Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:12-12-2015 01 Exécuté par Nous (administrateur) sur NOUS-PC (14-08-2023 07:26:58) Exécuté depuis C:\Users\Nous\Desktop\GestionPC& Desinfection\Desinfections Profils chargés: Nous (Profils disponibles: Nous & Fabien & Administrateur) Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 10 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (AnVir Software) C:\Program Files (x86)\AnVir Task Manager Free\anvirlauncher.exe (AnVir Software) C:\Program Files (x86)\AnVir Task Manager Free\AnVir.exe (CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE (Gadwin Systems, Inc) C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe (Brio) C:\Program Files\FolderSize\FolderSizeSvc.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe () C:\Windows\SysWOW64\PSIService.exe () C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Microsoft Corporation) C:\Windows\splwow64.exe (CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE (CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNACDSWK.EXE (Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe (TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe (AnVir Software) C:\Program Files (x86)\AnVir Task Manager Free\anvir64.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mz Ultimate Tools) C:\Program Files\Mz Ultimate Tools\Mz RAM Booster\MzRAMBooster.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe (AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe (AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\system\HsMgr64.exe (The Eraser Project) C:\Program Files\Eraser\Eraser.exe (WinTask SRL) C:\Program Files (x86)\WinTask\x64\Bin\SchedInd.exe (Brio) C:\Program Files\FolderSize\FolderSize.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (WinTask SRL) C:\Program Files (x86)\WinTask\Bin\TaskAdmin.exe (WinTask SRL) C:\Program Files (x86)\WinTask\x64\Bin\SchedSrv.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (Zhorn Software) C:\Program Files (x86)\Stickies\stickies.exe (Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (EJIE Technology) C:\Program Files (x86)\Clover\Clover.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-05-02] (AVAST Software) HKLM\...\Run: [CNAP2 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] () HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\68.0.2.0\GoogleDriveFS.exe [50728728 2022-12-07] (Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\68.0.2.0\GoogleDriveFS.exe [50728728 2022-12-07] (Google, Inc.) HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\Run: [Gadwin PrintScreen] => C:\Program Files (x86)\Gadwin Systems\PrintScreen\PrintScreen.exe [1842384 2012-05-30] (Gadwin Systems, Inc) HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\Policies\Explorer: [CDRAutoRun] 0 HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\Policies\Explorer: [MaxRecentDocs] 60 HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {3e2189b9-a0b4-11ed-81b4-0008543e8d6f} - X:\OInstall.exe HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {4d157c04-fdbb-11ec-9b80-0008543e8d6f} - X:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {4d157c68-fdbb-11ec-9b80-0008543e8d6f} - X:\OInstall.exe HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {4d157c69-fdbb-11ec-9b80-0008543e8d6f} - X:\OInstall.exe HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {4d157d0e-fdbb-11ec-9b80-0008543e8d6f} - X:\OInstall.exe HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {4d157d10-fdbb-11ec-9b80-0008543e8d6f} - X:\OInstall.exe HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {7141b62a-fc25-11ec-9259-0008543e8d6f} - Z:\SETUP.EXE HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {7225cf16-3650-11eb-966f-0008543e8d6f} - V:\SETUP.EXE HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {791b218c-fce8-11ec-9c49-0008543e8d6f} - X:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {791b218d-fce8-11ec-9c49-0008543e8d6f} - Z:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {791b21dd-fce8-11ec-9c49-0008543e8d6f} - X:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {791b21de-fce8-11ec-9c49-0008543e8d6f} - Y:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {7ea1acef-f9cc-11ec-8851-0008543e8d6f} - Z:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {93f467d4-35fa-11eb-a95f-0008543e8d6f} - V:\SETUP.EXE HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {93f4680b-35fa-11eb-a95f-0008543e8d6f} - V:\SETUP.EXE HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {99628134-fb5b-11ec-94a4-0008543e8d6f} - Z:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {9962813c-fb5b-11ec-94a4-0008543e8d6f} - Z:\setup.EXE /AUTORUN HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {a3cffb30-36bc-11eb-ac4d-0008543e8d6f} - V:\SETUP.EXE HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\...