Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22.01.2024 Exécuté par yves (administrateur) sur BUREAU (Hewlett-Packard 110-042ef) (22-01-2024 13:42:45) Exécuté depuis C:\Users\yves\téléchargements\FRST64.exe Profils chargés: yves Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\ProgramData\myCANAL\nssm.exe ->) (Groupe Canal+ -> ) C:\ProgramData\myCANAL\myCANAL.Service.exe (explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.107.3215.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6> (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <20> (services.exe ->) () [Fichier non signé] C:\ProgramData\myCANAL\nssm.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Luis Cobian Dorta -> Luis Cobian, CobianSoft) C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Plex, Inc -> Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (services.exe ->) (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] C:\Program Files\mc_plus\UsageMonitor.WindowsService.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Wondershare Technology Group Co.,Ltd -> wondershare) C:\ProgramData\Wondershare\wsServices\WsidService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1813128 2015-11-09] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [CL-25-260122FF-3EA4-4581-9E0A-EBD85575D5A3] => "C:\Program Files\Common Files\SFR Cybersécurité\SetupInformation\CL-25-260122FF-3EA4-4581-9E0A-EBD85575D5A3\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-25-260122FF-3EA4-4581-9E0A-E (l'élément de données a 13 caractères en plus). (Pas de fichier) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (Shenzhen Yi Xing Investment Co., Ltd. -> iSkySoft) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [138214768 2022-11-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-39984328-2072628776-185655712-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\yves\AppData\Local\Microsoft\Teams\Update.exe [2453728 2021-04-24] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-39984328-2072628776-185655712-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-39984328-2072628776-185655712-1002\...\Run: [MicrosoftEdgeAutoLaunch_411110E8E6A59F8EAFECFBE436A46F46] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-39984328-2072628776-185655712-1007\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-39984328-2072628776-185655712-1007\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-39984328-2072628776-185655712-1007\...\Run: [MicrosoftEdgeAutoLaunch_5F8D847C9364893C9A4D3953E94291E7] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896784 2023-11-27] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-39984328-2072628776-185655712-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-39984328-2072628776-185655712-500\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\85.0.26.0\GoogleDriveFS.exe [58654496 2023-12-19] (Google LLC -> Google, Inc.) HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2013-01-08] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [365568 2012-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.225\Installer\chrmstp.exe [2024-01-19] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {E0ED6AA2-EAE1-474B-A330-C66ED9317125} - System32\Tasks\{7D1732BD-5788-48F0-A012-9A3A12495EAB} => "c:\program files\internet explorer\iexplore.exe" -> hxxp://ui.skype.com/ui/0/7.5.0.102/fr/abandoninstall?source=lightinstaller&page=tsInstall <==== ATTENTION Task: {29B9B88D-AA13-4533-BCA3-3E712710D315} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.) Task: {9C185537-EE38-4E07-8CAE-1A00692508D6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem122.0.6253.0{D8B8BEC7-9565-4FB1-B021-88FCFB77DECD} => C:\Program Files (x86)\Google\GoogleUpdater\122.0.6253.0\updater.exe [4652320 2024-01-17] (Google LLC -> Google LLC) <==== ATTENTION Task: {E54650B9-FDC3-4D5D-813F-03E8038D7178} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [703536 2023-10-30] (HP Inc. -> HP Inc.) Task: {4301105F-A1AF-4FCB-B138-C43476085C08} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2023-10-30] (HP Inc. -> HP Inc.) Task: {FFD27A3D-41D4-4E87-9E06-4ED40D7E01CF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231472 2023-10-30] (HP Inc. -> HP