Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021
Exécuté par Martin (administrateur) sur MARTIN (MSI MS-7918) (21-11-2021 15:46:34)
Exécuté depuis C:\Users\Windows 7\Desktop
Profils chargés: Martin
Plate-forme: Microsoft Windows 10 Professionnel Version 21H1 19043.1348 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <14>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(philandro Software GmbH -> philandro Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3136136 2019-01-30] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3952096 2020-03-10] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-450474933-1786605423-1336299282-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-450474933-1786605423-1336299282-1000\...\Policies\Explorer: [EnableShellExecuteHooks] 0
HKU\S-1-5-21-450474933-1786605423-1336299282-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\BJ Print Processor3: C:\Windows\System32\spool\prtprocs\x64\CNBPP3.DLL [83968 2016-03-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Hewlett-Packard Corporation) [Fichier non signé]
HKLM\...\Print\Monitors\BJ Language Monitor3_2: C:\Windows\system32\CNBLM3_2.DLL [211456 2016-03-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2400 series: CNMLMBW.DLL
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\system32\hpzlllhn.dll [48640 2008-05-07] (Hewlett-Packard Company) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}] -> %SystemRoot%\System32\RdpGroupPolicyExtension.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2021-01-16]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
BootExecute: autocheck autochk /k:D *
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05A40662-2EC6-4736-9FD2-89AC85113D3D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {0A95B559-07E5-4F9A-9A0A-A5FDFA9CDF40} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0E437539-5BF8-4AD2-A1DD-E35E6BEE45CE} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {0E4F3872-1AF2-48D8-A2C4-14199399B64D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Pas de fichier)
Task: {0F10B925-8725-4BAF-897E-1E7081B780D7} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {108F196C-0214-4FBC-A3A2-5C7BCED50A93} - System32\Tasks\{F465310D-BD2D-43FA-8CAE-FD07EFC6262C} => C:\Windows\system32\pcalua.exe -a "C:\Users\Windows 7\Desktop\LAN_Atheros_Win7_64_Z201516\setup.exe" -d "C:\Users\Windows 7\Desktop\LAN_Atheros_Win7_64_Z201516"
Task: {113163A2-6899-4001-A33B-4DEF09C96C6C} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {13A81880-0757-4E1A-9587-96EF6B670955} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Pas de fichier)
Task: {17DB7E92-DB8C-409E-93E8-91313B985444} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {24644897-3F85-4A83-BE44-4ACB70F6AA5A} - System32\Tasks\{2746BAB7-3139-4DE6-931D-07CA744CCEF3} => C:\Windows\system32\pcalua.exe -a "C:\Users\Windows 7\Desktop\05LAN\setup.exe" -d "C:\Users\Windows 7\Desktop\05LAN"
Task: {26903B17-8F56-43EF-A477-E5717AB543B5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {26BE07AE-6F90-4B5F-9837-02269E79D71D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {2738200B-1689-4875-A9DD-4EC47030EDB3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {28CBE60D-3E73-4409-8747-A57E0C5EA159} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {2BEB37CD-9C64-4F94-84F6-D4FBE13638E8} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation)
Task: {2E61FEF0-846F-42A7-9E00-299003CC6DBB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {2EBFBD7E-A10F-4051-B314-BB82FEFD40A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {35FD597D-4604-43CA-8907-2C2D2B3D6487} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {4275A73D-5026-4EE0-AF1A-EAEB46EBBE52} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {52084F03-8BE4-4DC5-ADAE-253DF278051C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {545C8D87-4BFC-4766-9393-FE62D0FAA585} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5B481323-63A9-481E-8C78-3627B49147EA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-23] (Google LLC -> Google LLC)
Task: {6C20AE0C-B801-402C-B13B-0C090C0D79A8} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {72720EBA-C80A-412C-AE62-DBDB77AB05F3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {7632141F-3500-4DD5-B57D-E144401EE667} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {773CD05C-322D-495D-B5E7-08DBE04503C4} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [814872 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7BD87668-6780-4A60-8BD0-6C5F526B9A02} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {7BE7DBCB-A223-4980-B488-2ECAE153EB77} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Pas de fichier)