\MountPoints2: {e9ed0088-fd4c-11ec-9f29-0008543e8d6f} - X:\setup.EXE /AUTORUN HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\68.0.2.0\GoogleDriveFS.exe [50728728 2022-12-07] (Google, Inc.) HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe min /RestartByRestartManager:00BC3F3F-FACF-4b20-BD5E-FB4741453243 HKU\S-1-5-18\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe min /RestartByRestartManager:A7DD3559-4716-4f76-994F-ADDEF17A4432 AppInit_DLLs-x32: C:\Windows\system32\guard64.dll => C:\Windows\SysWOW64\guard64.dll [390392 2012-11-08] (COMODO) AppInit_DLLs-x32: ; acaptuser32.dll => Pas de fichier ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-05-02] (AVAST Software) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => Pas de fichier ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => Pas de fichier ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => Pas de fichier ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\x86\ashShell.dll [2023-05-02] (AVAST Software) GroupPolicyUsers\S-1-5-21-3564985665-4272209376-2582041023-1011\User: Restriction <======= ATTENTION GroupPolicyScripts: Restriction <======= ATTENTION GroupPolicyScripts\User: Restriction <======= ATTENTION GroupPolicyUsers\S-1-5-21-3564985665-4272209376-2582041023-1011\User\Scripts: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ProxyServer: [S-1-5-21-3564985665-4272209376-2582041023-1000] => localhost:8080 Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{5DAE8889-278C-431B-B420-892C06F3E134}: [DhcpNameServer] 212.27.40.240 212.27.40.241 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/ SearchScopes: HKU\S-1-5-21-3564985665-4272209376-2582041023-1000 -> {038858C1-15FA-443A-B099-3F751138A316} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2023-01-30] (Microsoft Corporation) BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-01-30] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2023-01-30] (Microsoft Corporation) BHO-x32: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper32.dll [2014-01-23] (EJIE Technology) Toolbar: HKU\S-1-5-21-3564985665-4272209376-2582041023-1000 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier Toolbar: HKU\S-1-5-21-3564985665-4272209376-2582041023-1000 -> Pas de nom - {093F479D-712E-46CD-9E06-62E734A05F68} - Pas de fichier Toolbar: HKU\S-1-5-21-3564985665-4272209376-2582041023-1000 -> Pas de nom - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Pas de fichier Toolbar: HKU\S-1-5-21-3564985665-4272209376-2582041023-1000 -> Pas de nom - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - Pas de fichier DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-01-30] (Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\\mscoree.dll [2010-11-21] (Microsoft Corporation) Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\SysWOW64\\mscoree.dll [2010-11-21] (Microsoft Corporation) Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\\mscoree.dll [2010-11-21] (Microsoft Corporation) Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\SysWOW64\\mscoree.dll [2010-11-21] (Microsoft Corporation) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\\mscoree.dll [2010-11-21] (Microsoft Corporation) Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\SysWOW64\\mscoree.