Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2020
Exécuté par daniel (administrateur) sur PC (Packard Bell oneTwo S3270) (08-12-2020 23:27:09)
Exécuté depuis C:\Users\daniel\Desktop
Profils chargés: daniel
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13664984 2014-01-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [40576 2013-08-29] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [DataCollectionAgentController] => C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe [394904 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd) [Fichier non signé]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-10-17] (Acer Incorporated -> Acer Incorporated)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [317824 2016-01-18] (VTech Electronics North America, LLC -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-05-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2121472 2014-09-30] (Acer Incorporated -> )
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Fichier non signé]
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWDE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series XPS: C:\Windows\system32\CNMXLMBU.DLL [394240 2013-04-04] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CUSTPDF Writer Monitor x86: C:\Windows\system32\custmon64i.dll [87552 2011-10-04] () [Fichier non signé]
HKLM\...\Print\Monitors\EPSON XP-4100 Series 64MonitorBE: C:\Windows\system32\E_YLMBWDE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
GroupPolicy-x32: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {24C030B6-BE83-4E75-AFBE-1DB7CA20F2CC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3BB3C11D-5B98-4BA5-804D-4B898F09A679} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41E3EB5B-67D1-4AC3-A29E-0E22DD4E7EA5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {57807EA2-DF0A-4CFF-A2A9-F910A111D495} - System32\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6B2400F9-5F5B-4C55-83F5-943FE601B517} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-07-31] (Garmin International, Inc. -> )
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7776880F-E003-4986-BFDB-3532FD60340C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BDB19C3-4999-41DB-BF26-7140D08B1EBE} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [527616 2013-12-30] (Acer Incorporated -> Acer Incorporated)
Task: {8308225D-1CB8-4BD3-B8D5-F70AC4A0EC01} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-06-03] (Adobe Inc. -> Adobe)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8D597158-A9E2-49B9-B088-695E8EBF5BD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {8DC9F483-2000-45C8-A12F-DEAE25C15E65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe)
Task: {9129E378-881F-47FF-A7AB-631696775A07} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {92EA9D84-AF7B-43F0-847C-71879DD15DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {950A771E-7FAE-4275-BBC9-FA80C38178F7} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312 2013-07-08] (Acer Incorporated -> )
Task: {AD57DCBE-8524-419E-A56D-B2039CEFEBE1} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2621696 2014-10-20] (Acer Incorporated -> Acer)
Task: {B71F83A0-C91C-4750-85C0-0EA399D3FF6B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {BD374051-085E-4DC7-836C-B226AF78AD3F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D38CB5E5-EB17-41F6-AC2C-E4FF6803B37C} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [490728 2014-03-18] (Acer Incorporated -> Acer Incorporated)
Task: {D5BEBC9E-AA9D-4096-B0CC-C898C3D02ACC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D64DBDAF-E909-4D39-844E-686878C64543} - System32\Tasks\UbtFrameworkService => C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-01-24] (Acer Incorporated -> TODO:)
Task: {DB2D8FA6-3B7E-40C4-B24B-4DBD61D02DC9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EAAB1402-49F6-4225-9CA2-5DA4E6875375} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-danielaurelia27@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {F8CF05A0-DC24-4810-993C-95AC829EE6C6} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> )
Task: {F92EF823-8F5C-4DAE-A899-5D9E51F43D1A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE:/EXE:{490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} /F:UpdateWORKGROUP\PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{138825b6-a1bd-4dc4-8dc8-8b2522ceb672}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{40efad67-0b91-4b18-ac5e-ee36eea47732}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5166298-e896-4d7c-aeed-f212278d23e1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fbb17643-ce8a-4f1a-b6ed-bc44d024235e}: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF DefaultProfile: 4u1lipja.default
FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\lq97jtae.default-release [2020-12-08]
FF Homepage: Mozilla\Firefox\Profiles\lq97jtae.default-release -> hxxps://portail.free.fr/
FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default [2020-12-08]
FF Homepage: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxp://portail.free.fr/
