Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2023 Exécuté par Didier (administrateur) sur DESKTOP-8P2K17U (Dell Inc. Precision 3630 Tower) (19-09-2023 13:22:41) Exécuté depuis C:\Users\Administrateur\Desktop\FRST64.exe Profils chargés: Didier Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.3448 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdtbnmh.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe (C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe (C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe (C:\Users\Administrateur\AppData\Local\SumatraPDF\SumatraPDF.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Dell Inc -> ) C:\Program Files (x86)\DELL\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (explorer.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe (explorer.exe ->) (CERTIF_NICOLAS_COOLMAN -> Nicolas Coolman) [Fichier non signé] C:\Users\Administrateur\Desktop\ZHPSuite.exe (explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe (explorer.exe ->) (Krzysztof Kowalczyk -> Krzysztof Kowalczyk) C:\Users\Administrateur\AppData\Local\SumatraPDF\SumatraPDF.exe (explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe <4> (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe (explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <17> (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\safepay\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\DELL\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_981d034327bfbdcc\LMS.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe <2> (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Administrateur\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_18c775e07a6aaafd\RtkAudUService64.exe [1257032 2021-04-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [587480 2018-06-18] (Acronis International GmbH -> ) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé] HKLM\...\Run: [PrintDisp] => C:\Windows\system32\PrintDisp.exe [586888 2018-09-20] (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) HKLM\...\Run: [DellPoaEvents] => C:\Program Files\Dell\PPO\DellPoaEvents\DellPoaEventsLauncher.exe [179904 2021-05-24] (Dell Inc -> ) HKLM\...\Run: [] => [X] HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1061912 2023-09-03] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_444d52e511fbcc11\WavesSvc64.exe [1237696 2020-12-06] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [UniConverterUpdateHelper] => C:\Program Files\Wondershare\UniConverter 14 for Windows\WSVCUUpdateHelper.exe [41712 2023-05-04] (Wondershare Technology Group Co.,Ltd -> ) HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [492072 2023-06-12] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4871640 2021-12-02] (Acronis International GmbH -> ) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11559648 2023-09-06] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2018-06-18] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) HKU\S-1-5-21-1824055232-1964039659-4294701923-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-1824055232-1964039659-4294701923-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31342880 2023-09-15] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-1824055232-1964039659-4294701923-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\didie\AppData\Local\WebEx\WebexHost.exe [7595448 2022-03-31] (Cisco WebEx LLC -> Cisco Webex LLC) HKU\S-1-5-21-1824055232-1964039659-4294701923-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-1824055232-1964039659-4294701923-500\...\Run: [CiscoMeetingDaemon] => C:\Users\Administrateur\AppData\Local\WebEx\WebexHost.exe [7975008 2023-01-20] (Cisco WebEx LLC -> Cisco Webex LLC) HKU\S-1-5-21-1824055232-1964039659-4294701923-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4219448 2023-09-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1824055232-1964039659-4294701923-500\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31342880 2023-09-15] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\...\Windows x64\Print Processors\ActMaskR: C:\Windows\System32\spool\prtprocs\x64\ActPrint.dll [51848 2018-09-14] (ActMask Group Co., Ltd -> ActMask Co.,Ltd) HKLM\...