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-15] () FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-23] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-23] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-01-30] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-15] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [Pas de fichier] FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [Pas de fichier] FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-23] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-23] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-01-30] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2012-09-06] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2012-09-06] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-08-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3564985665-4272209376-2582041023-1000: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\Nous\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2018-01-09] (SquareClock SAS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-08-01] (Adobe Systems Inc.) FF Extension: Pas de nom - C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490\Extensions\antffw@antdownloadmanager.com.xpi [2023-05-28] FF Extension: Pas de nom - C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490\Extensions\customscrollbars@computerwhiz.xpi [2023-04-25] FF Extension: Pas de nom - C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2022-12-10] FF Extension: Pas de nom - C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490\Extensions\qwantcomforfirefox@jetpack.xpi [2022-12-10] FF Extension: Pas de nom - C:\Users\Nous\AppData\Roaming\Mozilla\Firefox\Profiles\9nacouzo.Nous-1644589382490\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2023-05-27] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-04-20] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-04-20] <==== ATTENTION Chrome: ======= CHR HomePage: Default -> hxxps://www.google.fr/ CHR StartupUrls: Default -> "hxxps://google.fr/" CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png CHR Profile: C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Recherche Google) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Download with Ant Download Manager) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\dalgiebmfcjackkbjfbfmlnflbdfbekj [2020-10-25] CHR Extension: (AHA Music - Recherche de chanson pour navigateur) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2023-07-07] CHR Extension: (Adobe Acrobat : outils de modification, de conversion et de signature de PDF) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-08-10] CHR Extension: (Chrome Remote Desktop) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-09-16] CHR Extension: (HDS / HLS Video Downloader) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\gelfgldejnhgpjcbnfpkglhpelajafao [2023-05-09] CHR Extension: (Google Docs hors connexion) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-25] CHR Extension: (IE Tab) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2023-05-09] CHR Extension: (Chrome Remote Desktop) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-06] CHR Extension: (Stream Recorder - download HLS as MP4) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogidnfllpdhagebkblkgbfijkbkjdmm [2023-03-27] CHR Extension: (W Zoom) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\jneiefgdpanjnbjgdiaokmgjnbhclaom [2020-07-07] CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-01-25] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Adobe HDS / HLS Video Downloader) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Default\Extensions\pibndofbpkoaipoidbkephfhhnapkccn [2018-11-01] CHR Profile: C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Kaspersky Protection) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2020-09-26] CHR Extension: (Docs) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-26] CHR Extension: (Google Drive) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-09-26] CHR Extension: (YouTube) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-14] CHR Extension: (Recherche Google) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-02] CHR Extension: (Adobe Acrobat) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-09-26] CHR Extension: (Google Docs hors connexion) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-26] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-09-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-26] CHR Extension: (Gmail) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-09-26] CHR Extension: (Chrome Media Router) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-26] CHR Profile: C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2 CHR Extension: (Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-08] CHR