Sujet Précédent Sujet Suivant

C:\Users\TEMP jérôme\AppData\Local\Pokki\Engine\Launcher.dll

Fermé
jeje29400 Messages postés 10 Date d'inscription samedi 13 novembre 2021 Statut Membre Dernière intervention 14 novembre 2021 - 13 nov. 2021 à 15:04
MisteryBean Messages postés 8675 Date d'inscription jeudi 19 décembre 2019 Statut Modérateur, Contributeur sécurité Dernière intervention 27 avril 2024 - 14 nov. 2021 à 18:57
Bonjour,
Lorsque j'allume mon ordinateur portable, voici ce qui apparaît dans une fenêtre:

C:\Users\TEMP jérôme\AppData\Local\Pokki\Engine\Launcher.dll

Je n'ai toucher à rien. Je sais que d'autres personnes ont rencontrer le même problème; je suis un nouvel inscrit. Quelqu'un peut-il m'aider SVP? ^merci.
Voici le rapport OTL:

OTL logfile created on: 07/11/2021 11:29:06 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = \\JÉRÔME\Users\Jérôme\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.20139)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,88 Gb Total Physical Memory | 2,46 Gb Available Physical Memory | 63,36% Memory free
4,57 Gb Paging File | 2,91 Gb Available in Paging File | 63,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 915,71 Gb Total Space | 846,31 Gb Free Space | 92,42% Space Free | Partition Type: NTFS