\Windows x64\Print Processors\Canon TS8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEK.DLL [529408 2020-06-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8000 series: CNMLMDD.DLL (Pas de fichier) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8200 series: C:\WINDOWS\system32\CNMLMEK.DLL [950272 2020-06-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-02-09] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.88\Installer\chrmstp.exe [2023-09-19] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install GroupPolicy-Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {E446E27B-F061-4689-9558-AF3DE9B33DA0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.) Task: {2F2AA02C-0FD6-4526-8A2F-1D81C4A24EDA} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-08-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {2023D521-B6D3-4C38-B4AF-EEA0A55697DE} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1645240 2020-08-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {AE99769C-3D78-4450-9342-4F6C7F73116B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {82E0301E-FD69-40FC-B3C5-8606DF310F31} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.259\WatchDog.exe [937000 2023-07-27] (Bitdefender SRL -> Bitdefender) Task: {F26470BF-A80D-4711-8BD3-54DA707C92C5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {C14E19E9-1754-46AF-A509-2B43FE5B6A18} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "bea0b752-1271-42d2-a2a6-b4efc74cae6a" --version "6.16.10662" --silent Task: {0B02D46D-FCA8-4C18-8941-5C818A823A37} - System32\Tasks\CCleanerSkipUAC - didie => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {C61CEBDE-00EE-4927-A19B-D8F9977F896C} - System32\Tasks\CCleanerSkipUAC - Didier => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {AE048416-B975-4D9B-A775-69CC0A03C8E1} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [738144 2023-04-07] (Dell Inc -> Dell Inc.) Task: {F43D148E-8B9E-4176-A964-CA598EF43342} - System32\Tasks\Dell\PPO SM Manual Update => C:\Program Files\Dell\PPO\DcsuWrap\DcsuWrap.exe [56000 2021-05-24] (Dell Inc -> Dell Inc.) Task: {E00475BC-87B9-4210-8DF7-96AF09939BBD} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {5287FD77-5F5E-4170-8F6D-310ECF8DEE41} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {9BAD7C8F-FCEC-4326-8181-F887FB4A2094} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Administrateur\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-09-16] (ESET, spol. s r.o. -> ESET) Task: {7DF9D151-27F8-45B2-9C18-FD82A3A94584} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Administrateur\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-09-16] (ESET, spol. s r.o. -> ESET) Task: {7F711A15-867D-48D1-B223-947CCD9B3722} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31008 2023-09-15] (Garmin International, Inc. -> ) Task: {66D714E1-68EC-40D7-86BD-6792BADFFC1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-27] (Google Inc -> Google Inc.) Task: {6A59CB30-F9EE-4243-B0DD-8E0A9B922B18} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-03-27] (Google Inc -> Google Inc.) Task: {D1FF18EA-DCB0-412F-BBE6-395B0F395D7A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {E0C8D815-91F6-4325-9EF4-6121C02FADAA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {C732FAFA-1CE4-4C64-B634-DBF55646D82C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {CE11F5F8-7B72-48B3-9BD8-AD2DF66DDB57} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124464 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {6101D43C-CEAE-4F6A-B8E7-AB987159F53E} - System32\Tasks\Microsoft\Windows\PLA\DPOMONITOR-Acronis True Image 2018 => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {7252A374-FC59-4A1C-99BC-E2CCDC747864} - System32\Tasks\Microsoft\Windows\PLA\DPOMONITOR-Captvty => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\WINDOWS\system32\pla.dll [1493504 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {EEA357BF-BA4E-4004-9FB4-0F58A9650F16} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1645240 2020-08-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {9BE716EA-7BBB-440B-9430-2BFAC26BB63C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675232 2023-09-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {8E0CEBD1-F228-416F-830F-1B2E33227F7A} - System32\Tasks\PowerToys\Autorun for Didier => C:\Program Files\PowerToys\PowerToys.exe [1118128 2023-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {819E9E84-ECB3-4BAD-8528-351DAD4965D5} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-10-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {862A4CD3-7947-4EEA-9BED-5F0FA4201068} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-10-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{95425393-d722-4344-a1f4-e599e1a049ea}: [NameServer] 198.51.100.1 Tcpip\..