Extension: (Google Drive) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-08] CHR Extension: (YouTube) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-08] CHR Extension: (Recherche Google) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-09-08] CHR Extension: (Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-05-22] CHR Extension: (Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-05-22] CHR Extension: (Store) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-05-22] CHR Extension: (Google Wallet) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-11] CHR Extension: (Gmail) - C:\Users\Nous\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-07] CHR HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dalgiebmfcjackkbjfbfmlnflbdfbekj] - C:\Program Files (x86)\Ant Download Manager\antCH\antCH.crx [2020-04-02] CHR HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-3564985665-4272209376-2582041023-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome.OYK6LIHDB3OZGOBPY7TUSXOPOM - C:\Users\Nous\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) S4 AIPS; C:\Program Files (x86)\arcai.com\aips.exe [2677760 2018-05-11] (Arcai.com) [Fichier non signé] S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [Fichier non signé] R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8822680 2023-05-30] (AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [584600 2023-05-02] (AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [585112 2023-05-02] (AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-05-08] (AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11139576 2023-01-02] (Microsoft Corporation) S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-07-02] (Creative Labs) [Fichier non signé] S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [439616 2020-03-12] (Digital Wave Ltd) S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205768 2022-12-15] (Microsoft Corporation) S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205768 2022-12-15] (Microsoft Corporation) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation) R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Fichier non signé] S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Fichier non signé] S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2013-07-01] (Macrovision Europe Ltd.) [Fichier non signé] R2 FolderSize; C:\Program Files\FolderSize\FolderSizeSvc.exe [163840 2017-02-16] (Brio) [Fichier non signé] S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-12-19] (Freemake) S3 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2018-03-27] (Ellora Assets Corp.) [Fichier non signé] S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\elevation_service.exe [1725720 2023-01-24] (Google LLC) S2 HCloverService; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) S2 HCloverService; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé] S3 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC) R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [174656 2006-11-02] () [Fichier non signé] S4 PSI_SVC_2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc) S4 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc) S3 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [Fichier non signé] R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] () S3 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-09-24] (DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-09-24] (DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [17845048 2023-08-07] (TeamViewer Germany GmbH) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\\winhttp.dll [444928 2018-01-01] (Microsoft Corporation) R3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\\winhttp.dll [351744 2018-01-01] (Microsoft Corporation) R2 WinTaskAdmin; C:\Program Files (x86)\WinTask\Bin\TaskAdmin.exe [128280 2017-11-20] (WinTask SRL) S3 WO_LiveService; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe [885096 2013-03-06] () R2 WTScheduler; C:\Program Files (x86)\WinTask\x64\Bin\SchedSrv.exe [1814808 2017-11-20] (WinTask SRL) S2 nvsvc; pas de ImagePath S3 rpcapd; "%ProgramFiles(x86)%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles(x86)%\WinPcap\rpcapd.ini" [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31360 