Inc.) Task: {82276881-CBE2-43FC-8033-34BD480CE4EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2023-10-30] (HP Inc. -> HP Inc.) Task: {F70A4FE2-7E20-4C83-AE93-45803A804C2E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1161264 2023-10-30] (HP Inc. -> HP Inc.) Task: {B613E7B4-74FB-4471-A52B-E3709085DF27} - System32\Tasks\HP AR Program Upload - 6e794499cce04eb1bd01d8a8d3d6816b02e82cabca544f32941dad43eeca6ff7 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {538E27C6-71C5-46C6-AD0F-9A319CE5A439} - System32\Tasks\HP AR Program Upload - 6f61c956b02d44c48b4f121c2dddc33468a52bb8884749ba8f0bee807a3fc3b4 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {23FD9F24-1CC5-4B98-B95E-4033BB7C3944} - System32\Tasks\HP AR Program Upload - 7b50414363d44b2092a6e968cb0d02b0be5dc683a2c145208e990c2fc054587b => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {61968E1C-FD14-4C42-8D38-F6C0A4B9AFF9} - System32\Tasks\HP AR Program Upload - 957f3f23a59746fba8141510e36eb7d53ed3d6e2763f4c059f58d925e6478cbd => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {AAF33320-7D2F-4AE4-92C9-F194A7E69641} - System32\Tasks\HP AR Program Upload - 9de31d00120c43079ecfbf3efe831588d3b94a6acdde4ae9a358154aa9eccbb4 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {F014B8C5-A0D1-4219-9A5B-3087C7A4C6CA} - System32\Tasks\HP AR Program Upload - c002a772b14049de81c33a08e050c19fccdf16719b72437a863310f269f81507 => C:\Program Files\HP\HP Deskjet 2540 series\bin\HPRewards.exe [3495432 2014-03-06] (Hewlett Packard -> TODO: ) Task: {CB3977AE-9145-43CA-8B24-E45964AE94D5} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) Task: {EC30381C-7809-4DEE-9353-A290C0C92ED9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {74106D52-D948-4628-9F42-14DEF97E75C7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {83C0149F-98AE-47F4-B313-1C592EA37819} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {FE525C86-4DF9-4CF5-A843-E981907C3AE7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {35EBBF7F-9826-47CE-BE21-27167059C838} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe (Pas de fichier) Task: {EDC6F051-91BA-4CD6-9453-177E5871269D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {6D9B1A33-B70D-48EB-B89B-77851CA422C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E9C8A8CD-551F-4A04-8A65-27911E19D8DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E8254ADB-48CC-4500-8D04-25E86ABCCEF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {14878717-50E8-4D37-9A86-BC78D34D8125} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe join (Pas de fichier) Task: {48FC9C82-0D65-4F49-AA85-98284B7CE158} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [609184 2024-01-10] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {D3EB3BB3-C2E0-4AC4-8341-4C8B8AB3C239} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [31648 2024-01-10] (Mozilla Corporation -> Mozilla Foundation) Task: {5A69D25B-FE68-41FD-A212-7B0D77ECEFF8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) Task: {C3711F0F-4E29-4D6B-A407-B23751D9D4FD} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) Task: {26DC8B0E-75D9-4E7C-82A7-5DA1F351B476} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-1007 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) Task: {5278063C-BE90-4F70-8ABF-0C6DD5E1AC8E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{299839d5-8400-434f-8be6-cfa465c53be7}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{a12b06b4-f317-4f01-8c81-6e7ebff73a99}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{e43a8228-f891-4ed4-b835-46fb13299fc8}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\yves\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-22] Edge DownloadDir: Default -> C:\Users\yves\Downloads Edge Notifications: Default -> hxxps://funtoday.info Edge HomePage: Default -> hxxp://microsoft%20edge/ Edge Extension: (Google Docs hors connexion) - C:\Users\yves\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-02] Edge Extension: (Edge relevant text changes) - C:\Users\yves\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14] FireFox: ======== FF DefaultProfile: 3ps1necy.default-1458633979907-1705405611826 FF ProfilePath: C:\Users\yves\AppData\Roaming\Mozilla\Firefox\Profiles\3ps1necy.default-1458633979907-1705405611826 [2024-01-22] FF ProfilePath: C:\Users\yves\AppData\Roaming\Mozilla\Firefox\Profiles\cxxw44pt.default-1482659248022 [2023-02-22] FF Extension: (mC+) - C:\Users\yves\AppData\Roaming\Mozilla\Firefox\Profiles\cxxw44pt.default-1482659248022\Extensions\{8D8ABF0C-6469-48A0-8002-65FEF50A8463}.xpi [2017-09-20] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-07-18] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-07-18] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-01-18] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin HKU\S-1-5-21-39984328-2072628776-185655712-1002: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\yves\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-15] (RocketLife -> RocketLife, LLP) Chrome: ======= CHR Profile: C:\Users\yves\AppData\Local\Google\Chrome\User Data\Default [2024-01-22] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\yves\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-01-17] CHR Extension: (Avast Online Security & Privacy) - C:\Users\yves\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-06-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\yves\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Assistant Amazon pour Chrome) - C:\Users\yves\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2023-04-29] CHR HKU\S-1-5-21-39984328-2072628776-185655712-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\yves\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2020-06-22] CHR HKU\S-1-5-21-39984328-2072628776-185655712-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKU\S-1-5-21-39984328-2072628776-185655712-1007\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13777080 2024-01-18] (Microsoft Corporation -> Microsoft Corporation) R2 CobVSCRequester; C:\Program Files\Cobian Reflector\Cobian.Reflector.VSCRequester.exe [331088 2023-05-30] (Luis Cobian Dorta -> Luis Cobian, CobianSoft) R2 DFWSIDService; C:\ProgramData\Wondershare\wsServices\WsidService.exe [3950832 2023-07-24] (Wondershare Technology Group Co.,Ltd -> wondershare) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) S2 GoogleUpdaterInternalService122.0.6253.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6253.0\updater.exe [4652320 2024-01-17] (Google LLC -> Google LLC) <==== ATTENTION S2 GoogleUpdaterService122.0.6253.0; C:\Program Files (x86)\Google\GoogleUpdater\122.0.6253.0\updater.exe [4652320 2024-01-17] (Google LLC -> Google LLC) <==== ATTENTION R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [888360 2023-09-15] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [886824 2023-09-15] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [883136 2023-09-15] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2023-03-15] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [886824 2023-09-15] (HP Inc. -> HP Inc.) R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.) R2 mc_plusSvc; C:\Program Files\mc_plus\UsageMonitor.WindowsService.exe [35696 2017-09-20] (RealityMine Limited -> RealityMine Ltd) [Fichier non signé] R2 myCANAL Server; C:\ProgramData\myCANAL\nssm.exe [294912 2019-06-26] () [Fichier non signé] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2024-01-11] (Microsoft Corporation -> Microsoft Corporation) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2128872 2019-07-15] (Plex, Inc -> Plex, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-27] (Microsoft Windows Publisher -> Microsoft Corporation) S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.243\WsAppService.exe [495392 2019-06-13] (Wondershare Technology Co.,Ltd -> Wondershare) S4 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare) S2 ElevationService; C:\ProgramData\Wondershare\wsServices\ElevationService.exe [X] S2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\WirelessBackupService.exe [X] S2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [X] S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2018-03-11] () [Fichier non signé] S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 DxVGrb; C:\WINDOWS\system32\drivers\DxVGrb.sys [227456 2014-04-08] (Conexant Systems, Inc. -> Dexetek) R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2018-03-11] () [Fichier