\Interfaces\{95425393-d722-4344-a1f4-e599e1a049ea}: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{e9188a28-666c-4929-be70-191c070c74e6}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-11] Edge Extension: (Bitdefender Anti-tracker) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2023-02-04] Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-11] Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl] Edge HKLM-x32\...\Edge\Extension: [pdhdldaneekjpoaldekpgomomeabpnek] FireFox: ======== FF DefaultProfile: tfe8k61q.default-1618049054743 FF ProfilePath: C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743 [2023-09-19] FF Session Restore: Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743 -> est activé. FF Notifications: Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743 -> hxxps://www.olyrix.com FF Extension: (Facebook Container) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\@contain-facebook.xpi [2023-07-20] FF Extension: (YouTube MP4 Downloader) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\@youtube-mp4-downloader.xpi [2022-04-29] FF Extension: (Traduisez des sites web dans votre navigateur sans avoir recours au cloud.) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\firefox-translations-addon@mozilla.org.xpi [2023-07-22] FF Extension: (I don't care about cookies) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-08-11] FF Extension: (Behind The Overlay) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\jid1-Y3WfE7td45aWDw@jetpack.xpi [2022-04-29] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-09-08] FF Extension: (Qwant VIPrivacy) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\qwantcomforfirefox@jetpack.xpi [2022-09-01] FF Extension: (Save as PDF) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2022-04-29] FF Extension: (uBlock Origin) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\uBlock0@raymondhill.net.xpi [2023-09-16] FF Extension: (Proxy VPN gratuit et bloqueur de publicités - Planet VPN) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\{1935b298-ac62-11ec-b909-0242ac120002}.xpi [2022-12-08] FF Extension: (Opt-out for Analytics™) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\{2f182d41-fd03-4a6d-938d-081419586c37}.xpi [2022-04-29] FF Extension: (QueChoisir - Oqif) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\{7b259f2a-2c8f-4f65-a9d3-ee2b090f4f73}.xpi [2022-06-08] FF Extension: (Video DownloadHelper) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-25] FF Extension: (YouTube Downloader) - C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\tfe8k61q.default-1618049054743\Extensions\{be158d2c-8b74-4963-bea5-6dd0638bf4d9}.xpi [2022-04-29] FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security App\bdwteff.xpi [2023-07-12] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi => non trouvé(e) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext [2023-07-13] [] [non signé] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi => non trouvé(e) FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security App\bdtbext FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.13 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.9.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-10] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2022-10-31] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2022-10-31] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2023-06-30] CHR Extension: (Protection Web Avira) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2023-05-23] CHR Extension: (Bitdefender Wallet) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2023-05-23] CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-23] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2023-05-23] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-23] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKU\S-1-5-21-1824055232-1964039659-4294701923-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2728304 2021-12-02] (Acronis International GmbH -> Acronis International GmbH) R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1218920 2018-06-18] (Acronis International GmbH -> ) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.) R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6096688 2021-12-09] (Acronis International GmbH -> ) S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [439848 2023-06-07] (Bitdefender SRL -> AnchorFree Inc.) R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [842264 2023-09-03] (Bitdefender SRL -> Bitdefender) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [842264 