Computer Name: JÉRÔME | User Name: Jérôme | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2021/11/06 15:50:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- \\JÉRÔME\Users\Jérôme\Desktop\OTL.exe
PRC - [2021/10/25 07:56:32 | 010,405,168 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\VirusKeeper.exe
PRC - [2021/10/16 08:39:46 | 001,587,488 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\Anti-Locky 2022\antilocky.exe
PRC - [2021/08/16 10:55:04 | 000,169,728 | ---- | M] (Adobe Inc.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2021/05/17 12:21:08 | 000,423,200 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_watchop.exe
PRC - [2021/05/17 12:17:38 | 001,599,280 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_oascan.exe
PRC - [2021/05/17 12:04:12 | 002,097,456 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_scangray.exe
PRC - [2010/05/10 11:14:16 | 000,186,848 | ---- | M] () -- C:\Windows\SysWOW64\WinService.exe
PRC - [2009/09/24 09:45:34 | 001,121,664 | ---- | M] (AxBx) -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_service.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2007/10/20 08:00:04 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_sscan.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2021/05/18 08:41:53 | 000,112,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2021/01/12 06:43:24 | 000,841,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2020/12/09 02:11:05 | 000,549,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2020/12/09 01:36:35 | 001,685,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2020/10/11 18:48:24 | 002,991,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2020/08/31 10:39:52 | 000,327,008 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
SRV:[b]64bit:[/b] - [2020/08/08 14:43:55 | 001,545,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2020/06/11 03:56:47 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2020/04/11 16:47:38 | 000,260,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2020/01/28 20:53:50 | 001,349,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2019/12/05 15:55:11 | 000,068,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2019/08/09 18:48:35 | 000,166,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2019/07/11 03:49:39 | 000,375,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2019/05/25 01:17:21 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2018/01/02 06:17:04 | 000,116,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2017/01/12 17:51:17 | 000,361,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2016/12/25 00:39:34 | 000,133,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2015/07/16 19:58:34 | 000,074,752 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2015/05/12 14:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/05/07 16:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/02/21 00:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/12/30 14:44:28 | 000,455,912 | ---- | M] (Acer Incorporate) [On_Demand | Stopped] -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe -- (LMSvc)
SRV:[b]64bit:[/b] - [2014/10/29 04:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/10/29 03:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2014/10/29 03:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2014/10/29 03:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2014/10/29 03:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2014/10/29 02:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2014/10/29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2014/10/29 02:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2014/10/29 02:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2014/10/29 02:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2014/10/29 02:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/10/29 02:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/10/29 02:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2014/10/29 02:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2014/10/29 01:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013/07/01 20:08:48 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/07/01 20:08:32 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:28 | 000,825,032 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe -- (CsrBtService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:16 | 001,041,616 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe -- (CsrBtOBEXService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:08 | 000,465,624 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe -- (CSRBtAudioService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:00 | 000,064,216 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe -- (BtSwitcherService)
SRV - [2021/10/01 15:17:54 | 000,162,456 | ---- | M] (BraveSoftware Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe -- (bravem)
SRV - [2021/10/01 15:17:54 | 000,162,456 | ---- | M] (BraveSoftware Inc.) [Auto | Stopped] -- C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe -- (brave)
SRV - [2021/08/16 10:55:04 | 000,169,728 | ---- | M] (Adobe Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2021/07/31 13:55:59 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe -- (edgeupdatem)
SRV - [2021/07/31 13:55:59 | 000,214,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe -- (edgeupdate)
SRV - [2020/10/11 18:48:24 | 002,991,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2020/08/31 10:40:06 | 000,397,664 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2019/07/04 06:49:48 | 003,117,648 | ---- | M] (Adobe Systems, Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe -- (AGMService)
