:31 - 2022-11-06 15:31 - 000000000 ____D C:\Program Files (x86)\DMSI 2022-11-06 15:31 - 2008-05-15 19:57 - 000151552 _____ (Machine) C:\WINDOWS\SysWOW64\DMSI.DLL 2022-11-06 15:31 - 2005-07-06 18:55 - 000147456 _____ (GDCL (hxxp://www.gdcl.co.uk)) C:\WINDOWS\SysWOW64\FSFWrap.dll 2022-11-06 15:31 - 2003-12-22 02:29 - 000454656 _____ C:\WINDOWS\SysWOW64\vorbisenc.dll 2022-11-06 15:31 - 2003-12-22 02:29 - 000368640 _____ (Gabest) C:\WINDOWS\SysWOW64\VOBSUB.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000249856 _____ (Gabest) C:\WINDOWS\SysWOW64\DVobSub.ax 2022-11-06 15:31 - 2003-12-22 02:29 - 000151552 _____ C:\WINDOWS\SysWOW64\OggDS.dll 2022-11-06 15:31 - 2003-12-22 02:29 - 000118784 _____ C:\WINDOWS\SysWOW64\VORBIS.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XCDSRC.AX 2022-11-06 15:31 - 2003-12-22 02:29 - 000011264 _____ C:\WINDOWS\SysWOW64\OGG.DLL 2022-11-06 15:31 - 2003-12-22 01:51 - 000040960 _____ C:\WINDOWS\SysWOW64\WAVDEST.AX 2022-11-06 15:31 - 2003-12-22 00:07 - 001129232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20.DLL 2022-11-06 15:31 - 2003-12-22 00:07 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20FRA.DLL 2022-11-06 15:29 - 2022-11-06 15:30 - 025674897 _____ (Satirik ) C:\Users\Utilisateur\Downloads\DMSI-v1.11.2.exe 2022-11-05 20:06 - 2022-11-05 20:06 - 001785560 _____ (NCH Software) C:\Users\Utilisateur\Downloads\PixillionConvertisseurImage_FR(1).exe 2022-10-31 18:25 - 2022-12-30 07:15 - 000000000 ____D C:\Program Files (x86)\NCH Software 2022-10-31 18:24 - 2022-10-31 18:25 - 001785560 _____ (NCH Software) C:\Users\Utilisateur\Downloads\PixillionConvertisseurImage_FR.exe 2022-10-31 18:02 - 2022-10-31 18:25 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\FileConverter 2022-10-31 18:02 - 2022-10-31 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Converter 2022-10-31 18:01 - 2022-10-31 18:01 - 000000000 ____D C:\Program Files\File Converter 2022-10-31 17:24 - 2022-10-31 17:25 - 041267200 _____ C:\Users\Utilisateur\Downloads\FileConverter-1.2.3-x64-setup.msi 2022-10-23 08:08 - 2022-10-23 08:08 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-10-23 07:54 - 2022-10-23 07:54 - 002632256 _____ (Malwarebytes) C:\Users\Utilisateur\Downloads\MBSetup.exe 2022-10-22 15:04 - 2022-10-22 15:05 - 007197432 _____ (IvoSoft) C:\Users\Div\Downloads\classic-shell_4-3-1_fr_424089.exe 2022-10-19 13:50 - 2022-10-19 13:50 - 000456891 _____ C:\Users\Utilisateur\Downloads\cerfa_15695-01.pdf 2022-10-19 13:29 - 2022-10-19 13:29 - 002782930 _____ C:\Users\Utilisateur\Downloads\cerfa_15692-01-2.pdf 2022-10-19 13:27 - 2022-10-19 13:27 - 002782930 _____ C:\Users\Utilisateur\Downloads\cerfa_15692-01-1.pdf 2022-10-19 13:15 - 2022-10-19 13:15 - 000002290 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigation privée de Firefox.lnk 2022-10-16 19:39 - 2022-10-16 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.4 2022-10-16 19:38 - 2022-10-16 19:39 - 000000000 ____D C:\Program Files\LibreOffice 2022-10-16 18:46 - 2022-10-16 19:01 - 355192832 _____ C:\Users\Utilisateur\Downloads\LibreOffice_7.4.2_Win_x64(1).msi ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-01-13 14:35 - 2016-11-16 18:01 - 000000000 ____D C:\Users\Utilisateur\AppData\LocalLow\Mozilla 2023-01-13 14:27 - 2017-04-18 12:14 - 000000000 ____D C:\FRST 2023-01-13 14:24 - 2020-09-15 05:47 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\OpenShell 2023-01-13 14:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-13 14:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-01-13 13:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-13 13:39 - 2020-09-06 13:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-01-13 10:57 - 2022-02-14 17:17 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\Slack 2023-01-13 10:55 - 2019-09-24 10:01 - 000000000 ____D C:\Program Files\CCleaner 2023-01-13 10:46 - 2020-06-18 19:24 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-13 10:43 - 2022-07-16 14:19 - 000000000 ____D C:\Program Files\TeamViewer 2023-01-13 10:42 - 2021-09-12 14:01 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-01-13 10:42 - 2020-09-06 14:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-01-13 10:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-01-13 10:42 - 2016-09-25 03:25 - 000000000 ____D C:\ProgramData\NVIDIA 2023-01-13 10:41 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2023-01-13 10:11 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-01-13 09:37 - 2015-07-22 20:10 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-01-13 06:39 - 2015-04-19 09:07 - 000000000 ____D C:\Users\Utilisateur\AppData\Roaming\ZHP 2023-01-13 06:19 - 2017-04-10 04:58 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\ZHP 2023-01-13 04:40 - 2020-09-06 06:58 - 000000000 ____D C:\Users\Utilisateur 2023-01-12 16:50 - 2022-02-09 05:58 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-01-12 14:31 - 2021-12-13 17:42 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2708153018-1850461473-996183158-1004 2023-01-12 14:31 - 2021-12-13 17:42 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2708153018-1850461473-996183158-1001 2023-01-12 14:15 - 2015-03-11 14:30 - 000000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps 2023-01-12 05:25 - 2020-01-16 16:47 - 000000000 ____D C:\ProgramData\Lenovo 2023-01-12 04:54 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2023-01-12 04:45 - 2020-09-06 13:42 - 000555600 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-01-12 04:44 - 2022-08-05 19:09 - 000000000 ____D C:\WINDOWS\TempInst 2023-01-11 20:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-01-11 20:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-01-11 20:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-01-11 20:47 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-01-11 14:27 - 2022-08-05 19:10 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT 2023-01-11 14:27 - 2014-08-01 11:55 - 000000000 ____D C:\Program Files (x86)\Lenovo 2023-01-11 14:26 - 2022-08-10 14:34 - 000001498 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog 2023-01-11 10:32 - 2020-09-06 13:47 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-01-11 07:16 - 2014-04-15 17:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-01-11 07:00 - 2014-04-15 17:43 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-01-09 06:06 - 2017-04-20 17:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-09 06:06 - 2017-04-20 17:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2023-01-08 19:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-01-07 13:31 - 2020-09-06 13:58 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-01-07 13:31 - 2019-12-07 15:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat 2023-01-07 13:31 - 2019-12-07 15:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat 2023-01-06 16:21 - 2022-01-11 19:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2023-01-06 16:20 - 2014-04-15 17:12 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-06 07:16 - 2020-09-06 14:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software 2023-01-05 06:45 - 2018-07-06 10:07 - 000000000 ___RD C:\Users\Utilisateur\Documents\Scanned Documents 2023-01-04 05:54 - 2020-09-06 14:17 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-04 05:54 - 2020-09-06 14:17 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-01-03 16:45 - 2015-04-25 05:32 - 000000000 ____D C:\Users\Utilisateur\Documents\PETANQUE 2023-01-01 17:07 - 2022-08-23 06:10 - 000000000 ____D C:\WINDOWS\Minidump 2022-12-31 20:15 - 2022-09-08 11:47 - 000000000 ____D C:\Users\Utilisateur\Documents\ADMR MONS 2022-12-24 18:50 - 2022-09-01 09:44 - 000000000 ____D C:\Users\Utilisateur\Documents\Facture hébergement Christophe 2022-12-24 18:45 - 2018-07-09 15:50 - 000000000 ____D C:\Users\Utilisateur\Documents\Articles presse 2022-12-24 18:42 - 2016-03-08 14:32 - 000000000 ____D C:\Users\Utilisateur\Documents\PETIT NICE 2022-12-24 18:07 - 2018-07-06 10:07 - 000000000 ____D C:\Users\Utilisateur\Documents\Fax 2022-12-23 06:59 - 2022-09-15 04:39 - 000002189 _____ C:\Users\Utilisateur\Documents\Liste des abonnés à la lettre mensuelle du site.csv ==================== Fichiers à la racine de certains dossiers ======== 2016-02-12 14:40 - 2016-02-12 