Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025 Exécuté par admin (administrateur) sur DEV3 (SAMSUNG ELECTRONICS CO., LTD. 700G7A) (22-04-2025 09:30:12) Exécuté depuis C:\Users\admin\Desktop\FRST64.exe Profils chargés: admin Plate-forme: Microsoft Windows 10 IoT Entreprise LTSC Version 21H2 19044.5487 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.12\DiscoverySrv.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe (C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe (C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe ->) (Guillemot Recherche et Développement, Inc -> DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\cpl2\HDJSeries2CPL.exe (C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe ->) (Guillemot Recherche et Développement, Inc -> DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\HDJSeriesCPL.exe (explorer.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <8> (explorer.exe ->) (Guillemot Recherche et Développement, Inc -> DJHERCULESMIX®) C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (services.exe ->) (Cyberghost SRL -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe (services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE (svchost.exe ->) () [Fichier non signé] E:\Program Files\Systeme\OpenHardwareMonitor\OpenHardwareMonitor.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Mirillis Sp. z o.o. -> Mirillis) C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040296 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1412840 2015-08-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3251408 2015-09-23] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [StartupDelayer] => D:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1254400 2015-12-18] (r2 Studios) [Fichier non signé] HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088224 2025-03-19] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [4059336 2023-05-24] (Guillemot Recherche et Développement, Inc -> DJHERCULESMIX®) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-04-05] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:windowsdefender HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-19\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-20\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-4101289595-1679347349-1642163595-1001\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-4101289595-1679347349-1642163595-500\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 8\Dashboard.exe [1418200 2025-01-28] (Cyberghost SRL -> CyberGhost S.R.L.) HKU\S-1-5-21-4101289595-1679347349-1642163595-500\...\Policies\Explorer: [NoInstrumentation] 1 HKLM\...\Print\Monitors\FPR10:: C:\Windows\system32\fpmon10-x64.dll [226760 2020-07-31] (FinePrint Software, LLC -> FinePrint Software, LLC) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [196096 2024-01-02] (pdfforge GmbH) [Fichier non signé] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.96\Installer\chrmstp.exe [2025-04-18] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\chrome.exe.lnk [2025-02-15] ShortcutTarget: chrome.exe.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FirefoxPortable.exe.lnk [2025-02-15] ShortcutTarget: FirefoxPortable.exe.lnk -> F:\Data\Documents\Apps\FirefoxPortable\FirefoxPortable.exe (Rare Ideas, LLC -> PortableApps.com) Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FreeCommander.exe.lnk [2025-02-15] ShortcutTarget: FreeCommander.exe.lnk -> E:\Program Files\_Free Commander\2009.02b\_Portable\FreeCommander.exe (Marek Jasinski -> Marek Jasinski - www.FreeCommander.com) [Fichier non signé] GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {8FFC3038-6CD5-482B-A1FA-6E1BE6BC1B09} - System32\Tasks\ActionLauncher_admin => C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe [530096 2022-04-14] (Mirillis Sp. z o.o. -> Mirillis) -> C:\Program Files (x86)\Mirillis\Action!\\5 Task: {7367D69D-F174-4FD2-B53A-25B4D17BFEC3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.) Task: {C09773D3-1E78-4B76-8D38-E9F2F4172DF5} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.12\WatchDog.exe [1156400 2025-03-25] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.12\repair Task: {60064229-7CE5-44D6-85C4-82ABF577A4C8} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem137.0.7129.0{15A34D74-CBD0-41E6-900F-11A4F2E589F4} => C:\Program Files (x86)\Google\GoogleUpdater\137.0.7129.0\updater.exe [7375968 2025-04-17] (Google LLC -> Google LLC) Task: {6A68F0B1-4D08-4172-B292-911B2763B005} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [3227472 2013-08-20] (Nero AG -> Nero AG) Task: {90D3D4F3-457C-4FD5-8EE9-3C822773CB16} - System32\Tasks\Open Hardware Monitor\Startup => E:\Program Files\Systeme\OpenHardwareMonitor\OpenHardwareMonitor.exe [493568 2020-12-27] () [Fichier non signé] (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 10.219.0.1 Tcpip\..