SRV - [2019/07/04 06:49:48 | 002,888,272 | ---- | M] (Adobe Systems, Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService)
SRV - [2017/05/18 13:10:06 | 000,021,240 | ---- | M] (Intel) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe -- (DSAService)
SRV - [2015/06/29 19:55:08 | 000,323,152 | ---- | M] (Windows (R) Win 7 DDK provider) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2015/05/07 16:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/10/29 02:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 02:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2014/10/16 10:02:42 | 000,307,464 | ---- | M] (CyberLink) [On_Demand | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe -- (CLKMSVC10_99E320F5)
SRV - [2012/09/17 05:39:30 | 000,171,600 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor11.0)
SRV - [2012/04/24 14:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2010/05/10 11:14:16 | 000,186,848 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\WinService.exe -- (SCM_Service)
SRV - [2009/12/30 12:21:02 | 000,065,536 | ---- | M] (Lexar Media, Inc.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\LxrSII1s.exe -- (LxrSII1s)
SRV - [2009/09/24 09:45:34 | 001,121,664 | ---- | M] (AxBx) [Auto | Running] -- C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\vk_service.exe -- (vkservice)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2021/09/21 06:54:24 | 000,107,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2021/09/21 06:54:23 | 000,422,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2021/09/21 06:54:22 | 000,079,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2021/09/18 06:28:48 | 000,374,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2021/09/12 12:35:00 | 000,049,248 | ---- | M] (GiliSoft Inc.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\ImgLock.sys -- (ImgLock)
DRV:[b]64bit:[/b] - [2021/09/12 12:34:56 | 000,029,280 | ---- | M] (GiliSoft INC.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SafeDsk.sys -- (SafeDsk)
DRV:[b]64bit:[/b] - [2021/08/09 14:30:14 | 000,051,544 | ---- | M] (Toolwiz.com) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\KSafeDISK.sys -- (KSafeDISK)
DRV:[b]64bit:[/b] - [2021/08/09 14:30:14 | 000,050,520 | ---- | M] (Toolwiz.com) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BTOWSVF.sys -- (BTOWSVF)
DRV:[b]64bit:[/b] - [2021/08/09 14:30:14 | 000,031,576 | ---- | M] (Toolwiz.com) [File_System | System | Running] -- C:\Windows\SysNative\drivers\BTOWSFF.sys -- (BTOWSFF)
DRV:[b]64bit:[/b] - [2021/04/18 22:09:06 | 001,138,648 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2021/03/23 16:03:16 | 000,039,448 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\phantomtap.sys -- (phantomtap)
DRV:[b]64bit:[/b] - [2020/12/10 11:37:37 | 000,155,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2020/08/31 10:39:46 | 003,814,240 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2020/06/29 02:35:46 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2020/06/29 02:35:46 | 000,018,944 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_usbccgpfilter.sys -- (ew_usbccgpfilter)
DRV:[b]64bit:[/b] - [2020/04/24 01:22:22 | 000,166,760 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:[b]64bit:[/b] - [2020/04/24 01:22:16 | 000,136,040 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:[b]64bit:[/b] - [2019/09/07 20:37:13 | 000,157,432 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2019/08/21 07:56:42 | 000,062,984 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\flashud.sys -- (int0800)
DRV:[b]64bit:[/b] - [2019/04/08 22:40:07 | 000,136,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2019/02/09 19:53:05 | 000,923,384 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2018/12/18 07:13:20 | 000,480,176 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2018/06/20 19:48:27 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2018/06/08 13:54:06 | 000,039,112 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VirtualAudio.sys -- (WsAudio_Device)
DRV:[b]64bit:[/b] - [2018/05/23 06:45:28 | 000,027,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2018/05/04 00:02:07 | 000,325,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2018/05/04 00:02:07 | 000,187,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2018/04/05 18:47:55 | 000,087,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2017/11/08 16:55:00 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2017/07/08 04:16:36 | 000,086,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2017/05/15 23:09:32 | 000,057,688 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2017/02/10 15:37:28 | 000,046,600 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2017/01/12 17:51:18 | 000,274,776 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2017/01/12 17:51:18 | 000,117,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2016/10/18 16:14:08 | 000,021,984 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\semav6msr64.sys -- (semav6msr64)
DRV:[b]64bit:[/b] - [2016/08/16 05:59:46 | 000,098,984 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:[b]64bit:[/b] - [2016/08/16 02:18:34 | 000,159,936 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb2ser.sys -- (wdm_usb)
DRV:[b]64bit:[/b] - [2016/04/21 10:10:04 | 000,027,136 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:[b]64bit:[/b] - [2016/02/18 08:37:26 | 000,020,096 | ---- | M] (GlarySoft Ltd) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GUMHFilter.sys -- (GUMHFilter)
