Analyse de fichier FRST et Hijackthis

Signaler
Messages postés
4
Date d'inscription
vendredi 9 octobre 2020
Statut
Membre
Dernière intervention
9 octobre 2020
-
Messages postés
28239
Date d'inscription
samedi 29 décembre 2012
Statut
Modérateur, Contributeur sécurité
Dernière intervention
26 octobre 2020
-
Bonjour,

J'espère que vous allez tous bien vous qui me lisez.

Je viens vous demander de l'aide car mon ordi est plus que vérolé à chaque fois que j'installe de nouveau , un nouveau windows (que je reformate ) et bien en 5 minutes même si je ne suis pas connecté j'ai mes partage qui même si je les ai bien paramétrer et bien ils sont activés puis pleins de fichiers suspect comme un fichiers en coréen je vous jure !! donc j'ai des serveurs sur mon ordi et des utilisateurs qui apparaissent disparaissent ne sont listés quasi nulle part sauf parfois mais pas dans utilisateurs , de windows .

bref j'ai des fichiers qui se multiplie et je soupçonne une virtualisation et multiplication de programmes divers à mon insu.

Je vous mets un log de FRST et Hijackthis vous comprendrez mieux.

Je suis dans les problèmes avec cet ordi depuis bien 6 mois je me décide que maintenant à faire quelque chose.

merci pour vos conseil et c'est impossible que je me fasse un film voyez par vous même.

merci d'avance pour tout ceux qui m'auront lus et aidés . c'est le bazar j'ai même trois windows quand je démarre celui sur lequel je suis et suis la partition 8 et j'en ai deux autres qui apparaissent au démarrage sur la partition 1 mais ils servent à rien. c'est d'une mauvaise install et mon fichier host était bloqué sur hijackthis je sais pas sur FRST.

bon réveils à toutes et tous.

bonne journée

.Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2020
Exécuté par TTsaxxxTT (administrateur) sur SEXYWANKAPHOKYO (Acer Nitro AN517-51) (09-10-2020 04:37:47)
Exécuté depuis C:\Users\TTsaxxxTT\Downloads
Profils chargés: TTsaxxxTT
Platform: Windows 10 Home Version 2004 19041.546 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <20>
(CyberGhost S.R.L. -> CyberGhost S.A.) C:\Program Files\CyberGhost 7\CyberGhost.Service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHeciSvc.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 5.1\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 5.1\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <46>
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20082.10421.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.504_none_e781e76525fb2269\TiWorker.exe
(MiniTool Software Limited -> ) C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe
(MiniTool Software Limited -> ) C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSysSvc64.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [838432 2019-03-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe [1464728 2019-01-31] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [DownloadStudio] => C:\Program Files (x86)\DownloadStudioScheduleMonitor.exe [186256 2017-12-21] (Conceiva Pty Ltd -> Conceiva Pty. Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 7\CyberGhost.exe [1049680 2020-10-06] (CyberGhost S.R.L. -> CyberGhost S.A.)
HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [45488 2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [30870200 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\86.1.15.72\Installer\chrmstp.exe [2020-10-08] (Brave Software, Inc. -> Brave Software, Inc.)
BootExecute: autocheck autochk *

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1BA63DD9-F8F8-42E0-9E53-DEB9BEAA7C8D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {329E8B5E-4EE4-4E2B-BA08-0CE89EF0E868} - System32\Tasks\GlaryOneClickOptimizer 5 => C:\Program Files (x86)\Glary Utilities 5\OneClickMaintenance.exe [236464 2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
Task: {64B4D847-26D0-4CD8-A61C-B10AA10E9FAE} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [918960 2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
Task: {7BD5F9F2-AD47-4441-AE61-0E00F91B2030} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {920A1B44-E924-472F-8D08-717B35B402E6} - System32\Tasks\Agent Activation Runtime\S-1-5-21-2822500926-14020707-1181450650-1001 => C:\Windows\System32\AgentActivationRuntimeStarter.exe [13312 2020-10-05] (Microsoft Windows -> )
Task: {A4FC005F-98B3-414D-95C4-27927E6699D9} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {ECA247B9-ED8E-4208-AE17-12A7D50D4EF4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{01750fb4-11be-4ac0-9326-89b8bb6c35d9}: [NameServer] 9.9.9.9
Tcpip\..\Interfaces\{01750fb4-11be-4ac0-9326-89b8bb6c35d9}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{97864315-5242-439e-a9e5-fe6c007dc40c}: [DhcpNameServer] 10.101.0.243
Tcpip\..\Interfaces\{dfa0369b-9288-43de-aeec-cfe8d1263bd6}: [NameServer] 9.9.9.9

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\TTsaxxxTT\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-09]
Edge Extension: (Word) - C:\Users\TTsaxxxTT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-10-05]
Edge Extension: (Excel) - C:\Users\TTsaxxxTT\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-10-05]
Edge HKU\S-1-5-21-2822500926-14020707-1181450650-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AVP21.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\avp.exe [381968 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [155848 2020-10-05] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CG7Service; C:\Program Files\CyberGhost 7\CyberGhost.Service.exe [89168 2020-10-06] (CyberGhost S.R.L. -> CyberGhost S.A.)
S3 klvssbridge64_21.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\vssbridge64.exe [436168 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351480 2020-08-24] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 KSDE5.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 5.1\ksde.exe [644312 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MTAgentService; C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe [782832 2020-08-25] (MiniTool Software Limited -> )
R2 MTSchedulerService; C:\Program Files (x86)\MiniTool ShadowMaker\SchedulerService.exe [226800 2020-08-25] (MiniTool Software Limited -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [248504 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2020-10-06] (Glarysoft LTD -> Glarysoft Ltd)
R3 iaLPSS2_UART2_CNL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_cnl.inf_amd64_df1115697e57a59a\iaLPSS2_UART2_CNL.sys [305928 2020-05-15] (Intel Corporation -> Intel Corporation)
R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [104712 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [205048 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [121088 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [37496 2020-06-29] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [509184 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [643840 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1277704 2020-06-26] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.1\Bases\klids.sys [240728 2020-10-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [984320 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [87808 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [106768 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [106752 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [79104 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [90368 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2020-06-29] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [256760 2020-10-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 klupd_klif_kimul; C:\Windows\System32\Drivers\klupd_klif_kimul.sys [99152 2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [309768 2020-10-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [117512 2020-10-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [206888 2020-10-06] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [133888 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [242944 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [279824 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48520 2020-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [428256 2020-10-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [69856 2020-10-05] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\Users\TTSAXX~1\AppData\Local\Temp\cpuz149\cpuz149_x64.sys [X] <==== ATTENTION