Task: {82504460-E93D-4F26-B188-26B2560B8A80} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {84DB4040-2A91-4619-B5BD-329536F4C507} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {85DAE601-ED8B-4AAE-9BAB-843C47AE81C9} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {8A17375E-B593-4A09-819B-C08749EB7DBC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8BA021AF-175B-41AF-B7E1-ED4211E49933} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {8DA1FE6B-1FF7-46BA-8B24-B65E9357AD2D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {91365725-0664-4129-92CC-AFB19C716706} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {95DD5BC1-AA1C-4173-B6DA-0FB17C71A8DF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {9972D6A4-2F67-4972-9B9B-2428FD2CA502} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {9B22D01A-E004-4B9C-8A92-8A49D39FC3EB} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A2BBB802-21B2-46F9-AD3D-13B9A0768191} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-450474933-1786605423-1336299282-1003 => C:\Users\Windows 7\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {A44233F1-3FFD-49E0-848A-295658D4D3F2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {A5BC4DAB-BE4E-4775-877D-B9C84F1E2E25} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {A70F62CF-B916-4AA2-A1E8-D7DFED1FE2ED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-23] (Google LLC -> Google LLC)
Task: {AE3E63C1-50F6-44CE-B168-BE8C0642B030} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {AFC91884-86FD-40F9-A415-5B894FED0D69} - System32\Tasks\CCleanerSkipUAC - Martin => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B0A71F64-FC80-4D67-BA37-CB66907A4B08} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {BACE2040-08C4-45CA-86B9-AD83CEACDAED} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {BB9551C2-563B-440E-AC6F-5448D13349A4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-27] (Piriform Software Ltd -> Piriform)
Task: {BC4034BD-672A-4B30-B20F-5E4A2CCA0818} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {C0DF8419-B3C8-4FB7-9596-E0C73EFAFF66} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {C18050A8-4EF9-4FE3-9533-7AE8A62080F3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (Pas de fichier)
Task: {C2F76E79-704F-4380-BD73-F3ECCA96F3F3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29212288 2021-08-27] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C9F44D21-F11F-4506-9340-243F30CC1987} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (Pas de fichier)
Task: {CB5C7E5D-1857-4323-ADB6-18D4EED03036} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier)
Task: {DB119577-E6DB-4DE9-B788-D9BF2ED6900B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {DE41BE60-C763-4A50-AC80-8CD64C854F94} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {E2DD5FE0-E711-4BE0-B205-DE795B8FCD97} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {E33E4C1D-D231-4F09-9215-3899F0292814} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (Pas de fichier)
Task: {E37B050D-3E08-4A8C-9F4E-91DD252A434C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {F17A8D26-A4B8-4123-9384-7EF64FA135E5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {F6AE7DC1-A1D9-42CE-8093-BF77C1C3E824} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {F86BD6D8-5D6B-4E3B-9A23-3E53E12D48B4} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-450474933-1786605423-1336299282-500 => C:\Users\Windows 7\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {FF4F65A2-E84B-4B38-B81E-3B5C67BC57D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FFA91CD1-7D97-4E30-8A87-AF2897B35A0A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{079d1646-7396-4be4-8e2d-c5742f4bcc83}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{1bccf1dd-b1dd-416e-8a65-fd145e4305d3}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{76b11d92-73a6-4765-9321-a04691d4e285}: [NameServer] 108.61.210.58,87.98.242.252
Tcpip\..\Interfaces\{76b11d92-73a6-4765-9321-a04691d4e285}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7ee6aa66-5f71-4198-a2e5-9b55be0da11b}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8ffeb64f-9aab-47b1-8a32-eb9bb240f9c9}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{8ffeb64f-9aab-47b1-8a32-eb9bb240f9c9}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{abd3bac5-1416-4b1f-afff-37f7a634b82c}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{dbc19bbe-2388-4ca2-9484-6a2b1dce5af5}: [DhcpNameServer] 192.168.9.20
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge Profile: C:\Users\Windows 7\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-20]
FireFox:
========
FF DefaultProfile: jr0kaybi.Défaut-1531155095071
FF ProfilePath: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071 [2021-11-21]
FF Session Restore: Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071 -> est activé.