DRV:[b]64bit:[/b] - [2016/01/26 20:15:40 | 000,072,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2015/12/01 20:46:03 | 000,050,160 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2015/12/01 20:46:03 | 000,038,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2015/11/05 15:23:52 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2015/11/05 15:23:40 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:[b]64bit:[/b] - [2015/10/11 07:34:30 | 000,468,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2015/07/22 14:54:56 | 000,030,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iaiogpio.sys -- (iaiogpio)
DRV:[b]64bit:[/b] - [2015/04/29 10:44:36 | 000,600,088 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:[b]64bit:[/b] - [2015/04/25 03:25:32 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:[b]64bit:[/b] - [2015/03/20 02:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/03/13 05:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2015/03/09 03:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/01/30 04:01:46 | 000,132,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthA2DP.sys -- (BthA2DP)
DRV:[b]64bit:[/b] - [2014/11/04 20:33:40 | 000,058,176 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2014/10/29 04:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/10/29 04:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/10/29 03:47:48 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2014/10/29 03:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2014/10/29 03:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/10/29 03:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2014/10/29 03:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2014/10/29 02:50:37 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2014/10/17 05:56:23 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/08/15 01:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/06/09 07:20:30 | 000,069,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaioi2ce.sys -- (iaioi2c)
DRV:[b]64bit:[/b] - [2014/06/09 07:20:30 | 000,031,232 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaiogpioe.sys -- (GPIO)
DRV:[b]64bit:[/b] - [2014/04/02 19:02:18 | 003,893,248 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athwbx.sys -- (athr)
DRV:[b]64bit:[/b] - [2014/03/27 04:06:40 | 000,331,992 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV:[b]64bit:[/b] - [2014/03/18 11:13:15 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2014/03/18 11:13:02 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2014/03/18 11:13:01 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2014/03/18 10:45:41 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2014/01/15 14:21:46 | 000,088,592 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TXEIx64.sys -- (TXEIx64)
DRV:[b]64bit:[/b] - [2013/08/22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 12:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/17 17:59:00 | 000,021,360 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMDriver.sys -- (LMDriver)
DRV:[b]64bit:[/b] - [2013/07/17 17:59:00 | 000,014,680 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioShim.sys -- (RadioShim)
DRV:[b]64bit:[/b] - [2012/10/03 15:14:56 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/08/10 02:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:36 | 000,023,752 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrusbfilter.sys -- (csrusbfilter)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:34 | 000,047,296 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrusb.sys -- (csrusb)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:32 | 000,061,128 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrserial.sys -- (csrserial)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:30 | 000,039,616 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrpan.sys -- (csrpan)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:22 | 002,784,968 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CsrBtPort.sys -- (CsrBtPort)
DRV:[b]64bit:[/b] - [2010/04/06 17:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (IvtPanBusSrv)
DRV:[b]64bit:[/b] - [2010/04/06 17:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs)
DRV:[b]64bit:[/b] - [2010/04/06 17:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV:[b]64bit:[/b] - [2010/04/06 17:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtAudioBusSrv)
DRV:[b]64bit:[/b] - [2010/04/06 17:32:46 | 000,023,944 | ---- | M] (IVT Corporation.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus)
DRV:[b]64bit:[/b] - [2009/12/30 09:32:04 | 000,063,064 | ---- | M] (Lexar Media, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\LxrSII1d.sys -- (LxrSII1d)
DRV:[b]64bit:[/b] - [2007/12/26 10:46:26 | 000,340,992 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wg111v2.sys -- (RTL8187)
DRV:[b]64bit:[/b] - [2007/01/19 02:24:24 | 000,025,312 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV:[b]64bit:[/b] - [2005/09/23 21:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {92EC5E20-82F5-4C73-BE66-21ED9F7865EA}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{92EC5E20-82F5-4C73-BE66-21ED9F7865EA}: "URL" = https://www.bing.com/search?q=%7BsearchTerms%7D&form=IE10TR&src=IE10TR&pc=ACJB&toHttps=1&redig=8471668C17594875B02F1D1764DDEA70
IE:[b]64bit:[/b] - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE:[b]64bit:[/b] - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1;<local>
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {92EC5E20-82F5-4C73-BE66-21ED9F7865EA}
IE - HKLM\..\SearchScopes\{92EC5E20-82F5-4C73-BE66-21ED9F7865EA}: "URL" = https://www.bing.com/search?q=%7BsearchTerms%7D&form=IE10TR&src=IE10TR&pc=ACJB&toHttps=1&redig=8471668C17594875B02F1D1764DDEA70
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;127.0.0.1;<local>