non signé] S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-03-23] (Malwarebytes Corporation -> Malwarebytes) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 StillCam; C:\WINDOWS\system32\DRIVERS\serscan.sys [13312 2020-11-26] (Microsoft Corporation) [Fichier non signé] S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2020-11-26] (Microsoft Corporation) [Fichier non signé] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-27] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-27] (Microsoft Windows -> Microsoft Corporation) S3 MpKsl9d1d0ef2; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7DADC24A-89FF-494B-8625-6524AA83E58C}\MpKslDrv.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-22 13:41 - 2024-01-22 13:44 - 000000000 ____D C:\FRST 2024-01-22 13:37 - 2024-01-22 13:37 - 000260019 _____ C:\Users\yves\Desktop\ZHPDiag.txt 2024-01-22 13:18 - 2024-01-22 13:18 - 000000908 _____ C:\Users\yves\Desktop\ZHPSuite.lnk 2024-01-22 09:52 - 2024-01-22 09:52 - 000000000 ____D C:\Users\yves\Tracing 2024-01-19 08:49 - 2024-01-19 08:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem 2024-01-18 14:57 - 2024-01-18 15:08 - 000023040 _____ C:\Users\yves\Documents\cv audrey.dot 2024-01-18 14:48 - 2024-01-18 14:51 - 000017210 _____ C:\Users\yves\Documents\cv audrey.odt 2024-01-16 12:47 - 2024-01-16 12:47 - 000000000 ____D C:\Users\yves\Desktop\Anciennes données de Firefox 2024-01-12 09:33 - 2024-01-12 09:33 - 000000000 ___HD C:\$WinREAgent 2024-01-11 17:48 - 2024-01-13 08:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-01-11 15:31 - 2024-01-11 15:31 - 000050494 _____ C:\Users\yves\Documents\reçu fiscal ligue cancer 2023.pdf 2024-01-10 17:21 - 2024-01-10 17:21 - 000000000 ____D C:\Users\yves\Documents\Modèles Office personnalisés 2024-01-10 14:40 - 2024-01-10 14:40 - 000000000 ____D C:\Program Files (x86)\Teams Installer 2024-01-10 14:39 - 2024-01-11 17:49 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-500 2024-01-10 14:39 - 2024-01-11 17:49 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-01-10 14:39 - 2024-01-11 17:49 - 000002177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-01-10 14:39 - 2024-01-10 14:39 - 000000000 ___RD C:\Users\Default\OneDrive 2024-01-10 14:39 - 2024-01-10 14:39 - 000000000 ___RD C:\Users\Administrator\OneDrive 2024-01-10 14:36 - 2024-01-10 14:36 - 000000000 ____D C:\Program Files\Microsoft Office 15 2024-01-10 14:35 - 2024-01-18 15:09 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2024-01-10 14:35 - 2024-01-10 14:41 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000002482 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2024-01-10 14:35 - 2024-01-10 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2024-01-04 17:48 - 2024-01-04 17:48 - 000013124 _____ C:\Users\yves\Documents\Declaration mur et tapisserie 4 janvierpdf.pdf 2024-01-03 18:17 - 2024-01-03 18:17 - 000000000 ____D C:\WINDOWS\InboxApps 2024-01-03 16:33 - 2024-01-22 13:15 - 000062995 _____ C:\Users\yves\Documents\méthode 2 3 4.ods 2024-01-03 15:14 - 2024-01-03 15:14 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-01-03 12:45 - 2024-01-03 12:45 - 000840798 _____ C:\Users\yves\Documents\La_methode_ 234.pdf 2023-12-29 12:50 - 2023-12-30 16:25 - 000035457 _____ C:\Users\yves\Documents\favoris 6 sites.ods 2023-12-27 14:21 - 2023-12-27 14:21 - 001329321 _____ C:\Users\yves\Documents\La Formule Secrete.pdf 2023-12-26 09:36 - 2024-01-20 09:44 - 000070400 _____ C:\Users\yves\Documents\compte CM 2024.ods 2023-12-15 17:38 - 2023-12-15 17:38 - 000000000 ____D C:\Users\yves\AppData\Local\VHS to DVD 2023-12-15 17:35 - 2023-12-20 11:41 - 000000000 ____D C:\Users\yves\Documents\VHS to DVD 2023-12-13 15:37 - 2023-12-13 15:37 - 000000000 _____ C:\Users\yves\Documents\lu11276k7z5.tmp 2023-12-13 12:44 - 2023-12-13 12:44 - 000113463 _____ C:\Users\yves\Documents\edf CalendrierPaiement-13 déc 2023.pdf 2023-12-11 16:15 - 2023-12-11 16:15 - 001521379 _____ C:\Users\yves\Documents\ordonnance 11 décembre 2023.pdf 2023-12-11 15:43 - 2023-12-11 15:43 - 000000000 ____D C:\Users\yves\Documents\rembt frais transport 2023-12-10 10:14 - 2023-12-10 10:14 