2023-05-02] (AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [235880 2023-05-02] (AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [391800 2023-05-02] (AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297824 2023-05-02] (AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95904 2023-05-02] (AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39592 2023-05-02] (AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [270472 2023-05-02] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80408 2023-05-02] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [942936 2023-05-02] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [703280 2023-05-02] (AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319552 2023-05-02] (AVAST Software) R1 cbfs20; C:\Windows\System32\drivers\cbfs20.sys [449080 2022-05-26] (Callback Technologies, Inc. - www.callback.com) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [34280 2017-12-28] (COMODO) R1 cmderd; C:\Windows\SysWOW64\DRIVERS\cmderd.sys [22736 2012-11-08] (COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [846688 2017-12-28] (COMODO) R1 cmdGuard; C:\Windows\SysWOW64\DRIVERS\cmdguard.sys [584056 2012-11-08] (COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [59096 2017-12-28] (COMODO) R1 cmdHlp; C:\Windows\SysWOW64\DRIVERS\cmdhlp.sys [38144 2012-11-08] (COMODO) R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc) R3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [38472 2011-02-02] (Dell Inc.) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [140920 2021-10-14] (Samsung Electronics Co., Ltd.) R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2016-12-21] (Disc Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 googledrivefs3758; C:\Windows\System32\DRIVERS\googledrivefs3758.sys [386632 2022-11-01] (Google, Inc.) S1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [123032 2017-12-28] (COMODO) S1 inspect; C:\Windows\SysWOW64\DRIVERS\inspect.sys [94288 2012-11-08] (COMODO) S3 IOMap; pas de ImagePath R2 LiveTunerPM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor64.sys [12824 2011-03-08] () R1 npcap; C:\Windows\System32\DRIVERS\npcap.sys [67024 2022-08-19] (Insecure.Com LLC.) S3 NPF; C:\Windows\SysWOW64\drivers\NPF.sys [34064 2010-12-21] (CACE Technologies) S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-07-17] (NVIDIA Corporation) S3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57976 2017-07-17] (NVIDIA Corporation) R3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Realtek Semiconductor Corporation ) S4 secdrv; pas de ImagePath S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [167544 2021-10-14] (Samsung Electronics Co., Ltd.) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2018-04-25] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2018-04-25] (Acronis International GmbH) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2018-04-25] (Acronis International GmbH) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2017-10-26] (MBB) S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2012-03-02] (Wondershare) U1 aswbdisk; pas de ImagePath U3 DfSdkS; pas de ImagePath S3 hamachi; system32\DRIVERS\hamachi.sys [X] U4 npcap_wifi; pas de ImagePath S3 RtlWlanu; system32\DRIVERS\rtwlanu.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-08-14 07:25 - 2023-08-14 07:25 - 00000000 _____ C:\Users\Nous\Downloads\84W6SEPz.htm.part 2023-08-13 17:55 - 2023-08-13 17:55 - 00333718 _____ C:\Users\Nous\Desktop\Shortcut_13-08-2023_17-53-08.txt 2023-08-13 17:53 - 2023-08-13 17:53 - 00094026 _____ C:\Users\Nous\Desktop\Addition_13-08-2023_17-53-08.txt 2023-08-13 17:53 - 2023-08-13 17:53 - 00056667 _____ C:\Users\Nous\Desktop\FRST_13-08-2023_17-53-08.txt 2023-08-13 09:07 - 2023-08-13 09:07 - 00001209 _____ C:\Users\Nous\Desktop\ESET Online Scanner.lnk 2023-08-13 08:44 - 2023-08-13 08:44 - 00333056 _____ C:\Users\Nous\Downloads\pjjoint_uploader.exe 2023-08-13 08:05 - 2023-08-14 07:26 - 00000000 ____D C:\FRST 2023-08-13 08:04 - 2023-08-13 08:04 - 00668976 _____ C:\Users\Nous\Desktop\PUP.Optional.pdf 2023-08-12 17:14 - 2023-08-12 17:14 - 00001038 _____ C:\Users\Nous\Desktop\PowerBatch.lnk 2023-08-12 17:14 - 2023-08-12 17:14 - 00001038 _____ C:\Users\Fabien\Desktop\PowerBatch.lnk 2023-08-12 17:14 - 2023-08-12 17:14 - 00001038 _____ C:\Users\Administrateur\Desktop\PowerBatch.lnk 