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\TEMP.jérôme\Desktop
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=acer13.msn.com&ocid=AARDHP&pc=MAARJS
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 61 20 42 32 C1 D3 D7 01 [binary data]
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\..\SearchScopes,DefaultScope = {92EC5E20-82F5-4C73-BE66-21ED9F7865EA}
IE - HKU\S-1-5-21-709303801-3742642156-3075411919-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.311.2: C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.311.2: C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.3: C:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.2: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.5.1: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.6: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.10: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.6: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.7: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.7.1: File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.8: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



O1 HOSTS File: ([2019/05/26 16:36:55 | 000,454,948 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 15622 more lines...
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [CsrAudioguiCtrl] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CSRHarmonySkypePlugin] C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CsrHCRPServer] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CsrSyncMLServer] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [HarmonyUserStartup] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [TrayApplication] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [vksts] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [WindowsDefender] "%ProgramFiles%\Windows Defender\MSASCuiL.exe" File not found
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Anti-Locky] C:\Program Files (x86)\AxBx\Anti-Locky 2022\antilocky.exe (AxBx)
O4 - HKLM..\Run: [VirusKeeper] C:\Program Files (x86)\AxBx\VirusKeeper 2022 Ultimate\VirusKeeper.exe (AxBx)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKU\S-1-5-21-709303801-3742642156-3075411919-1001..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform File not found
O4 - Startup: C:\Users\All Users\1437397726.2568.bin ()
O4 - Startup: C:\Users\All Users\1437397726.2688.bin ()
O4 - Startup: C:\Users\All Users\1437398031.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1437499318.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1440237750.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1460035122.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1460035133.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1504714500.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1504714503.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1507217005.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1507217007.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1558888088.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1558888090.2584.bin ()
O4 - Startup: C:\Users\All Users\1558888090.2964.bin ()
O4 - Startup: C:\Users\All Users\1558888090.3372.bin ()
O4 - Startup: C:\Users\All Users\1558888090.552.bin ()
O4 - Startup: C:\Users\All Users\1570434512.104.bin ()
O4 - Startup: C:\Users\All Users\1570434512.2980.bin ()
O4 - Startup: C:\Users\All Users\1570434512.888.bin ()
O4 - Startup: C:\Users\All Users\1570434569.1944.bin ()
O4 - Startup: C:\Users\All Users\1570434569.3192.bin ()
O4 - Startup: C:\Users\All Users\1570434569.3932.bin ()
O4 - Startup: C:\Users\All Users\1570434739.3084.bin ()
O4 - Startup: C:\Users\All Users\1570434739.3840.bin ()
O4 - Startup: C:\Users\All Users\1570434739.3940.bin ()
O4 - Startup: C:\Users\All Users\1571054619.2500.bin ()
O4 - Startup: C:\Users\All Users\1571054619.2772.bin ()
O4 - Startup: C:\Users\All Users\1571054619.3356.bin ()
O4 - Startup: C:\Users\All Users\1571054619.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1571054669.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1573389588.1656.bin ()
O4 - Startup: C:\Users\All Users\1573389588.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1573389598.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1573395466.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\1573395469.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\ABBYY [2020/04/25 14:50:17 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\acer [2021/11/06 15:33:34 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Adobe [2021/06/12 07:46:13 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\agent.1495209724.bdinstall.bin ()
O4 - Startup: C:\Users\All Users\agent.update.1572014441.bdinstall.v2.bin ()
O4 - Startup: C:\Users\All Users\Aimersoft Video Converter Ultimate [2016/01/09 22:31:58 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Ament.ini ()
O4 - Startup: C:\Users\All Users\Apple [2021/04/26 16:54:24 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Apple Computer [2021/05/14 15:19:49 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Application Data [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\AutoHideIP [2016/06/04 15:58:01 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\bdch [2015/08/22 16:15:01 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\BlueStacks [2015/06/20 14:09:43 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Bureau [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\CLSK [2015/02/13 13:30:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Common Files [2015/06/19 15:55:54 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CyberLink [2017/10/11 13:37:46 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\DAEMON Tools Lite [2015/12/02 16:11:16 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Desktop [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Diagonal [2016/02/22 17:15:37 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Documents [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\DP45977C.lfl ()
O4 - Startup: C:\Users\All Users\DriverGenius [2015/10/26 18:18:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\HideIPEasy [2016/06/04 15:55:14 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\HP [2021/11/05 21:17:09 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\HP Photo Creations [2021/11/05 21:17:09 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Installations [2021/04/19 16:43:41 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\install_clap [2017/10/11 13:36:16 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Intel [2021/07/05 06:36:28 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\iolo [2017/07/08 09:35:29 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Leawo [2021/04/26 15:27:29 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Menu Démarrer [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Microsoft [2021/04/26 07:11:15 | 000,000,000 | --SD | M]
O4 - Startup: C:\Users\All Users\mntemp ()
O4 - Startup: C:\Users\All Users\Modèles [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\NCH Software [2015/11/28 14:01:12 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\OEM [2015/07/30 17:51:30 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Oracle [2021/10/30 07:06:29 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Package Cache [2021/10/13 14:58:36 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\PC1Data [2015/08/23 13:57:43 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Pinnacle [2017/05/01 10:22:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\prolexisws [2021/02/09 14:07:26 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Qualcomm Atheros [2021/11/04 16:36:48 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\regid.1986-12.com.adobe [2015/06/29 13:38:37 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\regid.1991-06.com.microsoft [2020/11/18 08:40:16 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\ReviverSoft [2021/11/04 17:54:15 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Start Menu [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\SUPERAntiSpyware.com [2016/05/15 16:54:56 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\SUPPORTDIR [2017/10/11 13:35:41 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Templates [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Visan [2021/11/05 21:17:12 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\VSO [2020/08/26 09:33:48 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\WildTangent [2016/06/04 14:09:31 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Wondershare [2021/10/29 10:46:45 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Xilisoft [2021/04/21 13:19:09 