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk 2023-12-10 10:14 - 2023-12-10 10:14 - 000002098 _____ C:\Users\Public\Desktop\Adobe Reader 9.lnk 2023-12-10 10:11 - 2023-12-10 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\honestech VHS to DVD 3.0 SE 2023-12-10 10:11 - 2023-12-10 10:11 - 000000000 ____D C:\Program Files (x86)\honestech 2023-12-10 10:09 - 2023-12-10 10:10 - 000000000 ____D C:\Program Files (x86)\honestech VHS to DVD 3.0 SE 2023-12-03 09:04 - 2023-12-03 09:04 - 000000000 ____D C:\ProgramData\PLUG 2023-12-02 21:03 - 2023-12-02 21:03 - 000000000 ____D C:\Program Files\RUXIM 2023-11-22 07:58 - 2023-11-22 07:58 - 000000000 _____ C:\Users\yves\Documents\lu79642lms2w.tmp 2023-11-22 07:35 - 2023-12-02 11:55 - 003121152 _____ C:\Users\yves\Documents\Gestion Cheval du jour (1).xls 2023-11-17 11:50 - 2023-11-17 11:52 - 000000000 ____D C:\Users\yves\Documents\Notaire 2023-10-30 09:24 - 2023-10-30 09:25 - 282656837 _____ C:\Users\yves\Downloads\xvideos.com_c7ada8143fa0cfaa78a120eabf7a94b4.mp4 2023-10-29 09:09 - 2023-10-29 09:09 - 000097480 _____ C:\Users\yves\Documents\reçu fiscal croix rouge 2023.pdf 2023-10-28 09:08 - 2023-10-28 09:08 - 001717824 _____ C:\Users\yves\Documents\Echelle_des_cotes (1).pdf 2023-10-26 16:02 - 2023-10-26 16:02 - 012058596 _____ C:\Users\yves\Documents\Gestion Premium Pronostics (2).ods 2023-10-25 14:22 - 2024-01-18 10:14 - 011879862 _____ C:\Users\yves\Documents\Gestion Premium vierge (1).ods ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2024-01-22 13:42 - 2023-07-24 17:25 - 000000000 ___RD C:\Users\yves\téléchargements 2024-01-22 13:37 - 2016-03-01 19:11 - 000000000 ____D C:\Users\yves\AppData\Roaming\ZHP 2024-01-22 13:18 - 2017-10-19 17:07 - 000000000 ____D C:\Users\yves\AppData\Local\ZHP 2024-01-22 13:14 - 2020-11-26 11:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-01-22 10:59 - 2023-02-08 14:09 - 000000000 ____D C:\Users\robert 2024-01-22 10:23 - 2017-09-01 11:35 - 000462550 _____ C:\Users\yves\Documents\TURFIZ.ods 2024-01-22 10:22 - 2018-02-13 09:55 - 000440763 _____ C:\Users\yves\Documents\calculateur.ods 2024-01-22 09:54 - 2022-02-12 18:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-01-22 09:52 - 2020-11-26 12:05 - 000000000 ____D C:\Users\yves 2024-01-22 09:52 - 2013-09-30 20:15 - 000000000 ___SD C:\Users\yves\AppData\Roaming\Microsoft\Credentials 2024-01-22 09:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-01-22 09:51 - 2019-02-13 15:08 - 000000000 ____D C:\Users\yves\AppData\Local\SquirrelTemp 2024-01-22 09:49 - 2015-04-26 13:27 - 000000000 __SHD C:\Users\yves\IntelGraphicsProfiles 2024-01-22 09:47 - 2020-11-26 12:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-01-22 09:47 - 2020-11-26 11:59 - 000008192 ___SH C:\DumpStack.log.tmp 2024-01-22 09:47 - 2016-09-28 09:07 - 000000000 ____D C:\ProgramData\NVIDIA 2024-01-22 09:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-01-22 09:44 - 2023-02-08 14:10 - 000000000 ____D C:\Users\robert\AppData\Local\Packages 2024-01-22 09:44 - 2023-02-08 14:09 - 000000000 __SHD C:\Users\robert\IntelGraphicsProfiles 2024-01-22 09:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2024-01-21 10:14 - 2023-08-19 08:57 - 000087964 _____ C:\Users\yves\Documents\Passinul 2023 2024 2 ch.ods 2024-01-20 14:39 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2024-01-19 10:05 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2024-01-19 10:00 - 2022-01-01 17:19 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-01-19 08:55 - 2017-10-24 16:22 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-01-19 08:55 - 2017-10-24 16:22 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-01-19 08:49 - 2015-07-26 17:29 - 000000000 ____D C:\Program Files (x86)\Google 2024-01-18 16:37 - 2014-08-11 12:01 - 000000000 ____D C:\Users\yves\Documents\phil 2024-01-18 15:00 - 2015-04-21 14:25 - 000000000 ____D C:\Users\yves\AppData\Roaming\Microsoft\Word 2024-01-18 13:56 - 2013-06-17 15:42 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-01-18 12:42 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-01-18 12:03 - 2015-04-21 14:25 - 000000000 ____D C:\Users\yves\AppData\Roaming\Microsoft\UProof 2024-01-18 12:02 - 2015-04-21 10:37 - 000000000 ____D