2023-08-12 17:14 - 2023-08-12 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerBatch 2023-08-12 17:14 - 2023-08-12 17:14 - 00000000 ____D C:\Program Files (x86)\Astase 2023-08-11 09:15 - 2023-08-11 09:15 - 00000309 _____ C:\Users\Nous\Downloads\suppr-takeown_clic_droit.reg.zip 2023-08-11 07:47 - 2023-08-11 07:44 - 00005122 _____ C:\Users\Nous\Desktop\Job003.ibj 2023-08-10 16:46 - 2023-08-10 16:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iperius Backup 2023-08-10 16:46 - 2023-08-10 16:46 - 00000000 ____D C:\ProgramData\IperiusBackup 2023-08-10 16:46 - 2023-08-10 16:46 - 00000000 ____D C:\Program Files (x86)\Iperius Backup 2023-08-10 15:40 - 2023-08-10 15:44 - 00000000 ____D C:\Users\Nous\AppData\Roaming\FreeFileSync 2023-08-09 17:37 - 2023-08-09 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2023-08-09 17:22 - 2023-08-13 18:31 - 00000386 _____ C:\Windows\Tasks\update-sys.job 2023-08-09 17:22 - 2023-08-13 17:07 - 00000386 _____ C:\Windows\Tasks\update-S-1-5-21-3564985665-4272209376-2582041023-1000.job 2023-08-09 17:22 - 2023-08-09 17:37 - 00003258 _____ C:\Windows\System32\Tasks\update-S-1-5-21-3564985665-4272209376-2582041023-1000 2023-08-09 17:22 - 2023-08-09 17:22 - 00003282 _____ C:\Windows\System32\Tasks\update-sys 2023-08-09 17:22 - 2023-08-09 17:22 - 00000000 ____D C:\Program Files (x86)\Skillbrains 2023-08-09 17:06 - 2023-08-09 17:06 - 01047057 _____ C:\Users\Nous\Desktop\EVOLUTION_1083002304_1145875668.pdf 2023-08-09 17:05 - 2023-08-09 17:05 - 01047057 _____ C:\Users\Nous\Downloads\EVOLUTION_1083002304_1145875668.pdf 2023-08-09 16:56 - 2023-08-09 16:56 - 00020499 _____ C:\Users\Nous\Desktop\ZHPCleaner (R).html 2023-08-09 16:44 - 2023-08-09 16:44 - 00021418 _____ C:\Users\Nous\Desktop\ZHPCleaner (S).html 2023-08-09 16:44 - 2023-08-09 16:44 - 00011642 _____ C:\Users\Nous\Desktop\ZHPCleaner (S).txt 2023-08-09 15:29 - 2023-08-09 16:14 - 00000000 ____D C:\Users\Nous\AppData\Local\ZHP 2023-08-09 11:26 - 2023-08-09 11:28 - 00000687 _____ C:\Users\Nous\Desktop\ZHPCleaner.lnk 2023-08-08 07:54 - 2023-08-08 07:54 - 00141393 _____ C:\Users\Nous\Downloads\Calculette_simulation_facture.xlsx 2023-08-07 16:18 - 2023-08-07 16:54 - 00000000 ____D C:\Program Files (x86)\SeaTools5 2023-08-07 16:18 - 2023-08-07 16:18 - 00002037 _____ C:\Users\Public\Desktop\SeaTools.lnk 2023-08-07 16:18 - 2023-08-07 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaTools 2023-08-07 12:02 - 2023-08-07 16:36 - 00000000 ____D C:\Users\Nous\AppData\Roaming\gsmartcontrol 2023-08-07 12:01 - 2023-08-07 12:01 - 00000000 ____D C:\Program Files (x86)\GsmartControl 2023-08-07 11:58 - 2023-08-07 11:59 - 10352729 _____ C:\Users\Nous\Downloads\gsmartcontrol-1.1.4-win64.exe 2023-08-07 10:50 - 2023-08-07 11:29 - 00000000 ____D C:\Program Files (x86)\HDDScan 2023-08-05 14:54 - 2023-08-05 14:54 - 00014809 _____ C:\Users\Nous\Downloads\Ticket-1.pdf 2023-08-05 14:51 - 2023-08-05 14:51 - 00014809 _____ C:\Users\Nous\Downloads\Ticket.pdf 2023-08-01 09:29 - 2023-08-01 09:29 - 00001125 _____ C:\Windows\system32\Screenshot 2023-08-01 at 09-29-27 FacilCasa Replacement de Fauteuil Bistrot Metal Siège Rond Remplacement Chaise Thonet en Plastique - Remplacez Economisez avec Remplacement Paille Vienna (Diamètre.png.lnk 2023-08-01 09:25 - 2023-08-01 09:29 - 00001125 _____ C:\Windows\system32\Screenshot 2023-08-01 at 09-24-37 FacilCasa Replacement de Fauteuil Bistrot Metal Siège Rond Remplacement Chaise Thonet en Plastique - Remplacez Economisez avec Remplacement Paille Vienna (Diamètre.png.lnk 2023-07-31 14:53 - 2023-07-31 14:53 - 00000126 _____ C:\Users\Nous\AppData\Local\digikam_systemrc 2023-07-31 14:48 - 2023-07-31 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\digiKam 8.1.0 2023-07-31 14:46 - 2023-07-31 14:48 - 00000000 ____D C:\Program Files\digiKam 2023-07-31 14:46 - 2023-07-31 14:46 - 118872898 _____ C:\Users\Nous\Downloads\digiKam-8.1.0-Win64.exe 2023-07-22 14:54 - 2023-07-22 15:29 - 00000000 ____D C:\Users\Nous\0_Videos 2023-07-22 11:08 - 2023-07-22 11:09 - 17609281 _____ C:\Users\Nous\Downloads\Magix manuel 2013.pdf 2023-07-19 06:59 - 2023-08-14 06:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-08-14 07:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows 2023-08-14 07:16 - 2022-05-08 09:47 - 00000000 ____D C:\Users\Nous\AppData\Local\Avast