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\{69533018-33A8-4C46-869A-11AA2CDF4EDC} [2021/11/05 05:06:47 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Default\AppData [2017/03/15 16:11:20 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Default\Application Data [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Cookies [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Favorites [2015/02/13 13:35:36 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Local Settings [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Menu Démarrer [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Mes documents [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Modèles [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\My Documents [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NetHood [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NTUSER.DAT ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG1 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG2 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TM.blf ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Default\PrintHood [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Recent [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\SendTo [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Start Menu [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Templates [2013/08/22 15:45:52 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Voisinage d'impression [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Voisinage réseau [2015/06/19 18:16:39 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\.android [2021/10/24 13:08:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Jérôme\.homeplayer [2021/08/04 15:15:52 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Jérôme\.vinylManager.ini ()
O4 - Startup: C:\Users\Jérôme\AppData [2015/06/19 11:27:19 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Jérôme\Application Data [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Contacts [2020/03/20 10:12:10 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Cookies [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Desktop [2021/11/06 17:57:44 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Documents [2021/10/27 06:40:04 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Downloads [2021/11/05 05:54:32 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Intel [2017/04/23 16:15:20 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Jérôme\IntelGraphicsProfiles [2021/11/07 10:50:02 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Links [2021/10/27 15:46:28 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Local Settings [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Menu Démarrer [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Mes documents [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Mes ebooks [2021/10/09 15:42:06 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Jérôme\Modèles [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Music [2021/11/03 16:32:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\ntuser.dat ()
O4 - Startup: C:\Users\Jérôme\NTUSER.DAT.gu.LOG1 ()
O4 - Startup: C:\Users\Jérôme\NTUSER.DAT.gu.LOG2 ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{1a151dc8-d71c-11ea-892a-3065ec6e2f1d}.TM.blf ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{1a151dc8-d71c-11ea-892a-3065ec6e2f1d}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{1a151dc8-d71c-11ea-892a-3065ec6e2f1d}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{470d458b-3df8-11ec-8bc4-d053493837b1}.TM.blf ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{470d458b-3df8-11ec-8bc4-d053493837b1}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{470d458b-3df8-11ec-8bc4-d053493837b1}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{4e6e33e3-3e6c-11ec-8bce-d053493837b1}.TM.blf ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{4e6e33e3-3e6c-11ec-8bce-d053493837b1}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{4e6e33e3-3e6c-11ec-8bce-d053493837b1}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TM.blf ()
O4 - Startup: C:\Users\Jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{f2d3d8b4-8e05-11eb-8a77-3065ec6e2f1d}.TM.blf ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{f2d3d8b4-8e05-11eb-8a77-3065ec6e2f1d}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.dat{f2d3d8b4-8e05-11eb-8a77-3065ec6e2f1d}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Jérôme\ntuser.ini ()
O4 - Startup: C:\Users\Jérôme\Pictures [2021/11/02 17:00:52 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Recent [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Searches [2021/05/19 07:36:50 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\SendTo [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Videos [2021/10/30 06:49:29 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Jérôme\Voisinage d'impression [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Jérôme\Voisinage réseau [2015/06/19 11:27:19 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Public\AccountPictures [2015/06/19 11:16:56 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\BlueStacks [2021/04/28 14:01:16 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\CyberLink [2016/02/07 17:38:34 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\Desktop [2021/11/06 14:13:57 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Documents [2021/04/26 07:11:18 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Libraries [2013/08/22 16:36:32 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Music [2021/11/05 05:06:33 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\NTUSER.DAT.LOG1 ()
O4 - Startup: C:\Users\Public\NTUSER.DAT.LOG2 ()
O4 - Startup: C:\Users\Public\ntuser.dat{0611dfba-da2d-11e5-8392-3065ec6e2f1d}.TM.blf ()
O4 - Startup: C:\Users\Public\ntuser.dat{0611dfba-da2d-11e5-8392-3065ec6e2f1d}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Public\ntuser.dat{0611dfba-da2d-11e5-8392-3065ec6e2f1d}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Public\NTUSER.DAT{e0e30262-166d-11e5-825f-3065ec6e2f1d}.TM.blf ()
O4 - Startup: C:\Users\Public\NTUSER.DAT{e0e30262-166d-11e5-825f-3065ec6e2f1d}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Public\NTUSER.DAT{e0e30262-166d-11e5-825f-3065ec6e2f1d}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Public\Pictures [2020/11/15 17:20:51 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\PrivacyPal Sessions [2019/11/18 14:51:06 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\Security Sessions [2021/04/09 10:56:35 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\Videos [2021/11/05 05:06:33 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\TEMP\AppData [2021/11/06 14:19:47 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\TEMP.jérôme\AppData [2021/11/07 10:49:55 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\TEMP.jérôme\Application Data [2021/11/07 10:49:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\TEMP.jérôme\Cookies [2021/11/07 10:49:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\TEMP.jérôme\Desktop [2021/11/07 11:28:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\TEMP.jérôme\Favorites [2021/11/07 10:50:14 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\TEMP.jérôme\Local Settings [2021/11/07 10:49:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\TEMP.jérôme\Menu Démarrer [2021/11/07 10:49:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\TEMP.jérôme\NTUSER.DAT ()
O4 - Startup: C:\Users\TEMP.jérôme\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\TEMP.jérôme\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\TEMP.jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TM.blf ()
O4 - Startup: C:\Users\TEMP.jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\TEMP.jérôme\NTUSER.DAT{bbed3e3b-0b41-11e3-8249-d6927d06400b}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\TEMP.jérôme\ntuser.ini ()
O4 - Startup: C:\Users\TEMP.jérôme\Searches [2021/11/07 10:52:15 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\TEMP.jérôme\SendTo [2021/11/07 10:49:55 | 000,000,000 | -HSD | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: localhost ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: localhost ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2465FDF6-08AE-4BDD-82C0-A4D1063D756D}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{26AA6A43-AF1F-4074-A2AE-224B63839F37}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2911FD19-3E04-4E80-986E-439BD9D1B493}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3A9C5B95-85DC-4979-9EB5-58F3D53E5F5B}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{44D9412F-F1CA-4090-9DD3-5837AAD7E488}: D