FF Extension: (Ajouter un moteur de recherche de Mycroft Project) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\add-search-engine-from-mycroft-project@qw.thucfb.com.xpi [2020-08-11]
FF Extension: (Keepa - Amazon Price Tracker) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\amptra@keepa.com.xpi [2021-09-19]
FF Extension: (Enhancer for YouTube™) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2021-11-09]
FF Extension: (Google Image Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\google-image-search@cal.xpi [2020-04-28]
FF Extension: (Google search link fix) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\jid0-XWJxt5VvCXkKzQK99PhZqAn7Xbg@jetpack.xpi [2020-06-13]
FF Extension: (Decentraleyes) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2021-09-04]
FF Extension: (Swift Selection Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\jid1-KdTtiCj6wxVAFA@jetpack.xpi [2021-01-13]
FF Extension: (I don't care about cookies) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2021-10-29]
FF Extension: (Behind The Overlay) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\jid1-Y3WfE7td45aWDw@jetpack.xpi [2018-07-09]
FF Extension: (SCDL SoundCloud Downloader) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\scdl@mrvv.net.xpi [2021-06-13]
FF Extension: (Scroll Up Folder) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\scrollupfolder@omni.n0ne.org.xpi [2018-07-09]
FF Extension: (Search in Youtube) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\searchyoutube@searchyoutube.fr.xpi [2018-07-09]
FF Extension: (Session Sync) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\session-sync@gabrielivanica.com.xpi [2020-02-09]
FF Extension: (Simple Translate) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\simple-translate@sienori.xpi [2021-09-04]
FF Extension: (uBlock Origin) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\uBlock0@raymondhill.net.xpi [2021-10-16]
FF Extension: (Traduire les pages Web) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{036a55b4-5e72-4d05-a06c-cba2dfcc134a}.xpi [2021-09-19]
FF Extension: (Black Gray White / desktop, mobile) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{053711cb-beef-49ad-851f-d551298096ab}.xpi [2019-05-14]
FF Extension: (Firefox Carbon) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{155bf27e-5389-49ee-bda7-b7a91631b899}.xpi [2019-05-13]
FF Extension: (Image Search Sizer) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{26154796-e7a2-4ffe-b56e-3433760cd824}.xpi [2020-04-28]
FF Extension: (Voir image) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{287dcf75-bec6-4eec-b4f6-71948a2eea29}.xpi [2021-08-03]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2021-01-10]
FF Extension: (Allociné Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{3b4a3051-16b3-453e-9f80-3a31eb028a24}.xpi [2021-03-18]
FF Extension: (Bitwarden) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2021-10-29]
FF Extension: (Text Link) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}.xpi [2021-11-05]
FF Extension: (InFormEnter+) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{5546F97E-11A5-46b0-9082-32AD74AAA920}.xpi [2021-07-05]
FF Extension: (IMDb Search) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{76382c80-a47f-4493-bb24-f8fa554b2a05}.xpi [2020-06-27]
FF Extension: (Absolute Right Click) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2020-04-23]
FF Extension: (Add custom search engine) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{af37054b-3ace-46a2-ac59-709e4412bec6}.xpi [2021-07-21]
FF Extension: (Video DownloadHelper) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-05]
FF Extension: (Read Aloud: A Text to Speech Voice Reader) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{ddc62400-f22d-4dd3-8b4a-05837de53c2e}.xpi [2021-09-28]
FF Extension: (Eighteen % grey) - C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\jr0kaybi.Défaut-1531155095071\Extensions\{dde580a1-e160-4f2b-905a-ed92e2264c94}.xpi [2019-05-14]
FF ProfilePath: C:\Users\Windows 7\AppData\Roaming\Mozilla\Firefox\Profiles\ckxltzrr.test 1 [2021-09-14]
FF Homepage: Mozilla\Firefox\Profiles\ckxltzrr.test 1 -> hxxps://links.malwarebytes.com/link/restorebrowser?lic=trial&product=MBAM-C
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2019-07-04] [non signé]
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS -> Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-01-12] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
Chrome:
=======
CHR Profile: C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default [2021-09-14]
CHR Extension: (Slides) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-23]
CHR Extension: (Docs) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-23]
CHR Extension: (Google Drive) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-23]
CHR Extension: (YouTube) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-23]
CHR Extension: (Sheets) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-14]