\Interfaces\{a501bbd4-5607-4f50-940c-925cd063ead1}: [DhcpNameServer] 10.219.0.1 Edge: ======= Edge Profile: C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-23] Edge Extension: (Google Docs hors connexion) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-09]hxxps://clients2.google.com/service/update2/crx Edge Extension: (Edge relevant text changes) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-01-25]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.451.0 -> C:\Program Files\Java\jre1.8.0_451\bin\dtplugin\npDeployJava1.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.451.0 -> C:\Program Files\Java\jre1.8.0_451\bin\plugin2\npjp2.dll [2025-04-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.21 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-03-13] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.451.0 -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\dtplugin\npDeployJava1.dll [Pas de fichier] FF Plugin-x32: @java.com/JavaPlugin,version=11.451.0 -> C:\Program Files (x86)\Java\jre1.8.0_451\bin\plugin2\npjp2.dll [Pas de fichier] Chrome: ======= CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default [2025-04-22] CHR StartupUrls: Default -> "hxxps://www.forum64.de/?unread-thread-list/" CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2025-04-18]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Google Docs hors connexion) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-25]hxxps://clients2.google.com/service/update2/crx CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-02]hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-4101289595-1679347349-1642163595-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.) R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851640 2025-03-19] (Bitdefender SRL -> Bitdefender) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851640 2025-04-10] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851640 2025-04-10] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2963856 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender) R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [851640 2025-04-10] (Bitdefender SRL -> Bitdefender) R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [69592 2025-01-28] (Cyberghost SRL -> CyberGhost S.R.L.) R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [187920 2022-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation ®) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [755008 2025-03-25] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2025-01-25] (Microsoft Windows Publisher -> Microsoft Corporation) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [295872 2025-04-10] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851640 2025-04-10] (Bitdefender SRL -> Bitdefender) S4 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S4 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 asmthub3; C:\Windows\System32\drivers\asmthub3.sys [130536 2011-11-03] (MCCI Internal Testing Software -> ASMedia Technology Inc) S3 asmtxhci; C:\Windows\System32\drivers\asmtxhci.sys [395752 2011-11-03] (MCCI Internal Testing Software -> ASMedia Technology Inc) R1 atc; C:\Windows\System32\DRIVERS\atc.sys [7643696 2025-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci4; C:\Windows\system32\DRIVERS\bddci4.sys [971312 2025-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [24568 2023-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) S3 bdprivmon; C:\Windows\system32\DRIVERS\bdprivmon.sys [49200 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL) S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [42432 2024-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1791064 2025-02-13] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA) S3 HDJusbaudio; C:\Windows\system32\DRIVERS\HDJusbaudio_x64.sys [640080 2023-03-17] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation) S3 HDJusbaudioks; C:\Windows\System32\drivers\HDJusbaudioks_x64.sys [142880 2023-03-17] (Microsoft Windows Hardware