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-10-09 04:37 - 2020-10-09 04:38 - 000016930 _____ C:\Users\TTsaxxxTT\Downloads\FRST.txt
2020-10-09 04:37 - 2020-10-09 04:38 - 000000000 ____D C:\FRST
2020-10-09 04:36 - 2020-10-09 04:36 - 000000000 ____D C:\Users\TTsaxxxTT\Downloads\backups
2020-10-09 04:29 - 2020-10-09 04:29 - 002299392 _____ (Farbar) C:\Users\TTsaxxxTT\Downloads\FRST64.exe
2020-10-09 04:08 - 2020-10-09 04:08 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\VirtualStore
2020-10-09 04:07 - 2020-10-09 04:07 - 000388608 _____ (Trend Micro Inc.) C:\Users\TTsaxxxTT\Downloads\HijackThis.exe
2020-10-08 18:08 - 2020-10-08 18:08 - 000000000 ____D C:\ProgramData\USOPrivate
2020-10-08 18:01 - 2020-10-08 18:01 - 015909773 _____ C:\Program Files (x86)\InstallShield Installation Information.rar
2020-10-08 17:55 - 2020-10-08 17:55 - 001295576 _____ (Google LLC) C:\Users\TTsaxxxTT\Downloads\ChromeSetup.exe
2020-10-08 17:52 - 2020-10-08 17:52 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\Publishers
2020-10-08 17:50 - 2020-10-08 17:50 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Roaming\GlarySoft
2020-10-08 17:48 - 2020-10-08 17:48 - 000069632 _____ C:\Users\TTsaxxxTT\Documents\nojours.evtx
2020-10-08 17:29 - 2020-10-08 17:29 - 000000000 ____D C:\Windows\system32\Tasks\Tâches de l’Observateur d’événements
2020-10-08 17:18 - 2020-10-08 17:18 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Roaming\WinRAR
2020-10-08 11:25 - 2020-10-08 11:25 - 000001039 _____ C:\Users\TTsaxxxTT\Desktop\Living Room 1_6100 - Raccourci.lnk
2020-10-08 11:25 - 2020-10-08 11:25 - 000000908 _____ C:\Users\TTsaxxxTT\Desktop\Sagem Internet Gateway Device - Raccourci.lnk
2020-10-08 11:15 - 2020-10-08 11:15 - 000000947 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INF.lnk
2020-10-08 09:27 - 2020-10-08 09:27 - 000001378 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ConnectedDevicesPlatform.lnk
2020-10-08 09:00 - 2020-10-09 04:35 - 000000000 ____D C:\Users\TTsaxxxTT\Desktop\PREUV
2020-10-08 08:55 - 2020-10-08 08:55 - 000001600 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FILHODAPUTHAKHA.lnk
2020-10-08 08:55 - 2020-10-08 08:55 - 000000000 ____H C:\Users\TTsaxxxTT\Documents\Default.rdp
2020-10-08 04:10 - 2020-10-08 04:10 - 000000874 _____ C:\Users\TTsaxxxTT\Desktop\ZHPFix2.lnk
2020-10-08 04:10 - 2020-10-08 04:10 - 000000825 _____ C:\Users\TTsaxxxTT\Desktop\ZHPFix.txt
2020-10-08 04:10 - 2020-10-08 04:10 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\ZHP
2020-10-08 04:00 - 2020-10-08 04:09 - 001707392 _____ (Nicolas Coolman) C:\Users\TTsaxxxTT\Downloads\ZHPFix2.exe
2020-10-08 03:46 - 2020-10-08 03:47 - 000000000 ____D C:\Program Files (x86)\MiniTool ShadowMaker
2020-10-08 03:46 - 2020-10-08 03:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool ShadowMaker
2020-10-08 03:45 - 2020-10-08 03:45 - 002176864 _____ (MiniTool Software Limited) C:\Users\TTsaxxxTT\Downloads\sm-free-online.exe
2020-10-08 03:45 - 2020-08-25 06:34 - 083629712 _____ (MiniTool Software Limited ) C:\Users\TTsaxxxTT\Downloads\sm_free_x64.exe
2020-10-08 03:30 - 2020-10-08 03:30 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2020-10-08 02:31 - 2020-10-08 02:34 - 086685883 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_METHODES_DANALYSE.zip
2020-10-08 02:25 - 2020-10-08 02:25 - 000286037 _____ C:\Users\TTsaxxxTT\Desktop\La_seropositivite_entre_sante_sexuelle_e.pdf
2020-10-08 02:22 - 2020-10-08 02:22 - 000570860 _____ C:\Users\TTsaxxxTT\Desktop\Erudit_Corps_etrangers_tourisme_et_prost.pdf
2020-10-08 02:21 - 2020-10-08 02:21 - 000527750 _____ C:\Users\TTsaxxxTT\Desktop\Fenetre_sur_une_problematique_psychotiqu.pdf
2020-10-08 02:20 - 2020-10-08 02:22 - 042887900 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_Structures_et_fonctions_des_fantaisies_s.zip
2020-10-08 02:19 - 2020-10-08 02:22 - 050913930 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_Vraies_fausses_idoles_et_conditions_mode.zip
2020-10-08 02:17 - 2020-10-08 02:17 - 000462263 _____ C:\Users\TTsaxxxTT\Desktop\Rue_drogue_et_violence_La_survie_des_jeu.pdf
2020-10-08 02:15 - 2020-10-08 02:18 - 086029885 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_LE_POUVOIR_THÉRAPEUTIQUE_DES_HALLUCINOGÈ.zip
2020-10-08 02:06 - 2020-10-08 02:08 - 046044988 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_Writing_projectDRUGS.zip
2020-10-08 01:45 - 2020-10-08 01:45 - 000761809 _____ C:\Users\TTsaxxxTT\Desktop\La_question_kurde_n_a_jamais_ete_centra.pdf
2020-10-08 01:44 - 2020-10-08 01:44 - 000577283 _____ C:\Users\TTsaxxxTT\Desktop\Les_militants_internationalistes_engages.pdf
2020-10-08 01:42 - 2020-10-08 01:44 - 050538774 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_La_violence_politique_et_martyrologie_du.zip
2020-10-08 01:42 - 2020-10-08 01:42 - 001866699 _____ C:\Users\TTsaxxxTT\Desktop\Les_Kurdes_dans_le_conflit_Syrien.pdf
2020-10-08 01:37 - 2020-10-08 01:37 - 000701293 _____ C:\Users\TTsaxxxTT\Desktop\Covid_19_Entretien_collectif_avec_le_virus.pdf
2020-10-08 01:30 - 2020-10-08 01:33 - 084679554 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_Aldous_Huxley_ou_la_rage_contre_les_mach.zip
2020-10-08 01:27 - 2020-10-08 01:31 - 079107364 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_Huxley_Aldous_Les_portes_de_la_perceptio.zip
2020-10-08 01:27 - 2020-10-08 01:27 - 000000000 ____D C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_ESET_Key_NOD32_Password_Username_update_
2020-10-08 01:26 - 2020-10-08 01:27 - 011235493 _____ C:\Users\TTsaxxxTT\Desktop\Academia.edu_Bundle_-_ESET_Key_NOD32_Password_Username_update_.zip
2020-10-08 01:24 - 2020-10-08 01:24 - 001424616 _____ C:\Users\TTsaxxxTT\Desktop\Huxley_Aldous_Les_portes_de_la_perceptio.pdf
2020-10-08 00:15 - 2020-10-08 00:16 - 003549136 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-10-07 22:16 - 2020-10-07 22:16 - 000003265 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-10-07 22:16 - 2020-10-07 22:16 - 000003261 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel (1).lnk
2020-10-07 22:16 - 2020-10-07 22:16 - 000003259 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word (1).lnk
2020-10-07 22:14 - 2020-10-07 22:14 - 000442880 _____ (Eusing Software) C:\Users\TTsaxxxTT\Downloads\ipscan.exe
2020-10-07 21:40 - 2020-10-07 21:40 - 000342892 ____R C:\Users\TTsaxxxTT\Downloads\6_mythes_sur-le-hacking-que-90%-des-personnes-croient-encore.pdf
2020-10-07 21:18 - 2020-10-07 21:18 - 000000000 ____D C:\Intel
2020-10-07 21:05 - 2020-10-07 21:05 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\OO Software
2020-10-07 21:03 - 2020-10-07 21:03 - 001375592 _____ (O&O Software GmbH) C:\Users\TTsaxxxTT\Downloads\OOSU10.exe
2020-10-07 21:00 - 2020-10-08 18:00 - 000000000 ____D C:\Program Files\Recuva
2020-10-07 21:00 - 2020-10-07 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2020-10-07 21:00 - 2020-10-07 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2020-10-07 21:00 - 2020-10-07 21:00 - 000000000 ____D C:\Program Files\Speccy
2020-10-07 20:44 - 2020-10-07 20:44 - 001766618 _____ C:\Users\TTsaxxxTT\Downloads\https-everywhere-latest.xpi
2020-10-07 17:42 - 2020-10-08 17:53 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-10-07 17:42 - 2020-10-07 17:42 - 000002896 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-10-07 17:42 - 2020-10-07 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2020-10-07 17:42 - 2020-10-07 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-10-07 17:42 - 2020-10-07 17:42 - 000000000 ____D C:\Program Files\Defraggler
2020-10-07 17:42 - 2020-10-07 17:42 - 000000000 ____D C:\Program Files\CCleaner
2020-10-07 16:38 - 2020-10-07 16:39 - 036213568 _____ (Piriform Software Ltd) C:\Users\TTsaxxxTT\Downloads\CCleanerBundle-572-Setup.exe
2020-10-07 16:11 - 2020-10-07 16:11 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\F-Secure
2020-10-07 16:02 - 2020-10-07 16:03 - 039874560 _____ C:\Users\TTsaxxxTT\Downloads\FSecureIDPWin_pid-6661000+aid-1ld3ht4hjhvsz_.msi
2020-10-07 15:58 - 2020-10-07 15:58 - 000080888 _____ C:\Users\TTsaxxxTT\Desktop\ZHPDiag.txt
2020-10-07 15:55 - 2020-10-07 21:14 - 000000033 _____ C:\Windows\DownloadStudioScheduleMonitor.INI
2020-10-07 15:50 - 2020-10-07 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DownloadStudio
2020-10-07 15:50 - 2020-10-07 15:50 - 000000000 ____D C:\ProgramData\Conceiva
2020-10-07 15:50 - 2020-10-07 15:50 - 000000000 ____D C:\Program Files (x86)\styles
2020-10-07 15:50 - 2020-10-07 15:50 - 000000000 ____D C:\Program Files (x86)\plugins
2020-10-07 15:50 - 2020-10-07 15:50 - 000000000 ____D C:\Program Files (x86)\Language
2020-10-07 15:50 - 2017-12-21 10:28 - 006986128 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudio.exe
2020-10-07 15:50 - 2017-12-21 10:23 - 003026320 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioSniffer.exe
2020-10-07 15:50 - 2017-12-21 10:23 - 000058768 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\AdminHelper.exe
2020-10-07 15:50 - 2017-12-21 10:22 - 001107856 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioCapture.exe
2020-10-07 15:50 - 2017-12-21 10:22 - 000186256 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioScheduleMonitor.exe
2020-10-07 15:50 - 2017-12-21 10:22 - 000108944 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\CopyFile.exe
2020-10-07 15:50 - 2017-12-21 09:16 - 007827973 _____ C:\Program Files (x86)\videoHelper.exe
2020-10-07 15:50 - 2017-12-01 14:43 - 000240016 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioDBReader.dll
2020-10-07 15:50 - 2017-11-30 15:32 - 000002015 _____ C:\Program Files (x86)\readme.txt
2020-10-07 15:50 - 2017-11-30 15:32 - 000000304 _____ C:\Program Files (x86)\thirdPartyNotice.txt