C:\Users\yves\AppData\Roaming\Microsoft\Office 2024-01-18 10:20 - 2015-04-21 11:02 - 000000000 ____D C:\Users\yves\AppData\Roaming\Microsoft\Excel 2024-01-17 12:21 - 2021-11-24 17:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-01-17 12:20 - 2022-10-12 10:13 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2024-01-17 12:20 - 2022-10-12 10:13 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2024-01-16 13:04 - 2021-10-09 16:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2024-01-11 17:49 - 2023-02-08 15:24 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-1007 2024-01-11 17:49 - 2021-12-13 09:16 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-39984328-2072628776-185655712-1002 2024-01-10 17:04 - 2017-08-16 21:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2024-01-10 16:11 - 2018-02-12 19:38 - 000001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-01-10 15:05 - 2020-11-26 11:59 - 000976296 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-01-10 14:39 - 2020-11-26 12:05 - 000000000 ____D C:\Users\Administrator 2024-01-10 14:35 - 2015-04-21 10:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2024-01-10 14:28 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-01-07 18:05 - 2013-11-27 18:44 - 000000000 ____D C:\Users\yves\AppData\LocalLow\Adobe 2024-01-07 10:09 - 2014-03-19 10:35 - 000000000 ____D C:\Users\yves\Documents\bateau 2024-01-05 09:10 - 2020-11-26 12:15 - 001814248 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-01-05 09:10 - 2019-12-07 15:49 - 000791762 _____ C:\WINDOWS\system32\perfh00C.dat 2024-01-05 09:10 - 2019-12-07 15:49 - 000149928 _____ C:\WINDOWS\system32\perfc00C.dat 2024-01-04 10:28 - 2017-10-26 09:00 - 000000000 ____D C:\Users\yves\AppData\Local\Packages 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-01-03 18:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-01-03 18:17 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2024-01-03 15:22 - 2019-12-07 15:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2024-01-03 15:22 - 2019-12-07 15:53 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2024-01-03 15:22 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-01-03 15:13 - 2020-11-26 12:03 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-12-31 14:48 - 2022-12-30 10:42 - 000093278 _____ C:\Users\yves\Documents\compte CM 2023.ods ==================== Fichiers à la racine de certains dossiers ======== 2018-07-31 15:36 - 2018-07-31 15:36 - 011991471 _____ (Editions PERCEVAL ) C:\Users\yves\SetupEcartsLocalizerTCV30.exe 2016-06-11 23:28 - 2018-05-28 17:12 - 003213696 _____ () C:\Users\yves\ZHPCleaner.exe 2021-07-17 13:31 - 2021-07-17 13:31 - 000281108 _____ () C:\Users\yves\AppData\Roaming\DreamPlan.dmp 2019-01-30 16:21 - 2021-06-03 09:38 - 000015848 _____ () C:\Users\yves\AppData\Roaming\LOG_calps.txt 2015-06-17 13:33 - 2021-10-24 09:07 - 000018944 _____ () C:\Users\yves\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2018-01-20 10:00 - 2018-01-20 10:00 - 000000000 _____ () C:\Users\yves\AppData\Local\Girlvania (Girlvanic Studios)_.lock 2019-01-31 11:15 - 2021-06-03 09:44 - 000000021 _____ () C:\Users\yves\AppData\Local\PdfPort.ini 2020-04-14 14:10 - 2020-04-14 14:12 - 000006275 _____ () C:\Users\yves\AppData\Local\PlariumPlay.log 2015-07-07 11:23 - 2015-07-07 11:23 - 000003862 _____ () C:\Users\yves\AppData\Local\recently-used.xbel 2023-05-17 10:12 - 2023-05-17 10:12 - 000000017 _____ () C:\Users\yves\AppData\Local\resmon.resmoncfg 2017-12-20 09:44 - 2017-12-20 09:44 - 000000000 _____ () C:\Users\yves\AppData\Local\{3D444E6B-F72D-4F05-B6F8-09DB1C9E9337} ==================== SigCheckExt ========================= 2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-07-13 10:58 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-13 09:31 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2014-11-21 00:20 - 2014-11-21 00:20 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2014-11-21 00:20 - 2014-11-21 00:20 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2013-06-17 15:35 - 2011-08-23 22:52 - 000117248 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe 2017-05-10 13:40 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2014-11-21 05:34 - 2014-11-21 05:34 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lockscreencn.dll 2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2016-04-01 10:05 - 2016-04-01 10:05 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore(3754).dll 2015-06-10 08:58 - 2015-05-25 14:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2015-04-26 13:38 - 2015-04-26 13:38 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2017-01-30 20:34 - 1998-10-29 16:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe 2015-10-30 08:19 - 2016-04-01 09:53 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelFrench.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelGerman.dll 2006-09-26 14:01 - 2006-09-26 14:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelJapanese.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelKorean.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelPortugese.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelSimplifiedChinese.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelSpanish.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelSwedish.dll 2006-09-08 09:01 - 2006-09-08 09:01 - 000045056 _____ C:\WINDOWS\SysWOW64\AgCPanelTraditionalChinese.dll 2015-10-30 08:19 - 2016-04-01 09:53 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll 2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2019-10-09 13:08 - 2006-08-25 20:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll 2019-10-09 13:08 - 2011-01-12 19:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000974848 _____ C:\WINDOWS\SysWOW64\cis-2.4.dll 2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2013-03-26 09:09 - 2013-03-26 09:09 - 000253952 _____ (Hewlett-Packard Development Company, L.P.) C:\WINDOWS\SysWOW64\cPC_DMIRD.dll 2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2016-09-19 18:15 - 1999-01-20 04:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL 2007-04-27 10:43 - 2007-04-27 10:43 - 000120200 _____ () C:\WINDOWS\SysWOW64\DLLDEV32i.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2015-10-30 08:19 - 2016-04-01 09:53 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe 2015-10-30 08:19 - 2016-04-01 09:53 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll 2015-10-30 08:19 - 2016-04-01 09:53 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll 2017-03-14 21:49 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000081920 _____ C:\WINDOWS\SysWOW64\issacapi_bs-2.3.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000065536 _____ C:\WINDOWS\SysWOW64\issacapi_pe-2.3.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000057344 _____ C:\WINDOWS\SysWOW64\issacapi_se-2.3.dll 2012-04-20 13:59 - 2012-04-20 13:59 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll 2012-11-16 09:53 - 2012-11-16 09:53 - 000434176 _____ (The cURL library, hxxp://curl.haxx.se/) C:\WINDOWS\SysWOW64\libcurld.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MACXMLProto.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000118784 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MaDRM.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000049152 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaJGUILib.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000045320 _____ (MARKANY) C:\WINDOWS\SysWOW64\MAMACExtract.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000024576 _____ ((주)마크애니) C:\WINDOWS\SysWOW64\MASetupCleaner.exe 2016-05-18 13:49 - 2016-05-18 13:49 - 000045056 _____ ((주) 마크애니) C:\WINDOWS\SysWOW64\MaXMLProto.dll 2019-10-09 13:08 - 2006-08-25 21:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll 2019-10-09 13:08 - 2006-08-25 21:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll 2019-10-09 13:08 - 2006-08-25 21:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll 2019-10-09 13:08 - 2011-01-12 20:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll 2019-10-09 13:08 - 2011-01-12 20:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2019-10-09 13:08 - 2011-01-12 20:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2019-10-09 13:08 - 2011-01-12 20:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000057344 _____ (Marktek) C:\WINDOWS\SysWOW64\MK_Lyric.dll 2016-09-16 10:30 - 2015-10-30 03:40 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 08:19 - 2016-09-16 10:02 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000245760 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSCLib.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000155648 _____ (Teruten Inc.) C:\WINDOWS\SysWOW64\MSFLib.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000352256 _____ (Sample Corporation) C:\WINDOWS\SysWOW64\MSLUR71.dll 2019-10-09 13:08 - 2008-04-15 13:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll 2019-10-09 13:08 - 2005-01-20 16:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll 2019-10-09 13:08 - 2002-01-05 02:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL 2006-09-08 09:00 - 2007-02-01 17:13 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2019-10-09 13:08 - 2007-01-30 17:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2003-02-21 03:42 - 2007-02-01 14:11 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2019-10-09 13:08 - 1994-11-17 22:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000040960 _____ (Telechips Inc.,) C:\WINDOWS\SysWOW64\MTTELECHIP.dll 2016-05-18 13:49 - 2016-05-18 13:49 - 000057344 _____ (Marktek Inc.) C:\WINDOWS\SysWOW64\MTXSYNCICON.dll 2006-09-28 14:55 - 2006-09-28 14:55 - 000053248 _____ C:\WINDOWS\SysWOW64\PhysXLoader.dll 2023-07-28 14:10 - 2016-05-18 13:49 - 004659712 _____ (Dmitry Streblechenko) C:\WINDOWS\SysWOW64\Redemption.dll 2012-11-16 09:53 - 2012-11-16 09:53 - 000079360 _____ (GnuWin32 ) C:\WINDOWS\SysWOW64\regex2.dll 2019-10-09 13:08 - 1996-01-12 01:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll 2018-07-31 12:19 - 2000-10-02 02:00 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.dll 2015-10-30 08:19 - 2016-04-01 09:53 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll 2003-06-17 12:15 - 2003-06-17 12:15 - 000110592 _____ (FlexCell Studio) C:\WINDOWS\SysWOW64\xls.dll 2018-07-31 15:36 - 2018-07-31 15:36 - 011991471 _____ (Editions PERCEVAL ) C:\Users\yves\SetupEcartsLocalizerTCV30.exe 2016-06-11 23:28 - 2018-05-28 17:12 - 003213696 _____ C:\Users\yves\ZHPCleaner.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {2d631ab3-d7b9-11e2-b195-a9fb9f674534} {2d631ab4-d7b9-11e2-b195-a9fb9f674534} {2d631ab9-d7b9-11e2-b195-a9fb9f674534} {e99a00f2-d80a-11e2-be6e-806e6f6e6963} {2d631ab7-d7b9-11e2-b195-a9fb9f674534} {2d631ab8-d7b9-11e2-b195-a9fb9f674534} timeout 2 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {628ac41e-2fd6-11eb-bab2-86d8ba0b35a9} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {2d631ab3-d7b9-11e2-b195-a9fb9f674534} description USB Floppy/CD Application logicielle (101fffff) -------------------------------- identificateur {2d631ab4-d7b9-11e2-b195-a9fb9f674534} description USB Hard Drive Application logicielle (101fffff) -------------------------------- identificateur {2d631ab7-d7b9-11e2-b195-a9fb9f674534} description USB Floppy/CD Application logicielle (101fffff) -------------------------------- identificateur {2d631ab8-d7b9-11e2-b195-a9fb9f674534} description Hard Drive Application logicielle (101fffff) -------------------------------- identificateur {2d631ab9-d7b9-11e2-b195-a9fb9f674534} description UEFI: IPv4 Realtek PCIe FE Family Controller Application logicielle (101fffff) -------------------------------- identificateur {e99a00f2-d80a-11e2-be6e-806e6f6e6963} description UEFI: IPv6 Realtek PCIe FE Family Controller Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {a5b7aec3-2fd6-11eb-8196-abe365a9a735} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {628ac41e-2fd6-11eb-bab2-86d8ba0b35a9} nx OptIn bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {a5b7aec3-2fd6-11eb-8196-abe365a9a735} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{a5b7aec4-2fd6-11eb-8196-abe365a9a735} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{a5b7aec4-2fd6-11eb-8196-abe365a9a735} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {628ac41e-2fd6-11eb-bab2-86d8ba0b35a9} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {a5b7aec3-2fd6-11eb-8196-abe365a9a735} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {a5b7aec4-2fd6-11eb-8196-abe365a9a735} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================