CHR Extension: (Gmail) - C:\Users\Windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-23]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3743984 2021-10-05] (philandro Software GmbH -> philandro Software GmbH)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-04-15] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EQU8_36; C:\ProgramData\EQU8\Splitgate\bin\anticheat.x64.equ8.exe [6161552 2021-09-02] (Int3 Software AB -> Int3 Software AB)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1636936 2020-03-19] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-02-24] (GOG Sp. z o.o. -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7785656 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1705088 2020-05-12] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 EQU8_HELPER_36; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_36.sys [38032 2021-09-03] (Int3 Software AB -> )
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-09-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-09-14] (Malwarebytes Inc -> Malwarebytes)
S3 NTIOLib_ECO; C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [13808 2014-01-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [129960 2021-09-14] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-02] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-21 15:46 - 2021-11-21 15:47 - 000035335 _____ C:\Users\Windows 7\Desktop\FRST.txt
2021-11-21 15:46 - 2021-11-21 15:46 - 000000000 ____D C:\FRST
2021-11-21 15:43 - 2021-11-21 15:43 - 002311680 _____ (Farbar) C:\Users\Windows 7\Desktop\FRST64.exe
2021-11-21 11:55 - 2021-11-21 11:55 - 008369755 _____ (UserBenchmark.com) C:\Users\Windows 7\Desktop\UserBenchMark.exe
2021-11-20 20:07 - 2021-11-20 20:07 - 000003794 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-11-20 19:52 - 2021-11-20 19:52 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2021-11-20 19:50 - 2017-01-17 05:56 - 034717624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2021-11-20 19:50 - 2017-01-17 05:56 - 028209080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2021-11-20 19:50 - 2017-01-17 05:55 - 001964600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437654.dll
2021-11-20 19:50 - 2017-01-17 05:55 - 001598392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437654.dll
2021-11-20 19:50 - 2017-01-17 05:54 - 040134200 _____ C:\WINDOWS\system32\nvcompiler.dll
2021-11-20 19:50 - 2017-01-17 05:54 - 035233336 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2021-11-20 19:50 - 2017-01-17 05:53 - 011017016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 010907368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 009246832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 009000336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 000818688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 000698544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 000658592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2021-11-20 19:50 - 2017-01-17 05:52 - 000586784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2021-11-20 19:50 - 2017-01-17 00:59 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2021-11-20 19:50 - 2017-01-17 00:59 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
2021-11-20 19:48 - 2021-11-20 19:48 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2021-11-20 19:45 - 2021-11-20 19:45 - 000646947 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2021-11-20 19:45 - 2021-11-20 19:45 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-11-20 19:45 - 2021-11-20 19:45 - 000000000 ____D C:\WINDOWS\system32\DAX2
2021-11-09 21:18 - 2021-11-09 21:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-09 21:18 - 2021-11-09 21:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-09 21:18 - 2021-11-09 21:18 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-09 21:18 - 2021-11-09 21:18 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-09 21:11 - 2021-11-09 21:11 - 000000000 ___HD C:\$WinREAgent
2021-11-07 16:17 - 2021-11-07 16:17 - 000000000 ____D C:\Users\Windows 7\AppData\LocalLow\Team Cherry
2021-11-07 15:53 - 2021-11-07 15:53 - 000000559 _____ C:\Users\Public\Desktop\Hollow Knight.lnk
2021-11-05 20:35 - 2021-11-05 20:35 - 000000000 ____D C:\Users\Windows 7\AppData\LocalLow\Daniel Mullins Games
2021-11-05 19:32 - 2021-11-05 19:32 - 000000795 _____ C:\Users\Public\Desktop\Inscryption.lnk
2021-11-05 19:32 - 2021-11-05 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inscryption [GOG.com]
2021-11-04 22:10 - 2021-11-04 22:10 - 000001156 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-04 22:10 - 2021-11-04 22:10 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-11-04 18:19 - 2021-11-07 08:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-21 15:39 - 2016-11-18 16:07 - 000000000 ____D C:\Users\Windows 7\AppData\LocalLow\Mozilla
2021-11-21 15:17 - 2020-04-15 12:25 - 000000000 ___RD C:\Users\Windows 7\Desktop\exe et zip