2020-10-07 15:50 - 2017-11-30 09:12 - 000000226 _____ C:\Program Files (x86)\conceiva_ds.json
2020-10-07 15:50 - 2017-11-22 14:39 - 000112016 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioXML.dll
2020-10-07 15:50 - 2017-11-21 16:14 - 002925968 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\reseng.dll
2020-10-07 15:50 - 2017-11-21 13:03 - 000186256 _____ (Conceiva Pty Ltd) C:\Program Files (x86)\WebDLBar.dll
2020-10-07 15:50 - 2017-11-20 15:17 - 000000201 _____ C:\Program Files (x86)\conceiva_fx_ds.json
2020-10-07 15:50 - 2017-11-16 10:44 - 000648080 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\CER.exe
2020-10-07 15:50 - 2017-11-16 10:43 - 000057344 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\CER.dll
2020-10-07 15:50 - 2017-11-16 10:40 - 000024976 _____ C:\Program Files (x86)\wwwinit.dll
2020-10-07 15:50 - 2017-11-16 10:40 - 000022416 _____ C:\Program Files (x86)\wwwssl.dll
2020-10-07 15:50 - 2017-11-16 10:39 - 000061840 _____ C:\Program Files (x86)\wwwapp.dll
2020-10-07 15:50 - 2017-11-16 10:38 - 000074640 _____ C:\Program Files (x86)\wwwhttp.dll
2020-10-07 15:50 - 2017-11-16 10:38 - 000043408 _____ C:\Program Files (x86)\wwwftp.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000055696 _____ C:\Program Files (x86)\wwwhtml.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000039824 _____ C:\Program Files (x86)\wwwmime.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000033680 _____ C:\Program Files (x86)\wwwcache.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000031632 _____ C:\Program Files (x86)\wwwstream.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000029072 _____ C:\Program Files (x86)\wwwfile.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000027024 _____ C:\Program Files (x86)\wwwtrans.dll
2020-10-07 15:50 - 2017-11-16 10:37 - 000027024 _____ C:\Program Files (x86)\wwwdir.dll
2020-10-07 15:50 - 2017-11-16 10:36 - 000142736 _____ C:\Program Files (x86)\wwwcore.dll
2020-10-07 15:50 - 2017-11-16 10:36 - 000085392 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\WMProp.dll
2020-10-07 15:50 - 2017-11-16 10:36 - 000045456 _____ C:\Program Files (x86)\wwwutils.dll
2020-10-07 15:50 - 2017-11-16 10:36 - 000033792 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\FxWrap.dll
2020-10-07 15:50 - 2017-11-16 10:35 - 000341392 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\FlashGen.dll
2020-10-07 15:50 - 2017-11-16 10:35 - 000067984 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\TranslationEngine.dll
2020-10-07 15:50 - 2017-11-16 10:35 - 000015760 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\DownloadStudioCapture.dll
2020-10-07 15:50 - 2017-11-16 10:35 - 000013200 _____ C:\Program Files (x86)\wwwdll.dll
2020-10-07 15:50 - 2017-11-13 15:27 - 000777104 _____ (Conceiva Pty Ltd) C:\Program Files (x86)\DLMonitr.dll
2020-10-07 15:50 - 2017-11-13 15:17 - 000043408 _____ (Conceiva Pty Ltd) C:\Program Files (x86)\WebDLAPI.dll
2020-10-07 15:50 - 2016-01-19 11:53 - 001468416 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files (x86)\libeay32.dll
2020-10-07 15:50 - 2016-01-19 11:53 - 000260608 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files (x86)\ssleay32.dll
2020-10-07 15:50 - 2015-01-30 12:06 - 000000245 _____ C:\Program Files (x86)\conceiva_mc.json
2020-10-07 15:50 - 2015-01-30 12:06 - 000000241 _____ C:\Program Files (x86)\conceiva_us.json
2020-10-07 15:50 - 2013-10-25 16:00 - 002148801 ____R C:\Program Files (x86)\DownloadStudio.chm
2020-10-07 15:50 - 2013-10-25 15:39 - 000002080 _____ C:\Program Files (x86)\CER.ini
2020-10-07 15:50 - 2012-10-09 11:52 - 007404032 ____R (BCGSoft Ltd) C:\Program Files (x86)\BCGCBPRO1700u90.dll
2020-10-07 15:50 - 2012-10-09 11:52 - 000729088 ____R (BCGSoft Co Ltd) C:\Program Files (x86)\BCGPStyle2010Black170.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 001684992 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LTCLR13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 001105232 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\AutoUpdate.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000802816 _____ C:\Program Files (x86)\AFPWrapper.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000504320 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LFCMW13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000462848 _____ C:\Program Files (x86)\lame_enc.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000446464 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\ltimg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000444928 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\ltkrn13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000400384 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LFCMP13n.DLL
2020-10-07 15:50 - 2012-05-10 08:06 - 000338944 _____ () C:\Program Files (x86)\lffpx7.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000335872 _____ C:\Program Files (x86)\nrasxp.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000307200 _____ (hxxp://www.id3lib.org/) C:\Program Files (x86)\id3lib.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000293376 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfAFP13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000267264 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LTDIS13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000212480 _____ (Eastman Kodak) C:\Program Files (x86)\PCDLIB32.DLL
2020-10-07 15:50 - 2012-05-10 08:06 - 000205824 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\ltefx13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000197456 _____ (Conceiva Pty. Ltd.) C:\Program Files (x86)\AutoUpdate.exe
2020-10-07 15:50 - 2012-05-10 08:06 - 000181248 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\Lfpng13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000176128 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfpdf13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000149504 _____ C:\Program Files (x86)\FileZip.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000142336 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\ltfil13n.DLL
2020-10-07 15:50 - 2012-05-10 08:06 - 000142336 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfPCL13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000128000 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lftif13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000118784 _____ () C:\Program Files (x86)\lfkodak.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000107520 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfgbr13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000101376 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfvpg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000091136 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfacs13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000090112 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfjbg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000090112 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\Lfcmx13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000088576 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\Lfcgm13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000084480 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lffpx13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000082944 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfshp13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000077824 _____ (Awasu Pty. Ltd.) C:\Program Files (x86)\afp.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000076800 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\Lfwmf13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000073216 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lffax13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000069632 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LFPTK13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000065536 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\Lfpct13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000062464 _____ C:\Program Files (x86)\hs_regex.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000058368 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfsct13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000055808 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfpsd13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000048128 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfica13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000047104 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfXpm13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000045056 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfXbm13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000038912 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfeps13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000038400 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfflc13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000035840 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfcal13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000035328 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfgif13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000033792 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LFSMP13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000033280 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfwmp13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000033280 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfvec13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000031744 