5 réponses

Réponse 1 / 5
fabul Messages postés 37715 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 26 avril 2024 5 173
13 nov. 2021 à 15:09
Salut,

Tu peux télécharger Autoruns, extraire tout, et l'exécuter en tant qu'administrateur.

https://filehippo.com/fr/download_autoruns/13.98/

Cherches le dans la case Filter
1
Jeje29400
13 nov. 2021 à 16:27
Re-bonjour. Je ne le trouve pas dans filter.
0
fabul Messages postés 37715 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 26 avril 2024 5 173 > Jeje29400
Modifié le 13 nov. 2021 à 16:33
Copies/colles Pokki
0
jeje29400 > fabul Messages postés 37715 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 26 avril 2024
13 nov. 2021 à 16:57
Je vais essayer. Merci
0
Jeje29400 > fabul Messages postés 37715 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 26 avril 2024
Modifié le 13 nov. 2021 à 17:47
Étant donner que je suis une nullité en informatique, je n'y arrive pas. Je ne comprends rien.Désolé...
0
fabul Messages postés 37715 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 26 avril 2024 5 173 > Jeje29400
13 nov. 2021 à 17:35
Dans la case Filter en haut dans Autoruns, tapes Pokki

Si tu vois une ligne en bas avec C:\Users\TEMP jérôme\AppData\Local\Pokki\Engine\Launcher.dll

Fais clic droit dessus > Delete
0
Réponse 2 / 5
MisteryBean Messages postés 8675 Date d'inscription jeudi 19 décembre 2019 Statut Modérateur, Contributeur sécurité Dernière intervention 27 avril 2024 1 215
14 nov. 2021 à 17:37
RE_

Un fichier Run.txt s'est créé à la racine de C: , postes le .