2021-11-21 15:13 - 2020-08-11 15:55 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-21 15:04 - 2021-09-20 19:38 - 002007078 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-21 15:04 - 2019-12-07 15:50 - 000865450 _____ C:\WINDOWS\system32\perfh00C.dat
2021-11-21 15:04 - 2019-12-07 15:50 - 000177800 _____ C:\WINDOWS\system32\perfc00C.dat
2021-11-21 15:04 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-21 15:01 - 2016-05-01 15:32 - 000000000 ____D C:\Program Files\CCleaner
2021-11-21 14:59 - 2021-09-20 19:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-21 14:59 - 2021-09-20 19:25 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-21 14:59 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-21 14:59 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-11-21 14:59 - 2016-09-26 02:43 - 000000000 ____D C:\ProgramData\NVIDIA
2021-11-21 14:58 - 2021-09-21 17:15 - 000000000 ____D C:\Users\Windows 7\AppData\Roaming\qBittorrent
2021-11-21 14:45 - 2021-09-20 19:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-21 10:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-21 10:02 - 2021-09-20 19:27 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-21 10:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-20 20:06 - 2020-08-11 15:53 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2021-11-20 20:06 - 2017-04-17 17:02 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2021-11-20 19:52 - 2014-06-06 17:44 - 000000000 ____D C:\Temp
2021-11-20 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2021-11-20 19:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-20 19:51 - 2017-04-17 17:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-11-20 19:51 - 2017-04-17 17:02 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-11-20 19:45 - 2021-09-21 10:19 - 000000000 ____D C:\WINDOWS\Panther
2021-11-20 19:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-11-20 18:50 - 2021-09-20 19:29 - 000000000 ____D C:\Users\Windows 7
2021-11-20 15:36 - 2018-06-18 16:46 - 000000000 ____D C:\ProgramData\Packages
2021-11-20 15:36 - 2018-01-31 20:11 - 000000000 ____D C:\Users\Windows 7\AppData\Local\Packages
2021-11-19 14:15 - 2020-12-23 11:51 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-19 14:15 - 2020-12-23 11:51 - 000002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-11-17 18:57 - 2021-09-20 21:20 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-17 18:57 - 2021-09-20 21:20 - 000003540 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7ae4e523f5b59
2021-11-17 15:52 - 2015-02-01 13:04 - 000000000 ____D C:\Users\Windows 7\AppData\Roaming\vlc
2021-11-17 09:59 - 2021-09-20 19:39 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-11-14 10:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-11-09 22:16 - 2021-09-20 19:26 - 000313328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-09 22:15 - 2019-12-07 15:53 - 000000000 ___SD C:\WINDOWS\system32\AppV
2021-11-09 22:15 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-11-09 22:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-09 22:15 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-09 21:18 - 2013-08-16 16:27 - 000413754 __RSH C:\bootmgr
2021-11-09 20:56 - 2015-01-22 02:02 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-09 20:52 - 2015-01-22 02:02 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-09 16:36 - 2015-10-08 09:10 - 000000000 ___RD C:\Users\Windows 7\Desktop\pdf
2021-11-09 14:41 - 2016-02-25 16:43 - 000000000 ____D C:\Users\Windows 7\AppData\Roaming\AIMP
2021-11-07 08:35 - 2015-01-21 23:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-05 08:25 - 2021-09-20 19:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-11-05 08:25 - 2015-11-03 23:24 - 000001238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-11-02 19:05 - 2018-06-18 16:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-25 19:52 - 2021-09-15 12:14 - 000000000 ____D C:\Users\Windows 7\AppData\Local\ElevatedDiagnostics
==================== Fichiers à la racine de certains dossiers ========
2012-02-11 02:05 - 2012-02-11 02:05 - 000035483 _____ () C:\Users\Windows 7\1.dat
2015-08-21 01:47 - 2015-08-21 01:47 - 000292878 _____ () C:\Program Files\ShedkoFolderico4_184364341.ico
2016-11-05 09:02 - 2016-11-05 09:02 - 000292878 _____ () C:\Program Files (x86)\ShedkoFolderico4_95747313.ico
2019-08-13 12:01 - 2019-08-13 21:46 - 000000044 _____ () C:\Users\Windows 7\AppData\Roaming\~SiMPLEX.ini
2020-04-06 22:51 - 2020-04-06 22:51 - 000003584 _____ () C:\Users\Windows 7\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-08-11 19:53 - 2020-08-12 08:43 - 001065984 _____ () C:\Users\Windows 7\AppData\Local\file__0.localstorage
2016-11-02 20:21 - 2016-11-02 20:21 - 000000000 ___SH () C:\Users\Windows 7\AppData\Local\LumaEmu
2021-06-23 16:29 - 2021-06-23 16:29 - 000001303 _____ () C:\Users\Windows 7\AppData\Local\recently-used.xbel
2015-03-22 10:34 - 2021-09-20 22:55 - 000007643 _____ () C:\Users\Windows 7\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================