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lflmb13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000031744 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfclp13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000031232 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\LFPNM13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000030208 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfbmp13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000029184 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lflma13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000027136 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfiff13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000026112 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfpcx13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000025600 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfxwd13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000025600 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfani13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000024064 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lftga13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000023040 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfawd13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000020992 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfimg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000020992 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfCUT13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000020480 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfwpg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000020480 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfsgi13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000020480 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfras13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000019968 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfwfx13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000019968 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfpcd13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000019968 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfitg13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000018944 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfmsp13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000018944 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfmac13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000018944 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfavi13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000017920 _____ (LEAD Technologies, Inc.) C:\Program Files (x86)\lfRaw13n.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000004164 _____ C:\Program Files (x86)\W3C_License.html
2020-10-07 15:50 - 2012-05-10 08:06 - 000003072 _____ C:\Program Files (x86)\un3.dll
2020-10-07 15:50 - 2012-05-10 08:06 - 000002728 _____ C:\Program Files (x86)\HS_License.html
2020-10-07 15:50 - 2012-05-10 08:06 - 000002124 _____ C:\Program Files (x86)\ds_file.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000002060 _____ C:\Program Files (x86)\ds_rss.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000001832 _____ C:\Program Files (x86)\autoupdate.cva
2020-10-07 15:50 - 2012-05-10 08:06 - 000000754 _____ C:\Program Files (x86)\ds_img.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000526 _____ C:\Program Files (x86)\ds_sel.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000493 _____ C:\Program Files (x86)\ds_snap.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000489 _____ C:\Program Files (x86)\ds_all.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000487 _____ C:\Program Files (x86)\ds_link.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000476 _____ C:\Program Files (x86)\ds_video.htm
2020-10-07 15:50 - 2012-05-10 08:06 - 000000226 _____ C:\Program Files (x86)\buy.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000159 _____ C:\Program Files (x86)\specialoffer.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000142 _____ C:\Program Files (x86)\forum.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000138 _____ C:\Program Files (x86)\company.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000112 _____ C:\Program Files (x86)\extend.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000103 _____ C:\Program Files (x86)\product.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000087 _____ C:\Program Files (x86)\support.url
2020-10-07 15:50 - 2012-05-10 08:06 - 000000083 _____ C:\Program Files (x86)\register.url
2020-10-07 15:50 - 2011-04-22 11:15 - 000421200 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp100.dll
2020-10-07 15:50 - 2010-07-27 13:39 - 000006061 _____ C:\Program Files (x86)\license.txt
2020-10-07 15:50 - 2010-03-18 08:15 - 000770384 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcr100.dll
2020-10-07 15:41 - 2020-10-07 15:48 - 045961144 _____ (Acresso Software Inc. ) C:\Users\TTsaxxxTT\Downloads\downloadstudio-setup.exe
2020-10-07 15:34 - 2020-10-07 15:39 - 000000881 _____ C:\Users\TTsaxxxTT\Desktop\ZHPDiag.lnk
2020-10-07 15:34 - 2020-10-07 15:34 - 002105344 _____ C:\Users\TTsaxxxTT\Downloads\ZHPDiag3.exe
2020-10-07 14:51 - 2020-10-07 14:51 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-10-07 14:51 - 2020-10-07 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-10-07 14:50 - 2020-10-07 14:51 - 000000000 ____D C:\Program Files (x86)\WinRAR
2020-10-07 14:50 - 2020-10-07 14:50 - 003129960 _____ (Alexander Roshal) C:\Users\TTsaxxxTT\Downloads\Winrar.exe
2020-10-07 14:49 - 2020-10-07 14:49 - 000391280 _____ C:\Users\TTsaxxxTT\Downloads\WinRar_inst.exe
2020-10-07 14:43 - 2020-10-07 14:43 - 003129960 _____ (Alexander Roshal) C:\Users\TTsaxxxTT\Downloads\winrar_5-91_fr_9632_32.exe
2020-10-06 16:04 - 2020-10-06 16:04 - 000309768 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys
2020-10-06 15:56 - 2020-10-06 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager
2020-10-06 15:54 - 2020-10-06 15:56 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-10-06 15:54 - 2020-10-06 15:56 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2020-10-06 15:54 - 2020-10-06 15:54 - 000256760 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys
2020-10-06 15:54 - 2020-10-06 15:54 - 000206888 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys
2020-10-06 15:54 - 2020-10-06 15:54 - 000117512 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys
2020-10-06 15:54 - 2020-10-06 15:54 - 000099152 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_kimul.sys
2020-10-06 15:54 - 2020-10-06 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2020-10-06 15:54 - 2020-10-06 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2020-10-06 15:54 - 2020-10-06 15:54 - 000000000 ____D C:\Program Files\Common Files\AV
2020-10-06 15:54 - 2020-06-29 20:14 - 000984320 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2020-10-06 15:54 - 2020-06-29 20:14 - 000509184 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2020-10-06 15:54 - 2020-06-29 20:14 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2020-10-06 15:49 - 2020-10-06 15:50 - 002633048 _____ (Kaspersky) C:\Users\TTsaxxxTT\Downloads\kis21.1.15.500de_fr_nl_26034.exe
2020-10-06 15:19 - 2020-10-06 15:19 - 000000000 ____D C:\ProgramData\GlarySoft
2020-10-06 15:18 - 2020-10-06 15:18 - 000003852 _____ C:\Windows\system32\Tasks\GlaryOneClickOptimizer 5
2020-10-06 15:01 - 2020-10-06 15:18 - 000003050 _____ C:\Windows\system32\Tasks\GU5SkipUAC
2020-10-06 15:01 - 2020-10-06 15:18 - 000001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2020-10-06 15:01 - 2020-10-06 15:01 - 000028936 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2020-10-06 15:01 - 2020-10-06 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2020-10-06 15:00 - 2020-10-06 15:18 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2020-10-06 14:56 - 2020-10-06 14:56 - 018586480 _____ (Glarysoft Ltd) C:\Users\TTsaxxxTT\Downloads\gup5setup.exe
2020-10-06 13:42 - 2020-10-08 17:50 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\CyberGhost
2020-10-06 13:42 - 2020-10-07 23:14 - 000001084 _____ C:\Users\TTsaxxxTT\Desktop\CyberGhost 7.lnk
2020-10-06 13:42 - 2020-10-06 13:43 - 000000000 ____D C:\Program Files\TAP-Windows
2020-10-06 13:42 - 2020-10-06 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 7
2020-10-06 13:42 - 2020-10-06 13:42 - 000000000 ____D C:\Program Files\CyberGhost 7
2020-10-06 13:41 - 2020-10-06 13:41 - 000118488 _____ (CyberGhost S.A.) C:\Users\TTsaxxxTT\Downloads\cgsetup_en_memb2m9pm3X9y9hBrVzK.exe
2020-10-05 19:38 - 2020-10-08 17:49 - 071827456 _____ C:\Windows\system32\config\SOFTWARE
2020-10-05 19:36 - 2020-10-05 19:38 - 000000000 ____D C:\Windows\Microsoft Antimalware
2020-10-05 17:52 - 2020-10-08 09:25 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\OneDrive
2020-10-05 17:47 - 2020-10-05 17:47 - 000002909 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-10-05 17:47 - 2020-10-05 17:47 - 000002907 _____ C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-10-05 06:14 - 2020-10-06 17:14 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2020-10-05 06:08 - 2020-10-08 02:13 - 000002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-10-05 06:08 - 2020-10-05 06:08 - 000000000 ____D C:\Users\TTsaxxxTT\AppData\Local\BraveSoftware
2020-10-05 06:08 - 2020-10-05 06:08 - 000000000 ____D C:\Program Files\BraveSoftware
2020-10-05 06:07 - 2020-10-05 06:07 - 001277400 _____ (BraveSoftware Inc.) C:\Users\TTsaxxxTT\Downloads\BraveBrowserSetup.exe