A la seconde lignes , tu as bien eu la demande de suppression ? ça a bien marqué opération réussie ?
0
jeje29400 Messages postés 10 Date d'inscription samedi 13 novembre 2021 Statut Membre Dernière intervention 14 novembre 2021
Modifié le 14 nov. 2021 à 18:21
Oui, j'ai bien eu la demande de suppression. Pour le reste, je ne me souviens plus. Je vais réessayer.
0
jeje29400 Messages postés 10 Date d'inscription samedi 13 novembre 2021 Statut Membre Dernière intervention 14 novembre 2021
14 nov. 2021 à 18:51
J'ai bien eu la demande de suppression, mais ça indique: C:\windows\system32>
0
MisteryBean Messages postés 8675 Date d'inscription jeudi 19 décembre 2019 Statut Modérateur, Contributeur sécurité Dernière intervention 27 avril 2024 1 215 > jeje29400 Messages postés 10 Date d'inscription samedi 13 novembre 2021 Statut Membre Dernière intervention 14 novembre 2021
14 nov. 2021 à 18:54
RE_

Oui c'est normal , c'est le chemin normal de CMD . Fais ce que je t'ai indiqué dans mon message
https://forums.commentcamarche.net/forum/affich-37414956-c-users-temp-jerome-appdata-local-pokki-engine-launcher-dll#22
0
Réponse 3 / 5
MisteryBean Messages postés 8675 Date d'inscription jeudi 19 décembre 2019 Statut Modérateur, Contributeur sécurité Dernière intervention 27 avril 2024 1 215
14 nov. 2021 à 18:15
RE_

Vu que tu as du mal à répondre aux questions , on va faire un diagnostic avec un outil plus récent. OTL est totalement obsolète

Bien lire toute la procédure avant de poster les rapports
Ne pas les poster directement dans les messages car ils sont illisibles et incomplets

Sont attendus les rapports FRST.txt et Addition.txt

Tous les rapports doivent être hébergés sur https://security-x.fr/up/ et tu indiques les liens obtenus dans ta réponse

---------------------------------------------------------------------------------------------

--> Le filtre SmartScreen peut déclencher une alerte. Cliquer sur Actions ou Informations complémentaires puis sur Exécuter quand même

---------------------------------------------------------------------------------------------

--> Télécharge la version FRST de Farbar, compatible avec ton système et enregistre le fichier sur ton Bureau

--> Pour un système en 32 bits
--> Pour un système en 64 bits

Comment savoir quelle version 32 bits ou 64 bits est exécutée sur mon système ?


--> Patiente le temps que ton navigateur te propose le téléchargement à enregistrer, sans cliquer nulle part, surtout pas sur les sponsors de la page.
--> Ferme toutes les applications, y compris ton navigateur
--> Double-clique sur FRST.exe et clique sur Oui pour accepter le Disclaimer
--> Sous Vista, Windows 7 / 8 et 10, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
--> Attendre qu'il indique L'outil est prêt à fonctionner
--> Sur le menu principal, clique sur Analyser et patiente le temps de l'analyse
--> A la fin du scan, les rapports FRST.txt et Addition.txt sont créés. Poste ces rapports dans ta prochaine réponse.
--> Les rapports sont enregistrés au même emplacement que l'outil et sous C:\FRST\Logs

0
Réponse 4 / 5
jeje29400 Messages postés 10 Date d'inscription samedi 13 novembre 2021 Statut Membre Dernière intervention 14 novembre 2021
14 nov. 2021 à 18:54
Bon. Merci infiniment à tous pour vos réponses et efforts, mais j'arrête là; je ne vais pas continuer à installer des trucs. J'abandonne et j'enverrai mon PC à réparer.
Merci encore à tous et désoler d'avoir mobiliser de votre temps.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
MisteryBean Messages postés 8675 Date d'inscription jeudi 19 décembre 2019 Statut Modérateur, Contributeur sécurité Dernière intervention 27 avril 2024 1 215
14 nov. 2021 à 18:57
RE_

FRST est comme OTL , c'est juste un exe à lancer . Une fais l'analyse faite et que tu aura posté les rpoorts , je te donnerais un correctif pour nettoyer ton PC .
ça n'a rien de compliqué et c'est assez rapide . Regardes les sujets dans la partie sécurité/virus , c'est l'outil qui est utilisé
0