2023-09-03] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [842264 2023-09-03] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2946088 2023-09-03] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2560552 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [842264 2023-09-03] (Bitdefender SRL -> Bitdefender) S2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [450088 2023-06-12] (Bitdefender SRL -> Bitdefender) S2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-16] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-09-06] (Dropbox, Inc -> Dropbox, Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [55712 2023-08-16] (Dell Inc -> ) S2 Dell WMI Service; C:\Program Files (x86)\DELL\USBTypeC Status Display\DellOSDService.exe [102400 2018-03-13] () [Fichier non signé] R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-07-28] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-12-09] (Dell Inc -> Dell) S2 DpoMonitorSvc; C:\Program Files\Dell\PPO\dpoMonitorSvc.exe [1383616 2021-05-24] (Dell Inc -> Dell Inc.) S2 dpoTelemetrySvc; C:\Program Files\Dell\PPO\Telemetry\dpoTelemetrySvc.exe [242880 2021-05-24] (Dell Inc -> Dell Inc.) S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-11-27] (Mixbyte Inc -> Freemake) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072008 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9287960 2023-09-19] (Malwarebytes Inc. -> Malwarebytes) S2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4882992 2021-12-02] (Acronis International GmbH -> Acronis International GmbH) R2 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-06-18] (Acronis International GmbH -> Acronis International GmbH) R2 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1753528 2021-12-02] (Acronis International GmbH -> ) S2 NativePushService; C:\Users\Administrateur\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare) S2 poaService; C:\Program Files\Dell\PPO\poaService.exe [1750208 2021-05-24] (Dell Inc -> Dell Inc.) S2 PoaSMSrv; C:\Program Files\Dell\PPO\poaSmSrv.exe [426176 2021-05-24] (Dell Inc -> Dell Inc.) S2 poaTaServ; C:\Program Files\Dell\PPO\poaTaServ.exe [1509056 2021-05-24] (Dell Inc -> Dell Inc.) S2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [659496 2023-07-27] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402264 2023-09-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2023-04-07] (Dell Inc -> Dell Inc.) R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7157960 2021-12-02] (Acronis International GmbH -> ) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20802872 2023-09-08] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [288792 2023-09-03] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [842264 2023-09-03] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-31] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [53088 2022-05-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0379161.inf_amd64_3765de97456dc3a2\B379069\amdkmdag.sys [91993056 2022-05-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [6205488 2023-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\System32\DRIVERS\bddci.sys [798128 2022-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R3 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [49200 2023-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL) S3 bduefiscan; C:\WINDOWS\system32\DRIVERS\bduefiscan.sys [39840 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R1 bdvpn_netfilter; C:\WINDOWS\System32\drivers\bdvpn_netfilter.sys [94600 2021-09-16] (Pango Inc. -> Pango Inc) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [282624 2023-05-10] (Microsoft Corporation) [Fichier non signé] R3 CyUcmClient_Device; C:\WINDOWS\System32\drivers\CyUcmClient.sys [156600 2019-01-31] (Cypress Semiconductor Corporation -> Cypress Semiconductor Corporation) R3 CYUSB3; C:\WINDOWS\System32\Drivers\CYUSB3.sys [109208 2019-08-22] (Cypress Semiconductor Corporation -> Cypress Semiconductor) S3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35208 2020-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46528 2023-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [569392 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [379664 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [182832 2018-12-06] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1347496 2023-09-03] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) R2 Ignisv2; C:\WINDOWS\system32\DRIVERS\ignisv2.sys [165312 2023-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [222272 