2020-10-05 06:07 - 2020-10-05 06:07 - 000003606 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2020-10-05 06:07 - 2020-10-05 06:07 - 000003482 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2020-10-05 06:07 - 2020-10-05 06:07 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2020-10-05 06:00 - 2020-10-05 06:00 - 026273792 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 024264704 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 023448576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 019870208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 018767360 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 018080256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 017542144 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 014758400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 011498496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 010841928 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 010336904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 009499136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 008894656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 008226304 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 008009880 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007986616 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007765504 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007633328 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007616000 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007534680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007266128 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 007099904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 006421504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 006365280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 006204928 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 006195712 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 006070904 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005998624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005998616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005871560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005820416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005783280 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005431000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005371544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005337504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 005057024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004828672 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004783848 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004752896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004732928 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004645368 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004629328 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 004590560 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 004523008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004517376 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004433640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004363840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004314624 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004281856 _____ (Microsoft Corporation) C:\Windows\system32\DHolographicDisplay.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004275712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004025344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Controls.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 004012696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 003917824 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003885056 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003858944 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003821072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003815936 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-10-05 06:00 - 2020-10-05 06:00 - 003811840 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003779392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-10-05 06:00 - 2020-10-05 06:00 - 003750912 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003706880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003587072 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003537520 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003505968 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003493888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003436544 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003386368 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003376840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003335680 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003307008 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003305984 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003282944 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003232056 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 003134464 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 003066880 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002984264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-10-05 06:00 - 2020-10-05 06:00 - 002978816 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002942976 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-10-05 06:00 - 2020-10-05 06:00 - 002920312 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002873344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002827776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002809776 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002757120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-10-05 06:00 - 2020-10-05 06:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-10-05 06:00 - 2020-10-05 06:00 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-10-05 06:00 - 2020-10-05 06:00 - 002688512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002648576 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002634112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002621720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002607104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002588992 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002568704 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002541568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002520056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002503520 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002485928 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002451968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002428416 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002398720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002377728 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2020-10-05 06:00 - 2020-10-05 06:00 - 002322304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002267424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002250240 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002206208 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002189824 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002179584 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002178592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002132096 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002107872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002104320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002024248 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 002007352 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001978664 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001963752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001963712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001954816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001952256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001932760 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001883696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001871272 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001837568 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001836544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001827840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001827128 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001822256 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-10-05 06:00 - 2020-10-05 06:00 - 001812872 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001784480 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001765888 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001765184 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001751936 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001730048 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001721856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001715200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001710080 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001695760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001695728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001681408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001673728 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001663136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001641960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001618152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001598032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001589568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2020-10-05 06:00 - 2020-10-05 06:00 - 001563520 _____ (Mic