15:13 - 000690072 _____ (Dropbox, Inc.) C:\Users\Utilisateur\DropboxInstaller.exe 2020-09-03 15:12 - 2020-09-03 15:12 - 000000128 _____ () C:\Users\Utilisateur\AppData\Roaming\PUTTY.RND 2017-01-01 17:25 - 2017-01-19 13:04 - 000004608 _____ () C:\Users\Utilisateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-09-03 15:07 - 2020-09-07 09:56 - 000000128 _____ () C:\Users\Utilisateur\AppData\Local\PUTTY.RND 2015-02-25 20:29 - 2018-05-13 08:31 - 000007605 _____ () C:\Users\Utilisateur\AppData\Local\resmon.resmoncfg ==================== SigCheckExt ========================= 2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-07-12 19:58 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-12 20:18 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2014-11-19 22:12 - 2014-10-29 02:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2014-11-19 22:14 - 2014-10-29 02:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000057344 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll 2010-01-19 15:12 - 2010-01-19 15:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL 2009-11-27 12:15 - 2009-11-27 12:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll 2016-07-16 12:41 - 2016-07-16 12:41 - 003447296 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPScanTRDrvWn8.dll 2016-07-16 12:41 - 2016-07-16 12:41 - 000303616 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia2DrvRootWn8.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000079872 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll 2014-05-20 23:33 - 2014-05-20 23:33 - 000182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3621.dll 2014-08-13 23:24 - 2014-08-13 23:24 - 000182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3907.dll 2014-10-14 22:50 - 2014-10-14 22:50 - 000183296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3977.dll 2015-03-06 02:17 - 2015-03-06 02:17 - 000183296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4156.dll 2015-03-19 20:02 - 2015-03-19 20:02 - 000183296 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4170.dll 2015-06-27 00:03 - 2015-06-27 00:03 - 000206848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4256.dll 2017-04-12 20:19 - 2017-03-28 06:28 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2020-09-01 16:29 - 2020-09-01 16:29 - 000562688 _____ (Open-Shell) C:\WINDOWS\system32\StartMenuHelper64.dll 2015-08-19 19:56 - 2015-07-22 15:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2016-11-26 19:44 - 2016-11-15 21:22 - 000096256 _____ (Wondershare Software) C:\WINDOWS\system32\WSPDFelementMonitor.dll 2015-04-11 20:34 - 2015-03-14 02:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2015-06-02 20:00 - 2015-06-02 20:00 - 000002560 _____ C:\WINDOWS\_MSRSTRT.EXE 2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2017-08-23 16:15 - 1998-07-12 23:00 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CMDLGFR.DLL 2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2016-11-29 19:43 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\WINDOWS\SysWOW64\divx.dll 2007-04-27 09:43 - 2007-04-27 09:43 - 000120200 _____ () C:\WINDOWS\SysWOW64\DLLDEV32i.dll 2022-11-06 15:31 - 2008-05-15 19:57 - 000151552 _____ (Machine) C:\WINDOWS\SysWOW64\DMSI.DLL 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2017-08-23 16:15 - 1998-07-12 23:00 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FLXGDFR.DLL 2022-11-06 15:31 - 2003-12-22 00:07 - 001129232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20.DLL 2022-11-06 15:31 - 2003-12-22 00:07 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FM20FRA.DLL 2022-11-06 15:31 - 2005-07-06 18:55 - 000147456 _____ (GDCL (hxxp://www.gdcl.co.uk)) C:\WINDOWS\SysWOW64\FSFWrap.