Compatibility Publisher -> Guillemot Corporation) S3 Ignisv2; C:\Windows\system32\DRIVERS\ignisv2.sys [848472 2025-02-28] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [629184 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [1403456 2025-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) S4 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S4 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S4 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WinRing0_1_2_0; E:\Program Files\Systeme\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [14544 2025-04-22] (Noriyuki MIYAZAKI -> OpenLibSys.org) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2025-01-05] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2025-04-22 09:30 - 2025-04-22 09:30 - 000019625 _____ C:\Users\admin\Desktop\FRST.txt 2025-04-22 09:30 - 2025-04-22 09:30 - 000000000 ____D C:\FRST 2025-04-22 09:28 - 2025-04-22 09:28 - 002404864 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe 2025-04-20 19:51 - 2025-04-21 11:58 - 000000000 ____D C:\Users\admin\AppData\Roaming\furnace 2025-04-20 12:02 - 2025-04-21 11:58 - 000000000 ____D C:\Users\admin\AppData\Roaming\audacity 2025-04-20 12:02 - 2025-04-20 12:02 - 000000000 ____D C:\Users\admin\AppData\Local\audacity 2025-04-20 11:44 - 2025-04-21 11:58 - 000000000 ____D C:\Users\admin\AppData\Roaming\qBittorrent 2025-04-20 11:44 - 2025-04-21 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent 2025-04-20 11:44 - 2025-04-20 11:44 - 000000000 ____D C:\Users\admin\AppData\Local\qBittorrent 2025-04-20 11:28 - 2025-04-21 14:15 - 000000000 ____D C:\Users\admin\AppData\Local\Mirillis 2025-04-20 11:28 - 2025-04-20 11:28 - 000000000 ____D C:\Users\admin\AppData\Local\CEF 2025-04-20 10:28 - 2025-04-20 10:28 - 000000000 ____D C:\Users\admin\AppData\Roaming\Sun 2025-04-20 10:28 - 2025-04-20 10:28 - 000000000 ____D C:\ProgramData\Oracle 2025-04-20 10:28 - 2025-04-20 10:28 - 000000000 ____D C:\Program Files\Java 2025-04-20 10:27 - 2025-04-20 10:27 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Sun 2025-04-20 09:28 - 2025-04-21 11:58 - 000000000 ____D C:\Users\admin\AppData\Roaming\vlc 2025-04-20 09:28 - 2025-04-21 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2025-04-20 09:28 - 2025-04-20 09:28 - 000000788 _____ C:\Users\Public\Desktop\VLC media player.lnk 2025-04-20 09:16 - 2025-04-21 11:58 - 000000000 ____D C:\Program Files (x86)\ASM104xUSB3 2025-04-19 19:39 - 2025-04-21 11:58 - 000000000 ____D C:\Windows\Minidump 2025-04-19 19:39 - 2025-04-21 11:58 - 000000000 ____D C:\Windows\LastGood.Tmp 2025-04-19 19:39 - 2025-04-19 19:39 - 763683560 _____ C:\Windows\MEMORY.DMP 2025-04-19 19:39 - 2025-04-19 19:39 - 001243364 _____ C:\Windows\Minidump\041925-6078-01.dmp 2025-04-19 19:37 - 2011-06-29 04:50 - 001828864 _____ C:\Windows\SysWOW64\atiumdmv.dll 2025-04-19 19:37 - 2011-06-29 04:48 - 000356352 _____ C:\Windows\SysWOW64\atipdlxx.dll 2025-04-19 19:37 - 2011-06-29 04:47 - 000278528 _____ C:\Windows\SysWOW64\Oemdspif.dll 2025-04-19 19:37 - 2011-06-29 04:47 - 000043520 _____ C:\Windows\SysWOW64\ati2edxx.dll 2025-04-19 19:37 - 2011-06-17 16:51 - 000032874 _____ C:\Windows\atiogl.xml 2025-04-19 19:37 - 2011-03-17 19:51 - 000003929 _____ C:\Windows\SysWOW64\atipblag.dat 2025-04-19 19:37 - 2011-03-17 19:51 - 000003929 _____ C:\Windows\system32\atipblag.dat 2025-04-19 19:37 - 2009-05-11 23:35 - 000118784 _____ C:\Windows\system32\atibtmon.exe 2025-04-19 15:56 - 2025-04-19 15:56 - 000000000 ____D C:\Intel 2025-04-18 09:09 - 2025-04-20 10:20 - 000000000 ____D C:\Program Files (x86)\Java 2025-04-18 09:09 - 2025-04-05 03:39 - 000213120 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2025-04-13 14:49 - 2025-04-13 14:49 - 000000000 ____D C:\Program Files\Intel 2025-04-13 14:47 - 2025-04-21 11:58 - 000000000 ____D C:\ProgramData\Intel 2025-04-13 14:47 - 2025-04-13 14:47 - 000000000 ____D C:\Users\admin\Intel 2025-04-09 11:38 - 2025-04-19 20:05 - 000001162 _____ C:\Users\admin\Desktop\TODO.txt.lnk 2025-04-02 08:20 - 2025-04-02 08:20 - 000090936 _____ C:\ProgramData\agent.update.1743574803.bdinstall.v2.bin ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2025-04-22 09:29 - 2024-01-02 18:01 - 000000000 ____D C:\Users\admin\AppData\Roaming\Mozilla 2025-04-22 09:19 - 2024-01-02 17:58 - 000000000 ____D C:\Users\admin\AppData\Local\CrashDumps 2025-04-22 09:11 - 2024-01-02 17:58 - 000000124 _____ C:\Users\admin\Documents\PRGStarterLive 2025-04-22 09:11 - 2024-01-02 17:58 - 000000006 _____ C:\Users\admin\Documents\PRGStarterLive2 2025-04-22 09:11 - 2024-01-02 17:44 - 000000000 ____D C:\Users\admin\AppData\Roaming\vice 2025-04-22 08:51 - 2024-01-02 13:22 - 001770910 _____ C:\Windows\system32\PerfStringBackup.INI 2025-04-22 08:51 - 2019-12-07 16:50 - 000793016 _____ C:\Windows\system32\perfh00C.dat 2025-04-22 08:51 - 2019-12-07 16:50 - 000150146 _____ C:\Windows\system32\perfc00C.dat 2025-04-22 08:51 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2025-04-22 08:50 - 2023-12-13 18:23 - 000000000 ____D C:\Windows\SystemTemp 2025-04-22 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2025-04-22 08:47 - 2024-01-02 13:14 - 000008192 ___SH C:\DumpStack.log.tmp 2025-04-22 08:47 - 2024-01-02 13:14 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2025-04-22 08:47 - 2024-01-02 13:14 - 000000000 ____D C:\Windows\system32\SleepStudy 2025-04-21 19:35 - 2019-12-07 11:03 - 000131072 _____ C:\Windows\system32\config\BBI 2025-04-21 15:28 - 2024-01-02 17:16 - 000000000 ____D C:\Users\admin\AppData\Local\CyberGhost 2025-04-21 15:11 - 2025-02-16 21:09 - 000000000 ____D C:\Users\admin\AppData\Roaming\avidemux 2025-04-21 14:15 - 2024-01-02 16:55 - 000000000 ____D C:\Users\admin\AppData\Roaming\SpiderBasic 2025-04-21 14:15 - 2024-01-02 16:53 - 000000000 ____D C:\Users\admin\AppData\Roaming\PureBasic 2025-04-21 14:00 - 2024-01-02 16:52 - 000000000 ____D C:\Users\admin\AppData\Roaming\CodeBlocks 2025-04-21 13:42 - 2024-01-02 16:38 - 000000000 ____D C:\Users\admin\AppData\Roaming\GrafX2 2025-04-21 13:23 - 2025-03-18 10:45 - 000000000 ____D C:\Users\admin\AppData\Roaming\Molotov 2025-04-21 13:17 - 2024-01-02 18:20 - 000000095 _____ C:\Users\admin\AppData\Roaming\ACME_Clock.ini 2025-04-21 11:58 - 2025-03-18 10:45 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc 2025-04-21 11:58 - 2025-03-18 10:45 - 000000000 ____D C:\Users\admin\AppData\Local\Molotov 2025-04-21 11:58 - 2024-10-26 11:11 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem 2025-04-21 11:58 - 2024-01-02 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2025-04-21 11:58 - 2024-01-02 16:31 - 000000000 ____D C:\Program Files (x86)\Google 2025-04-21 11:58 - 2024-01-02 13:21 - 000000000 ____D C:\ProgramData\Package Cache 2025-04-21 11:58 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat 2025-04-21 11:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2025-04-21 11:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration 2025-04-21 10:51 - 2024-01-02 13:31 - 000000000 ____D C:\Users\admin 2025-04-20 11:27 - 2004-06-29 23:12 - 000024986 _____ C:\Windows\congo.ini 2025-04-20 11:26 - 2024-01-02 16:51 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Excel 2025-04-20 11:25 - 2024-01-02 16:46 - 000000000 ____D C:\Users\admin\AppData\Roaming\IDMComp 2025-04-20 11:25 - 2024-01-02 16:46 - 000000000 ____D C:\ProgramData\IDMComp 2025-04-20 09:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2025-04-19 17:43 - 2019-12-07 11:03 - 000065536 _____ C:\Windows\system32\config\ELAM 2025-04-18 18:06 - 2024-01-02 13:14 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2025-04-18 13:28 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2025-04-18 13:22 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps.tmp 2025-04-18 09:14 - 2024-01-02 17:05 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2025-04-18 08:06 - 2024-01-02 16:32 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2025-04-15 11:08 - 2024-01-02 17:40 - 000000000 ____D C:\Users\admin\AppData\Roaming\.hv 2025-04-05 08:36 - 2024-01-02 13:14 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2025-04-05 08:36 - 2024-01-02 13:14 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2025-04-02 08:20 - 2024-01-02 17:58 - 000003842 _____ C:\Windows\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2025-04-02 08:20 - 2024-01-02 17:56 - 000000000 ____D C:\Program Files\Bitdefender Agent 2025-03-30 10:50 - 2025-02-15 09:54 - 000000081 _____ C:\Users\admin\Desktop\Démarrage.txt 2025-03-26 15:53 - 2024-01-02 13:31 - 000000000 ____D C:\Users\admin\AppData\Local\Packages 2025-03-23 10:06 - 2025-02-17 17:27 - 000000000 ____D C:\Users\admin\AppData\Local\MediaHuman ==================== Fichiers à la racine de certains dossiers ======== 2024-01-02 18:20 - 2025-04-21 13:17 - 000000095 _____ () C:\Users\admin\AppData\Roaming\ACME_Clock.ini ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================