4 réponses

Messages postés
4
Date d'inscription
vendredi 9 octobre 2020
Statut
Membre
Dernière intervention
9 octobre 2020

je vais modifier le texte précedent
Messages postés
4
Date d'inscription
vendredi 9 octobre 2020
Statut
Membre
Dernière intervention
9 octobre 2020

le fichier addition.txt de FRST le principal je vais le poster ailleurs mais ou ?

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Exécuté par TTsaxxxTT (09-10-2020 04:40:56)
Exécuté depuis C:\Users\TTsaxxxTT\Downloads
Windows 10 Home Version 2004 19041.546 (X64) (2020-10-05 02:00:00)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2822500926-14020707-1181450650-500 - Administrator - Disabled)
Cumbia Sangriana (S-1-5-21-2822500926-14020707-1181450650-1002 - Administrator - Enabled)
DefaultAccount (S-1-5-21-2822500926-14020707-1181450650-503 - Limited - Disabled)
Invité (S-1-5-21-2822500926-14020707-1181450650-501 - Limited - Enabled)
TTsaxxxTT (S-1-5-21-2822500926-14020707-1181450650-1001 - Administrator - Enabled) => C:\Users\TTsaxxxTT
WDAGUtilityAccount (S-1-5-21-2822500926-14020707-1181450650-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 86.1.15.72 - Auteurs de Brave)
CCleaner (HKLM\...\CCleaner) (Version: 5.72 - Piriform)
CyberGhost 7 (HKLM\...\CyberGhost 7) (Version: 7.3.15.5925 - CyberGhost S.A.)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
DownloadStudio (HKLM-x32\...\{0A8206A7-D860-470A-B95C-A9796F655B77}) (Version: 10.0.4.0 - Conceiva) Hidden
DownloadStudio (HKLM-x32\...\{B763CDE9-3E9C-4F19-BCAF-773D48ECD9F1}) (Version: 10.0.4.0 - Conceiva)
Excel (1) (HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\35a1ccd137af911bcb6dc4a776a99174) (Version: 1.0 - Excel (1))
Excel (HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Glary Utilities PRO 5.151 (HKLM-x32\...\Glary Utilities 5) (Version: 5.151.0.177 - Glarysoft Ltd)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
ID PROTECTION: User Data (HKLM-x32\...\{F6A4621C-F31F-42E2-BD11-632615967A56}) (Version: 1.1.0.0 - F-Secure Corporation)
Kaspersky Internet Security (HKLM-x32\...\{0124CD8C-8A9A-4A95-BF8C-F084040A93CE}) (Version: 21.1.15.500 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{0124CD8C-8A9A-4A95-BF8C-F084040A93CE}) (Version: 21.1.15.500 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{8E3A90F0-23D4-4761-AEBF-409CBBA48C80}) (Version: 21.1.15.500 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{8E3A90F0-23D4-4761-AEBF-409CBBA48C80}) (Version: 21.1.15.500 - Kaspersky)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.70 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
MiniTool ShadowMaker Free Edition (HKLM-x32\...\MT-75D7C412-925B-4AD0-90DC-5E4FEE22EAE1_is1) (Version: 3.5 - MiniTool Software Limited)
NVIDIA Pilote graphique 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
Outlook (HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
WinRAR 5.91 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Word (HKU\S-1-5-21-2822500926-14020707-1181450650-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)