2023-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-09-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 POADrvr; C:\WINDOWS\system32\drivers\POADrvr.sys [40872 2019-09-08] (DellDPO(driver) -> Dell Computer Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [633248 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [522136 2023-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2021-12-09] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [455968 2022-10-31] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-31] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-19 13:15 - 2023-09-19 13:15 - 000305845 _____ C:\Users\Administrateur\Desktop\ZHPDiag.txt 2023-09-19 11:27 - 2023-09-19 11:27 - 000001533 _____ C:\Users\Administrateur\Desktop\MBAM.txt 2023-09-19 11:13 - 2023-09-19 11:14 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Malwarebytes 2023-09-19 11:13 - 2023-09-19 11:13 - 000002043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-09-19 11:13 - 2023-09-19 11:13 - 000002031 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-09-19 11:13 - 2023-09-19 11:13 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-09-19 11:13 - 2023-09-19 11:13 - 000000000 ____D C:\Program Files\Malwarebytes 2023-09-19 10:50 - 2023-09-19 10:50 - 008791352 _____ (Malwarebytes) C:\Users\Administrateur\Desktop\adwcleaner_8.4.0.exe 2023-09-19 10:45 - 2023-09-19 10:45 - 000500248 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-19 10:45 - 2023-09-19 10:45 - 000003128 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2023-09-19 10:45 - 2023-09-19 10:45 - 000003114 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2023-09-19 10:44 - 2023-09-19 10:44 - 000007776 _____ C:\Users\Administrateur\Desktop\ZHPCleaner (R).txt 2023-09-19 10:23 - 2023-09-19 10:23 - 000007704 _____ C:\Users\Administrateur\Desktop\ZHPCleaner (S).txt 2023-09-19 10:11 - 2023-09-19 10:11 - 000000935 _____ C:\Users\Administrateur\Desktop\ZHPCleaner.lnk 2023-09-19 10:10 - 2023-09-19 10:10 - 003343008 _____ (Nicolas Coolman) C:\Users\Administrateur\Desktop\ZHPCleaner.exe 2023-09-19 07:49 - 2023-09-19 07:49 - 000089432 _____ C:\Users\Administrateur\Desktop\Shortcut.txt 2023-09-19 07:47 - 2023-09-19 07:49 - 000077077 _____ C:\Users\Administrateur\Desktop\Addition.txt 2023-09-19 07:45 - 2023-09-19 13:23 - 000043173 _____ C:\Users\Administrateur\Desktop\FRST.txt 2023-09-19 07:45 - 2023-09-19 13:23 - 000000000 ____D C:\FRST 2023-09-19 07:44 - 2023-09-19 07:44 - 002382848 _____ (Farbar) C:\Users\Administrateur\Desktop\FRST64.exe 2023-09-19 07:32 - 2023-09-19 07:32 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1824055232-1964039659-4294701923-500 2023-09-19 07:32 - 2023-09-19 07:32 - 000002493 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-09-18 14:51 - 2023-09-18 14:51 - 000000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2023-09-18 13:59 - 2023-09-19 10:11 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ZHP 2023-09-18 13:59 - 2023-09-18 13:59 - 003511456 _____ (Nicolas Coolman) C:\Users\Administrateur\Desktop\ZHPSuite.exe 2023-09-18 13:59 - 2023-09-18 13:59 - 000000923 _____ C:\Users\Administrateur\Desktop\ZHPSuite.lnk 2023-09-18 13:57 - 2023-09-18 13:57 - 003343008 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ptFcjK7b.exe.part 2023-09-17 17:23 - 2023-09-17 17:23 - 000003626 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2023-09-17 17:23 - 2023-09-17 17:23 - 000001965 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2023-09-16 22:49 - 2023-09-16 22:49 - 000003878 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2023-09-16 22:49 - 2023-09-16 22:49 - 000003436 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2023-09-16 20:57 - 2023-09-16 20:57 - 000001346 _____ C:\Users\Administrateur\Desktop\ESET Online Scanner.lnk 2023-09-16 20:56 - 2023-09-16 20:56 - 000001452 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-09-16 18:18 - 2023-09-19 10:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2023-09-16 14:43 - 2023-09-16 15:55 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-09-16 14:43 - 2023-09-16 14:43 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-09-16 14:43 - 2023-09-16 14:43 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-09-16 14:37 - 2023-09-16 14:37 - 000000000 ___HD C:\$WinREAgent 2023-09-16 14:32 - 2023-09-19 10:45 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-09-09 21:03 - 2023-09-09 21:03 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-09-08 13:18 - 2023-09-08 13:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-09-06 00:17 - 