Software 2023-08-14 07:07 - 2013-07-02 12:52 - 00000000 ____D C:\Program Files (x86)\Google 2023-08-14 07:06 - 2022-07-27 12:18 - 00000000 ____D C:\Users\Nous\AppData\Roaming\stickies 2023-08-14 06:46 - 2022-04-26 10:58 - 00000000 ____D C:\Users\Nous\Documents\Fichiers Outlook 2023-08-14 06:45 - 2020-04-27 16:21 - 00000000 ____D C:\Users\Nous\AppData\Local\Deployment 2023-08-14 06:42 - 2022-05-08 09:28 - 00000000 ____D C:\ProgramData\Avast Software 2023-08-14 06:42 - 2015-09-24 18:33 - 00065536 _____ C:\Windows\system32\Ikeext.etl 2023-08-14 06:42 - 2013-09-07 11:01 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2023-08-14 06:41 - 2023-05-22 07:06 - 00000448 _____ C:\Windows\Tasks\Wise Memory Optimizer Task.job 2023-08-14 06:41 - 2022-02-11 17:15 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2023-08-14 06:40 - 2014-03-20 15:13 - 00000000 ____D C:\ProgramData\NVIDIA 2023-08-13 20:13 - 2009-07-14 06:45 - 00022736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2023-08-13 20:13 - 2009-07-14 06:45 - 00022736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2023-08-13 16:05 - 2023-02-10 13:04 - 00003132 _____ C:\Windows\System32\Tasks\CorelUpdateHelperTask-989D98D4E99FFADB821E72F1F6654D59 2023-08-13 13:15 - 2014-06-23 09:10 - 00000000 ____D C:\Users\Nous\AppData\Local\Adobe 2023-08-13 10:32 - 2019-02-05 16:45 - 00003928 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{53CF1453-1820-4949-BBF8-1D065B014273} 2023-08-12 17:13 - 2016-06-23 19:13 - 00000000 ____D C:\Users\Nous\AppData\Local\CrashDumps 2023-08-11 11:16 - 2022-10-13 16:30 - 00002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-08-11 07:33 - 2022-05-08 09:43 - 00004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2023-08-10 15:39 - 2016-03-28 18:15 - 00000000 ____D C:\Program Files\FreeFileSync 2023-08-10 13:00 - 2011-04-12 11:16 - 00862818 _____ C:\Windows\system32\perfh00C.dat 2023-08-10 13:00 - 2011-04-12 11:16 - 00215280 _____ C:\Windows\system32\perfc00C.dat 2023-08-10 13:00 - 2009-07-14 07:13 - 01887088 _____ C:\Windows\system32\PerfStringBackup.INI 2023-08-10 13:00 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2023-08-09 17:37 - 2022-01-02 16:12 - 00000424 _____ C:\Users\Nous\AppData\Local\UserProducts.xml 2023-08-09 16:56 - 2014-02-07 08:24 - 00000000 ____D C:\Users\Nous\AppData\Roaming\ZHP 2023-08-09 11:28 - 2016-07-06 11:30 - 00000055 _____ C:\Users\Nous\ZHPCleaner.exe 2023-08-09 11:28 - 2013-06-30 13:30 - 00000000 ____D C:\Users\Nous 2023-08-09 11:26 - 2014-05-15 09:47 - 00013030 _____ C:\Users\Nous\AppData\Local\PDOXUSRS.NET 2023-08-09 11:25 - 2014-04-27 16:12 - 00000000 ____D C:\Program Files (x86)\ZebHelpProcess 2023-08-08 11:32 - 2016-05-13 16:33 - 00000000 ____D C:\Users\Nous\AppData\Local\AxCrypt 2023-08-07 17:07 - 2013-07-01 15:24 - 00007651 _____ C:\Users\Nous\AppData\Local\Resmon.ResmonCfg 2023-08-05 11:29 - 2022-02-21 13:39 - 00000000 ____D C:\Users\Nous\AppData\Roaming\Code 2023-08-03 08:13 - 2013-08-13 19:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-08-02 15:09 - 2016-01-06 15:28 - 00000000 ___RD C:\Users\Nous\OneDrive 2023-08-02 08:02 - 2018-05-18 09:05 - 00003798 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2023-08-02 08:02 - 2018-05-18 09:05 - 00003670 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2023-07-31 15:37 - 2020-04-15 18:11 - 00001732 _____ C:\Users\Nous\Desktop\XnViewMP.lnk 2023-07-31 15:36 - 2020-04-15 18:11 - 00000000 ____D C:\Users\Nous\AppData\Roaming\XnViewMP 2023-07-31 15:22 - 2020-04-15 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnViewMP 2023-07-31 15:22 - 2020-04-15 18:10 - 00000000 ____D C:\Program Files\XnViewMP 2023-07-31 15:20 - 2020-04-16 19:30 - 00061547 _____ C:\Users\Nous\AppData\Local\digikamrc 2023-07-31 14:50 - 2021-05-24 12:02 - 00000000 ____D C:\Users\Nous\AppData\Roaming\digikam 2023-07-31 14:50 - 2020-04-16 19:31 - 00000000 ____D C:\Users\Nous\AppData\Local\digikam 2023-07-31 14:48 - 2018-02-23 17:09 - 00000000 ____D C:\Users\Nous\AppData\Local\cache 2023-07-25 08:34 - 2014-03-17 16:48 - 00000000 ____D C:\Program Files\Recuva 2023-07-24 18:51 - 2020-05-03 10:19 - 00000256 _____ C:\Users\Nous\Desktop\WanaWeb.url 2023-07-21 15:56 - 2013-09-14 19:52 - 00000000 ____D C:\Users\Nous\AppData\Roaming\vlc 2023-07-15 09:59 - 2022-02-11 17:15 - 