Packages:
=========
Adobe Reader Touch -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobeReader_3.1.8.7675_x86__ynb6jyjzte8ga [2020-10-07] (Adobe Systems Incorporated)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-10-05] (INTEL CORP)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-10-05] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2020-10-05] (Realtek Semiconductor Corp)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\shellex.dll [2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\shellex.dll [2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\shellex.dll [2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_d6e443c3f366fc32\nvshext.dll [2020-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-09-18] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.1] -> {091EC05A-4A09-4108-8D41-F7B1078DAA9E} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\shellex.dll [2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\TTsaxxxTT\Desktop\Sagem Internet Gateway Device - Raccourci.lnk -> hxxp://192.168.1.1:8
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel (1).lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\Common\S-1-5-21-2822500926-14020707-1181450650-1001\EdgeChromium" --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\Common\S-1-5-21-2822500926-14020707-1181450650-1001\EdgeChromium" --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\Common\S-1-5-21-2822500926-14020707-1181450650-1001\EdgeChromium" --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word (1).lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --user-data-dir="C:\ProgramData\Kaspersky Lab\SafeBrowser\Common\S-1-5-21-2822500926-14020707-1181450650-1001\EdgeChromium" --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
ShortcutWithArgument: C:\Users\TTsaxxxTT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi

==================== Modules chargés (Avec liste blanche) =============

2020-10-08 03:46 - 2020-08-24 19:44 - 000098304 _____ () [Fichier non signé] C:\Program Files (x86)\MiniTool ShadowMaker\coresync.dll
2020-10-08 03:46 - 2020-08-24 19:44 - 000061952 _____ (Chengdu Speed Digital Technology Co..Ltd.) [Fichier non signé] C:\Program Files (x86)\MiniTool ShadowMaker\ChannelNetFileInfo.dll
2020-10-08 03:46 - 2020-08-24 19:44 - 000175104 _____ (Chengdu Speed Digital Technology Co..Ltd.) [Fichier non signé] C:\Program Files (x86)\MiniTool ShadowMaker\FileInfoCommon.dll
2020-10-08 03:46 - 2017-09-14 14:40 - 000884736 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\MiniTool ShadowMaker\sqldrivers\qsqlite.dll
2020-10-08 03:46 - 2020-08-24 19:44 - 001483264 _____ (TODO: <Company name>) [Fichier non signé] C:\Program Files (x86)\MiniTool ShadowMaker\core7z.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

BHO-x32: DownloadStudio IE Add-on -> {8170D7DC-BDD6-461e-88EB-F047257898C9} -> C:\Program Files (x86)\DLMonitr.dll [2017-11-13] (Conceiva Pty Ltd -> Conceiva Pty Ltd)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2822500926-14020707-1181450650-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 9.9.9.9
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{7524EF7D-4BAC-486F-A226-763823ECFF64}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{62CD2D92-F33B-413D-AE66-96A63F7E7271}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2EB4468D-893D-4560-BD7D-ABA71CA8610B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{306A65C6-7633-4E28-872F-E0967E583091}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0A9C6EB5-6E97-4F8D-ADA5-6CE8FBA59E04}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{FD2CAD42-93A4-48CA-BCBE-222970F2B756}] => (Allow) C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )
FirewallRules: [{2896BB34-A3E8-4066-B494-AB837F4EFB19}] => (Allow) C:\Program Files (x86)\MiniTool ShadowMaker\AgentService.exe (MiniTool Software Limited -> )

==================== Points de restauration =========================

07-10-2020 16:32:52 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
07-10-2020 21:06:17 O&O ShutUp10

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: Énumérateur de lecteur virtuel Microsoft
Description: Énumérateur de lecteur virtuel Microsoft
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vdrvroot
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Énumérateur de cartes réseau virtuelles NDIS
Description: Énumérateur de cartes réseau virtuelles NDIS
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisVirtualBus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (10/08/2020 05:52:21 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: MicrosoftWindows.Client.CBS_cw5n1h2txyewy-2147024891

Error: (10/08/2020 05:51:30 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: Microsoft.WindowsStore_8wekyb3d8bbwe-2147024891

Error: (10/08/2020 05:51:20 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\DownloadStudioScheduleMonitor.exe ».
Assembly dépendant Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (10/08/2020 05:50:22 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: Microsoft.LockApp_cw5n1h2txyewy-2147024891

Error: (10/08/2020 05:49:34 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (10/08/2020 01:06:36 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy-2147024891

Error: (10/08/2020 12:06:28 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy-2147024891

Error: (10/08/2020 12:05:32 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: SEXYWANKAPHOKYO)
Description: Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy-2147024891


Erreurs système:
=============
Error: (10/08/2020 11:23:06 AM) (Source: DCOM) (EventID: 10001) (User: SEXYWANKAPHOKYO)
Description: Impossible de démarrer un serveur DCOM : Microsoft.549981C3F5F10_2.2009.23741.0_x64__8wekyb3d8bbwe!App en tant que Non disponible/Non disponible. L’erreur
« 2147942405 »
s’est produite lors du démarrage de la commande :
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2009.23741.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca

Error: (10/08/2020 03:46:27 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Le service MTSchedulerService est marqué comme étant interactif. Cependant, le système est configuré pour ne pas autoriser les services interactifs. Ce service peut ne pas fonctionner correctement.

Error: (10/08/2020 03:46:27 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Le service MTAgentService est marqué comme étant interactif. Cependant, le système est configuré pour ne pas autoriser les services interactifs. Ce service peut ne pas fonctionner correctement.

Error: (10/08/2020 03:31:44 AM) (Source: DCOM) (EventID: 10000) (User: SEXYWANKAPHOKYO)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (10/07/2020 09:18:10 PM) (Source: DCOM) (EventID: 10010) (User: SEXYWANKAPHOKYO)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/07/2020 09:18:10 PM) (Source: DCOM) (EventID: 10010) (User: SEXYWANKAPHOKYO)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/07/2020 09:18:10 PM) (Source: DCOM) (EventID: 10010) (User: SEXYWANKAPHOKYO)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/07/2020 09:00:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Protocole PNRP s’est arrêté avec l’erreur :
Le chemin d’accès spécifié est introuvable.