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000050688 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000034816 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll 2017-03-16 05:55 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2017-08-23 16:15 - 2006-11-16 14:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETFR.DLL 2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2010-09-07 17:32 - 2010-09-07 17:32 - 000051712 _____ C:\WINDOWS\SysWOW64\JPCSC.dll 2016-11-29 19:43 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\WINDOWS\SysWOW64\Lagarith.dll 2016-11-29 19:43 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\WINDOWS\SysWOW64\mcdvd_32.dll 2016-11-29 19:43 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg4c32.dll 2015-10-30 08:19 - 2016-09-14 06:38 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 08:19 - 2016-09-14 06:38 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2017-08-23 16:15 - 1998-07-13 00:00 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSCMCFR.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTDFMT.DLL 2016-09-02 14:13 - 2016-09-02 14:13 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2022-11-06 15:31 - 2003-12-22 02:29 - 000011264 _____ C:\WINDOWS\SysWOW64\OGG.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000151552 _____ C:\WINDOWS\SysWOW64\OggDS.dll 2017-08-23 16:15 - 1998-07-12 23:00 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCCLPFR.DLL 2014-05-21 09:36 - 2014-05-21 09:36 - 000265797 _____ (Matsushita Electric Industrial Co., Ltd.) C:\WINDOWS\SysWOW64\pdvcodec.dll 2014-10-01 14:14 - 2010-08-30 07:34 - 000536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll 2020-09-01 16:31 - 2020-09-01 16:31 - 000461312 _____ (Open-Shell) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll 2014-04-15 17:12 - 2011-03-02 11:43 - 000175616 _____ C:\WINDOWS\SysWOW64\unrar.dll 2017-08-23 16:15 - 2000-10-01 23:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb6fr.dll 2022-11-06 15:31 - 2003-12-22 02:29 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6STKIT.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000368640 _____ (Gabest) C:\WINDOWS\SysWOW64\VOBSUB.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000118784 _____ C:\WINDOWS\SysWOW64\VORBIS.DLL 2022-11-06 15:31 - 2003-12-22 02:29 - 000454656 _____ C:\WINDOWS\SysWOW64\vorbisenc.dll 2016-11-29 19:43 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll 2017-08-23 16:15 - 1998-07-12 23:00 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WINSKFR.dll 2016-11-29 19:43 - 2004-07-03 19:59 - 000524288 _____ C:\WINDOWS\SysWOW64\xvidcore.dll 2016-11-29 19:43 - 2004-07-03 20:08 - 000139264 _____ C:\WINDOWS\SysWOW64\xvidvfw.dll 2022-11-06 15:29 - 2022-11-06 15:30 - 025674897 _____ (Satirik ) C:\Users\Utilisateur\Downloads\DMSI-v1.11.2.exe 2023-01-13 06:55 - 2023-01-13 06:55 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64(1).exe 2023-01-13 06:58 - 2023-01-13 06:59 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64(2).exe 2023-01-13 06:50 - 2023-01-13 06:50 - 002376704 _____ (Farbar) C:\Users\Utilisateur\Downloads\FRST64.exe 2022-03-08 06:44 - 2022-03-08 06:58 - 625280848 _____ (Dominique Ottello aka Otomatic ) C:\Users\Utilisateur\Downloads\wampserver3.2.6_x64.exe 2023-01-13 06:19 - 2023-01-13 06:19 - 003510472 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {ed3d88dd-bb53-11e9-bc68-880f27054492} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {ed3d88e0-bb53-11e9-bc68-880f27054492} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {ed3d88dd-bb53-11e9-bc68-880f27054492} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {ed3d88e0-bb53-11e9-bc68-880f27054492} device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{ed3d88e1-bb53-11e9-bc68-880f27054492} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{ed3d88e1-bb53-11e9-bc68-880f27054492} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {f8f76a6f-5c39-11e8-9574-aa2c3e6534cc} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{f8f76a70-5c39-11e8-9574-aa2c3e6534cc} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{f8f76a70-5c39-11e8-9574-aa2c3e6534cc} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {ed3d88dd-bb53-11e9-bc68-880f27054492} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {ed3d88e0-bb53-11e9-bc68-880f27054492} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {ed3d88e1-bb53-11e9-bc68-880f27054492} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume3 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================