00032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT ==================== Fichiers à la racine de certains dossiers ======= 2014-02-11 12:42 - 2014-02-11 12:42 - 6583601 _____ () C:\Program Files\Malwarebytes' Anti-Malware.zip 2014-02-11 13:35 - 2014-02-11 13:35 - 0000291 _____ () C:\Program Files\Maman.txt 2013-08-18 15:53 - 2013-08-18 15:53 - 0002528 _____ () C:\Users\Nous\AppData\Roaming\$_hpcst$.hpc 2015-04-05 18:40 - 2015-04-05 18:40 - 0000024 ___SH () C:\Users\Nous\AppData\Roaming\1D959CA221C7573.sys 2016-04-29 19:31 - 2016-05-02 18:15 - 0000132 _____ () C:\Users\Nous\AppData\Roaming\Adobe GIF Format CS5 Prefs 2016-05-06 15:53 - 2016-05-06 15:53 - 0000132 _____ () C:\Users\Nous\AppData\Roaming\Adobe PNG Format CS5 Prefs 2016-04-29 19:30 - 2019-11-06 19:45 - 0000132 _____ () C:\Users\Nous\AppData\Roaming\Préfs Filtre IllExportation Adobe CS5 2014-04-03 12:42 - 2014-06-07 17:09 - 0001594 _____ () C:\Users\Nous\AppData\Roaming\SAS7_000.DAT 2015-04-05 18:40 - 2015-04-05 18:40 - 0000024 ___SH () C:\Users\Nous\AppData\Roaming\System5908ConfigCollection.dat 2018-01-10 20:27 - 2020-04-24 09:19 - 0033280 ___SH () C:\Users\Nous\AppData\Roaming\Thumbs.db 2017-12-03 15:49 - 2017-12-03 15:49 - 0027128 _____ () C:\Users\Nous\AppData\Roaming\UserTile.png 2023-01-08 19:30 - 2023-01-08 19:30 - 0013009 _____ () C:\Users\Nous\AppData\Roaming\Valeurs séparées par une virgule.CAL 2016-07-06 11:11 - 2016-07-06 11:11 - 0000600 _____ () C:\Users\Nous\AppData\Roaming\winscp.rnd 2022-01-13 11:07 - 2023-06-03 08:38 - 0014336 _____ () C:\Users\Nous\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-04-16 19:30 - 2023-07-31 15:20 - 0061547 _____ () C:\Users\Nous\AppData\Local\digikamrc 2023-07-31 14:53 - 2023-07-31 14:53 - 0000126 _____ () C:\Users\Nous\AppData\Local\digikam_systemrc 2015-12-27 13:35 - 2015-12-27 13:35 - 0000092 _____ () C:\Users\Nous\AppData\Local\fusioncache.dat 2020-04-20 12:14 - 2020-04-20 12:14 - 0000050 _____ () C:\Users\Nous\AppData\Local\kdeglobals 2014-04-14 16:47 - 2014-04-14 16:47 - 0004096 ____H () C:\Users\Nous\AppData\Local\keyfile3.drm 2014-05-15 09:47 - 2023-08-09 11:26 - 0013030 _____ () C:\Users\Nous\AppData\Local\PDOXUSRS.NET 2023-02-24 11:06 - 2023-02-24 11:06 - 0003775 _____ () C:\Users\Nous\AppData\Local\recently-used.xbel 2013-07-01 15:24 - 2023-08-07 17:07 - 0007651 _____ () C:\Users\Nous\AppData\Local\Resmon.ResmonCfg 2021-11-27 17:54 - 2021-11-27 17:55 - 0002052 _____ () C:\Users\Nous\AppData\Local\showfotorc 2022-01-02 16:12 - 2022-01-02 16:12 - 0000003 _____ () C:\Users\Nous\AppData\Local\updater.log 2022-01-02 16:12 - 2023-08-09 17:37 - 0000424 _____ () C:\Users\Nous\AppData\Local\UserProducts.xml 2023-02-19 14:29 - 2023-02-19 14:30 - 0000072 _____ () C:\Users\Nous\AppData\Local\xobni_installer_updater.log 2014-02-15 19:16 - 2014-02-15 19:16 - 0000635 _____ () C:\Users\Nous\AppData\Local\ZHPFixReport.txt 2022-07-29 17:07 - 2022-07-29 17:34 - 0000012 _____ () C:\ProgramData\euglsimg.lom 2022-07-29 17:07 - 2022-07-29 17:07 - 0000012 _____ () C:\ProgramData\hacfdfud.sav 2022-07-29 17:07 - 2022-07-29 18:01 - 0000012 _____ () C:\ProgramData\hghnnygn.hsj 2019-10-11 14:27 - 2019-10-11 14:27 - 0004158 _____ () C:\ProgramData\iqrjmdeq.fak 2022-07-29 17:07 - 2022-07-29 17:34 - 0000012 _____ () C:\ProgramData\jkaesggo.tcl 2022-07-29 17:07 - 2022-07-29 17:07 - 0000016 _____ () C:\ProgramData\mntemp 2022-07-29 17:07 - 2022-07-29 17:07 - 0000012 _____ () C:\ProgramData\ntxxycwa.llg 2014-04-01 19:01 - 2023-01-13 17:59 - 0000020 ____H () C:\ProgramData\PKP_DLdu.DAT 2014-04-01 19:03 - 2023-01-13 17:57 - 0000020 ____H () C:\ProgramData\PKP_DLdw.DAT 2022-07-29 17:07 - 2022-07-29 17:07 - 0000008 _____ () C:\ProgramData\qgsvudgg.rvw 2022-07-29 17:07 - 2022-07-29 18:01 - 0000012 _____ () C:\ProgramData\uvnbepfp.oob 2022-07-29 17:07 - 2022-07-29 17:07 - 0000008 _____ () C:\ProgramData\xkuaodcp.fck Fichiers à déplacer ou supprimer: ==================== C:\Users\Nous\(function().js C:\Users\Nous\ZHPCleaner.exe Certains fichiers dans TEMP: ==================== C:\Users\Nous\AppData\Local\Temp\npp.8.4.8.Installer.x64.exe C:\Users\Nous\AppData\Local\Temp\qseac.dll C:\Users\Nous\AppData\Local\Temp\vlc-3.0.18-win64.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-03-09 11:22 ==================== Fin de FRST.txt ============================