2023-09-06 00:17 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2023-08-12 16:28 - 2023-09-19 10:55 - 000000000 ____D C:\AdwCleaner 2023-08-12 08:23 - 2023-08-12 08:23 - 000000000 ____D C:\WINDOWS\{02544E5D-F075-4CE7-AE27-87E2D37FC3B0} 2023-08-12 08:06 - 2023-08-12 08:06 - 000091092 _____ C:\ProgramData\agent.update.1691820406.bdinstall.v2.bin 2023-08-10 16:25 - 2023-09-19 10:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys 2023-07-22 18:33 - 2023-07-22 18:35 - 014876672 _____ C:\Users\Administrateur\Downloads\BYD, l'autre étoile de la voiture électrique Les Echos.mp4.part 2023-07-22 18:33 - 2023-07-22 18:33 - 000000000 _____ C:\Users\Administrateur\Downloads\BYD, l'autre étoile de la voiture électrique Les Echos.mp4 2023-07-19 17:48 - 2023-07-23 15:44 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\avidemux 2023-07-19 17:48 - 2023-07-19 17:48 - 000000000 ____D C:\Users\Administrateur\AppData\Local\avidemux 2023-07-19 17:17 - 2023-07-19 17:17 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avidemux 2.8 VC++ 64bits 2023-07-19 17:17 - 2023-07-19 17:17 - 000000000 ____D C:\Program Files\Avidemux 2.8 VC++ 64bits 2023-07-14 18:14 - 2023-07-14 18:14 - 000000279 _____ C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Corbeille.lnk 2023-07-13 11:39 - 2023-07-13 11:39 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Bitdefender Security App 2023-07-13 11:36 - 2023-07-13 11:36 - 000002031 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2023-07-12 16:44 - 2023-07-12 16:44 - 000000000 ____D C:\WINDOWS\{189289C1-46B0-40C1-9BBE-12B29927265E} 2023-07-03 17:54 - 2023-07-03 17:54 - 000002087 _____ C:\Users\Administrateur\Desktop\IJ Printer Assistant Tool.lnk 2023-07-03 17:42 - 2023-07-03 17:42 - 000002244 _____ C:\Users\Administrateur\Desktop\Navigation privée de Firefox.lnk 2023-07-03 17:42 - 2023-07-03 17:42 - 000001296 _____ C:\Users\Administrateur\Desktop\Acronis True Image.lnk 2023-07-03 17:41 - 2023-07-03 17:41 - 000002499 _____ C:\Users\Administrateur\Desktop\Word.lnk 2023-07-03 17:41 - 2023-07-03 17:41 - 000001959 _____ C:\Users\Administrateur\Desktop\TwixRoute.lnk 2023-07-03 17:41 - 2023-07-03 17:41 - 000001950 _____ C:\Users\Administrateur\Desktop\TwixTel.lnk 2023-07-03 17:40 - 2023-07-03 17:40 - 000002516 _____ C:\Users\Administrateur\Desktop\PowerPoint.lnk 2023-07-03 17:37 - 2023-07-03 17:37 - 000002489 _____ C:\Users\Administrateur\Desktop\Excel.lnk 2023-07-03 17:37 - 2023-07-03 17:37 - 000001832 _____ C:\Users\Administrateur\Desktop\CrystalDiskInfo (64bit).lnk 2023-07-03 17:36 - 2023-07-03 17:36 - 000002516 _____ C:\Users\Administrateur\Desktop\Access.lnk 2023-07-03 16:31 - 2023-07-03 16:31 - 000248540 _____ C:\ProgramData\vpn.1688394675.bdinstall.v2.bin 2023-07-03 16:31 - 2023-07-03 16:31 - 000089400 _____ C:\ProgramData\vpn.uninstall.1688394676.bdinstall.v2.bin 2023-07-03 16:31 - 2023-07-03 16:31 - 000002203 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk 2023-07-03 16:31 - 2023-07-03 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN 2023-07-03 11:40 - 2023-07-03 11:40 - 000001513 _____ C:\Users\Administrateur\Documents\kprm-20220326113542.txt 2023-07-03 10:46 - 2023-07-03 10:46 - 002363152 _____ (kernel-panik) C:\Users\Administrateur\Downloads\KRUtYpQE.exe.part 2023-07-03 10:43 - 2023-07-03 10:43 - 000002284 _____ C:\Users\didie\Desktop\Google Chrome.lnk 2023-07-03 10:43 - 2023-07-03 10:43 - 000000000 ____D C:\Users\didie\AppData\Local\Bitdefender 2023-07-03 10:43 - 2023-07-03 10:43 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2023-06-30 16:33 - 2023-05-10 06:47 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys 2023-06-29 09:17 - 2023-09-19 13:15 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\ZHP 2023-06-29 08:10 - 2023-06-29 08:10 - 000000000 ____D C:\Users\Administrateur\AppData\Local\mbam 2023-06-28 17:31 - 2023-06-28 17:31 - 000000000 ____D C:\ProgramData\IObit 2023-06-28 17:31 - 2023-06-28 17:31 - 000000000 ____D C:\Program Files (x86)\IObit 2023-06-25 21:17 - 2023-06-25 21:17 - 000000000 ____D C:\Users\Administrateur\AppData\Local\artevod offline player-updater ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-09-19 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-09-19 13:06 - 2020-09-27 07:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-09-19 12:35 - 2021-12-15 14:34 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-09-19 12:35 - 2019-03-27 09:47 - 000000000 ____D C:\Program Files (x86)\Google 2023-09-19 12:10 - 2022-02-09 13:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-09-19 