Windows Defender:
===================================
Date: 2020-10-06 15:54:09.4920000Z
Description:
L'accès contrôlé aux dossiers a empêché C:\Users\TTsaxxxTT\Downloads\kis21.1.15.500de_fr_nl_26034.exe de modifier la mémoire.
Heure de détection : 2020-10-06T13:54:09.492Z
Utilisateur : MMSLPMLEOLS9764\TTsaxxxTT
Chemin d'accès : \Device\Harddisk1\DR1
Nom du processus : C:\Users\TTsaxxxTT\Downloads\kis21.1.15.500de_fr_nl_26034.exe
Version de la veille de sécurité : 1.325.225.0
Version du moteur : 1.1.17500.4
Version du produit : 4.18.2008.9

Date: 2020-10-06 15:32:05.0790000Z
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Glary Utilities 5\x64\CheckDiskProgress.exe de modifier la mémoire.
Heure de détection : 2020-10-06T13:32:05.079Z
Utilisateur : MMSLPMLEOLS9764\TTsaxxxTT
Chemin d'accès : \Device\HarddiskVolume6
Nom du processus : C:\Program Files (x86)\Glary Utilities 5\x64\CheckDiskProgress.exe
Version de la veille de sécurité : 1.325.225.0
Version du moteur : 1.1.17500.4
Version du produit : 4.18.2008.9

Date: 2020-10-06 15:30:29.4740000Z
Description:
L'apport de modification par C:\Program Files (x86)\Glary Utilities 5\TracksEraser.exe à %userprofile%\Favorites a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2020-10-06T13:30:29.472Z
Utilisateur : MMSLPMLEOLS9764\TTsaxxxTT
Chemin d'accès : %userprofile%\Favorites
Nom du processus : C:\Program Files (x86)\Glary Utilities 5\TracksEraser.exe
Version de la veille de sécurité : 1.325.225.0
Version du moteur : 1.1.17500.4
Version du produit : 4.18.2008.9

Date: 2020-10-06 15:21:49.8800000Z
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Glary Utilities 5\x64\CheckDiskProgress.exe de modifier la mémoire.
Heure de détection : 2020-10-06T13:21:49.879Z
Utilisateur : MMSLPMLEOLS9764\TTsaxxxTT
Chemin d'accès : \Device\HarddiskVolume1
Nom du processus : C:\Program Files (x86)\Glary Utilities 5\x64\CheckDiskProgress.exe
Version de la veille de sécurité : 1.325.225.0
Version du moteur : 1.1.17500.4
Version du produit : 4.18.2008.9

Date: 2020-10-06 15:21:29.6440000Z
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Glary Utilities 5\CheckDisk.exe de modifier la mémoire.
Heure de détection : 2020-10-06T13:21:29.644Z
Utilisateur : MMSLPMLEOLS9764\TTsaxxxTT
Chemin d'accès : \Device\HarddiskVolume1
Nom du processus : C:\Program Files (x86)\Glary Utilities 5\CheckDisk.exe
Version de la veille de sécurité : 1.325.225.0
Version du moteur : 1.1.17500.4
Version du produit : 4.18.2008.9

CodeIntegrity:
===================================

Date: 2020-10-09 04:31:34.0260000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\drivers\BootDefragDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-08 17:52:21.7660000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-10-08 17:52:21.7460000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-10-08 17:52:21.1860000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-10-08 17:52:21.1740000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-10-08 17:50:05.7470000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\drivers\GUBootStartup.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-10-08 10:55:48.0970000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2020-10-08 10:55:48.0830000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.1\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Infos Mémoire ===========================

BIOS: Insyde Corp. V1.31 06/29/2020
Carte mère: CFL Superb_CFS
Processeur: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 16221.05 MB
Mémoire physique - RAM - disponible: 10455.1 MB
Mémoire virtuelle totale: 19165.05 MB
Mémoire virtuelle disponible: 11210.66 MB

==================== Lecteurs ================================

Drive c: (Cdric Kurumo) (Fixed) (Total:236.83 GB) (Free:172.75 GB) NTFS
Drive d: (samizit) (Fixed) (Total:930.44 GB) (Free:898.12 GB) NTFS

\\?\Volume{4470ae35-b426-4f2c-abac-da2d97aea403}\ () (Fixed) (Total:0.53 GB) (Free:0.1 GB) NTFS
\\?\Volume{fa18de89-9cdf-4e71-890d-b9a886b0be9c}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.03 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 666437E7)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: 666437CA)

Partition: GPT.

==================== Fin de Addition.txt =======================
Messages postés
4
Date d'inscription
vendredi 9 octobre 2020
Statut
Membre
Dernière intervention
9 octobre 2020

Je suis desolé de ne pas avoir pu pouvoir poster le fichier FRST dans sa totalité quelqu'un peut il me dire ou je peux le poster svp ? si pas avez vous remarqué déjà des choses pas normales moi rien qu'en regardant je me dis et ce pc me dégoutte surtout ceux qui me piratent .

je supprime tellement de fichiers tout les jours mais bon ça ne sert à rien j'ai un problème de partitions je remarque non ? que faire ?

Je suis vraiment paumé ... il y a trop d'éléments négatifs à résoudre je n'ai pas un simple pup qui s'en va tout est bien enraciné j'ai kaspersky payant il me découvre rien. jamais.

bref les pirates sont gagnants pour le moment.

désolé tout le monde si je spam mais ct juste pour m'expliquer ou po . merci pour tout commentaire d'aide. je suis désespéré. face à cette machine trop compliqué l'architecture est en acpu un truc du genre j'ai trop de paramètre à modifier que je ne comprends pas .

en espérant qu'une bonne âme me réponde.
Messages postés
28239
Date d'inscription
samedi 29 décembre 2012
Statut
Modérateur, Contributeur sécurité
Dernière intervention
26 octobre 2020
10 698
Bonjour,
À première vue ton pc n'est pas infecté, c'est donc normal que Kaspersky ne trouve rien.

Les rapports FRST ne logent pas dans un message il ne faut pas les poster comme ça il ne sont pas complets et difficiles à lire, suit cette procédure:

Télécharge FRST une fois téléchargé enregistre-le sur le bureau puis ouvre-le tu auras ceci :

Puis coche la case shortcut comme ceci :

Clique sur Analyser à la fin de l'analyse tu auras trois fichiers texte sur le bureau FRST, Addition et Shortcut , attention de bien attendre que les messages disant que l'analyse est terminée s'affichent, ensuite envoie ces rapports sur https://pjjoint.malekal.com/ voir ce tutoriel paragraphe Envoyer les rapports d’analyse sur pjjoint puis donne les trois liens générés par Pjoint dans ton prochain message.

bazfile
Modérateur/Contributeur sécurité.
un bonjour, une réponse, un merci font toujours plaisir.