12:09 - 2018-12-10 11:29 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\Mozilla 2023-09-19 11:13 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-09-19 11:11 - 2019-03-04 13:25 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2023-09-19 10:51 - 2021-05-28 07:24 - 000000000 ____D C:\Program Files\TeamViewer 2023-09-19 10:50 - 2020-10-29 14:52 - 001772726 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-09-19 10:50 - 2019-12-07 16:50 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat 2023-09-19 10:50 - 2019-12-07 16:50 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat 2023-09-19 10:50 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-09-19 10:46 - 2020-06-24 08:39 - 000000000 ____D C:\Program Files\CCleaner 2023-09-19 10:45 - 2022-04-27 08:42 - 000008192 ___SH C:\DumpStack.log.tmp 2023-09-19 10:45 - 2020-11-16 11:41 - 000001591 _____ C:\WINDOWS\system32\config\VSMIDK 2023-09-19 10:45 - 2020-09-27 09:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-09-19 10:45 - 2018-12-06 18:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-09-19 10:45 - 2018-12-01 19:59 - 000000000 ____D C:\Intel 2023-09-19 10:44 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2023-09-19 10:44 - 2018-12-10 11:11 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ClassicShell 2023-09-19 10:44 - 2018-12-01 20:00 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2023-09-19 10:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-09-19 10:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-09-19 07:33 - 2021-01-02 12:59 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache 2023-09-19 07:32 - 2022-04-27 23:12 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1824055232-1964039659-4294701923-500 2023-09-18 19:47 - 2018-12-10 11:10 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages 2023-09-18 19:03 - 2022-04-29 11:07 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Word 2023-09-18 13:24 - 2022-04-29 16:01 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Excel 2023-09-17 20:00 - 2022-04-29 11:07 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Office 2023-09-17 20:00 - 2021-01-02 12:59 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\TeamViewer 2023-09-17 19:51 - 2022-04-29 15:00 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\vlc 2023-09-17 17:23 - 2019-02-22 18:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2023-09-17 17:23 - 2018-12-06 21:48 - 000000000 ____D C:\ProgramData\Garmin 2023-09-17 17:23 - 2018-12-06 21:48 - 000000000 ____D C:\Program Files (x86)\Garmin 2023-09-17 17:23 - 2018-12-01 19:59 - 000000000 ____D C:\ProgramData\Package Cache 2023-09-17 11:41 - 2019-12-07 11:03 - 000131072 _____ C:\WINDOWS\system32\config\ELAM 2023-09-17 10:10 - 2018-12-06 19:30 - 000001296 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2023-09-16 20:56 - 2022-06-15 13:22 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ESET 2023-09-16 15:59 - 2018-12-06 18:48 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-09-16 15:55 - 2019-09-11 17:50 - 000001216 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2023-09-16 15:55 - 2019-09-11 17:50 - 000001212 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2023-09-16 15:54 - 2019-12-07 16:53 - 000000000 ___SD C:\WINDOWS\system32\AppV 2023-09-16 15:54 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-09-16 15:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-09-16 15:24 - 2020-10-29 14:55 - 000004276 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2023-09-16 15:24 - 2020-10-29 14:55 - 000004044 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2023-09-16 14:46 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-09-16 14:43 - 2020-09-27 09:36 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-09-16 14:35 - 2020-05-20 10:03 - 000000000 ____D C:\Program Files\dotnet 2023-09-16 14:35 - 2018-12-06 20:33 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-16 14:32 - 2018-12-06 20:33 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-09-16 14:30 - 2020-10-29 14:55 - 000003884 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-09-16 14:30 - 2020-10-29 14:55 - 000003760 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-09-16 14:29 - 2018-12-07 10:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-09-16 14:25 - 2020-09-27 09:36 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-08 13:18 - 2019-09-11 17:50 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-09-04 17:14 - 2018-12-07 10:00 - 000000000 ____D C:\ProgramData\CanonIJPLM 2023-09-04 08:02 - 2020-04-20 19:37 - 000000000 ____D C:\ProgramData\Wondershare Filmora 2023-09-03 21:11 - 2021-02-20 19:25 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-08-24 07:32 - 2022-05-11 06:58 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Dropbox 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {d8170687-85fa-4716-bafd-087205d0db72} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {9f9c9e51-d42f-4462-a27a-7d419da18045} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {6E69C50F-9E68-45CD-AF72-BE61E5BCC1C6} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {58E22E6B-0E58-4E93-AF9A-036556EB66F5} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {4cb0e94d-1a17-4a3c-86bd-ba03fd44a9ac} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {4B87B69A-4C70-4F14-B22E-F2F4D02E8420} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {29d6077f-6adb-42de-abac-1c60aeb0e237} 2023-08-23 16:41 - 2022-12-08 19:19 - 000000000 ____D C:\ProgramData\Intel Package Cache {05BC4EEB-70E9-4FDB-9A33-72482B0B128E} 2023-08-23 16:41 - 2020-11-24 16:57 - 000000000 ____D C:\ProgramData\Intel Package Cache {1CEAC85D-2590-4760-800F-8DE5E91F3700} 2023-08-23 13:37 - 2022-10-13 08:23 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps 2023-08-21 14:31 - 2023-05-30 10:59 - 000000020 _____ C:\WINDOWS\system32\Caad.db ==================== SigCheckExt ========================= 2020-02-09 11:48 - 2020-02-09 11:48 - 000116736 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll 2019-01-13 16:15 - 2013-11-03 21:18 - 001181152 _____ (ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) C:\WINDOWS\system32\PrtClient.exe 2019-01-13 16:15 - 2013-11-03 21:00 - 000532448 _____ (ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\WINDOWS\system32\PrtPass.exe 2018-07-15 14:15 - 2018-07-15 14:15 - 000291128 _____ (IvoSoft) C:\WINDOWS\system32\StartMenuHelper64.dll 2019-01-13 16:15 - 2018-12-01 19:46 - 004492800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wordpad.exe 2019-01-13 16:15 - 2008-01-19 09:36 - 001391616 _____ C:\WINDOWS\SysWOW64\ActPDF.dll 2019-02-25 10:19 - 2015-07-16 15:35 - 000929792 _____ (ActMask hxxp://www.all2pdf.com) C:\WINDOWS\SysWOW64\SaveTo.dll 2018-07-15 14:15 - 2018-07-15 14:15 - 000248120 _____ (IvoSoft) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll 2020-10-29 17:32 - 2017-12-18 06:00 - 000030720 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPDDD.DLL 2018-12-06 21:06 - 2017-12-18 06:00 - 000102912 _____ (CANON INC.) C:\WINDOWS\system32\spool\prtprocs\x64\CNMPPDD.DLL 2023-09-19 07:44 - 2023-09-19 07:44 - 002382848 _____ (Farbar) C:\Users\Administrateur\Desktop\FRST64.exe 2023-09-19 10:10 - 2023-09-19 10:10 - 003343008 _____ (Nicolas Coolman) C:\Users\Administrateur\Desktop\ZHPCleaner.exe 2023-09-18 13:59 - 2023-09-18 13:59 - 003511456 _____ (Nicolas Coolman) C:\Users\Administrateur\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {c914bf1f-c66d-11ec-971a-806e6f6e6963} {c914bf20-c66d-11ec-971a-806e6f6e6963} {c914bf22-c66d-11ec-971a-806e6f6e6963} timeout 1 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {253baaa4-19e5-11eb-9aeb-dc1ab4adb8e7} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {c914bf1f-c66d-11ec-971a-806e6f6e6963} description Diskette Drive Application logicielle (101fffff) -------------------------------- identificateur {c914bf20-c66d-11ec-971a-806e6f6e6963} description USB Storage Device Application logicielle (101fffff) -------------------------------- identificateur {c914bf22-c66d-11ec-971a-806e6f6e6963} device partition=\Device\HarddiskVolume3 path \EFI\Boot\BootX64.efi description Onboard NIC Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {253baaa6-19e5-11eb-9aeb-dc1ab4adb8e7} displaymessageoverride CommandPrompt recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {253baaa4-19e5-11eb-9aeb-dc1ab4adb8e7} nx OptIn bootmenupolicy Standard hypervisorlaunchtype Auto Chargeur de démarrage Windows ----------------------------- identificateur {253baaa6-19e5-11eb-9aeb-dc1ab4adb8e7} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{253baaa7-19e5-11eb-9aeb-dc1ab4adb8e7} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{253baaa7-19e5-11eb-9aeb-dc1ab4adb8e7} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {253baaa4-19e5-11eb-9aeb-dc1ab4adb8e7} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {253baaa6-19e5-11eb-9aeb-dc1ab4adb8e7} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {253baaa7-19e5-11eb-9aeb-dc1ab4adb8e7} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================