FF Notifications: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxps://www.bienici.com; hxxps://www.argentdubeurre.com; hxxps://www.mercotte.fr; hxxps://fr.reimageplus.com; hxxps://ericpineau.pushcrew.com; hxxps://games.softgames.com; hxxps://thebrickarmory.com
FF HomepageOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _j5Members_@ext.ask.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: qwant@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: google@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: _j5Members_@ext.ask.com
FF Extension: (Esiliq Diaporama skyline-ville) - C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default\Extensions\application@fr-esiliq.com.xpi [2018-07-02] [UpdateUrl:hxxps://data1.esiliq.com/partners/files/iti-maps/update_firefox_exts_esiliq.json]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-686708046-2947712787-74878262-1001: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2015-05-29] (Sony Network Entertainment International LLC) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\daniel\AppData\Local\Google\Chrome\User Data\System Profile [2019-11-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-09-22] (Advanced Micro Devices, Inc. -> )
R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3096832 2014-10-17] (Acer Incorporated -> Acer Incorporated)
R2 DCAgent; C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe [16536 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EDUSBAgent; C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe [17840 2019-12-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Fichier non signé]
S4 UEIPSvc; C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-24] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-01-13] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2014-11-20] (SurfRight B.V. -> )
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R1 MpKsl9e307c64; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{965AAA86-FA61-4BE7-9F02-EDE86EB07B29}\MpKsl9e307c64.sys [47328 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 PVUSB; C:\WINDOWS\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [337920 2017-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [38504 2014-03-26] (Realtek Semiconductor Corp -> Windows (R) Codename Longhorn DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-08 23:27 - 2020-12-08 23:31 - 000022530 _____ C:\Users\daniel\Desktop\FRST.txt
2020-12-08 23:18 - 2020-12-08 23:18 - 000000000 ____D C:\Users\daniel\Desktop\FRST-OlderVersion
2020-12-08 23:17 - 2020-12-08 23:17 - 000010701 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).html
2020-12-08 23:17 - 2020-12-08 23:17 - 000003812 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).txt
2020-12-08 23:08 - 2020-12-08 23:08 - 000010397 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).html
2020-12-08 23:08 - 2020-12-08 23:08 - 000003619 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).txt
2020-12-08 10:43 - 2020-12-08 10:43 - 000001017 _____ C:\Users\daniel\Desktop\Firefox.lnk
2020-12-08 06:55 - 2020-12-08 08:18 - 000000000 ___HD C:\$WINDOWS.~BT
2020-12-07 11:22 - 2020-12-08 06:42 - 000000036 _____ C:\WINDOWS\progress.ini
2020-12-07 07:07 - 2020-12-08 08:59 - 000000000 ___HD C:\$GetCurrent
2020-12-07 06:20 - 2020-12-07 11:19 - 000000000 ____D C:\Windows10Upgrade
2020-12-07 06:20 - 2020-12-07 06:20 - 000000743 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2020-12-07 06:20 - 2020-12-07 06:20 - 000000731 _____ C:\Users\daniel\Desktop\Assistant Mise à jour de Windows 10.lnk
2020-12-06 08:09 - 2020-12-08 21:45 - 000000920 _____ C:\Users\daniel\Desktop\ZHPCleaner.lnk
2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe
2020-12-05 11:21 - 2020-12-05 11:21 - 000020527 _____ C:\Users\daniel\Desktop\devis_desroles_Fevrier2020.pdf
2020-12-05 08:13 - 2020-12-08 23:29 - 000000000 ____D C:\FRST
2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe
2020-12-05 07:20 - 2020-12-08 23:17 - 000000000 ____D C:\Users\daniel\AppData\Roaming\ZHP
2020-12-05 07:20 - 2020-12-05 07:20 - 000000910 _____ C:\Users\daniel\Desktop\ZHPSuite.lnk
2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe
2020-11-07 11:28 - 2020-11-07 11:28 - 000016380 _____ C:\Users\daniel\Desktop\Calendrier 2021 Cross calorg.PDF
2020-11-07 11:26 - 2020-11-07 11:26 - 000056972 _____ C:\Users\daniel\Desktop\Calendrier 2021 Running calorg.PDF
2020-10-07 09:21 - 2020-10-07 09:22 - 000080419 _____ C:\Users\daniel\Downloads\couponODR_FRAIS_DE_RESILIATION_Fixe_18080001.pdf
2020-10-07 09:02 - 2020-10-07 09:03 - 000026096 _____ C:\Users\daniel\Desktop\Facture_Free_202010_24173674_975929357.pdf
2020-10-04 09:22 - 2020-10-04 09:23 - 001167084 _____ C:\Users\daniel\Downloads\formulaire CE Desroles Illan.pdf
2020-09-30 14:30 - 2020-09-30 14:30 - 000122471 _____ C:\Users\daniel\Desktop\certificat medical illan.pdf
2020-09-30 14:29 - 2020-09-30 14:29 - 000122471 _____ C:\Users\daniel\Documents\img20200930_15292444.pdf
2020-09-29 05:29 - 2020-09-29 05:29 - 000155782 _____ C:\Users\daniel\Desktop\votre autorisation de prélèvement.pdf
2020-09-14 15:22 - 2020-09-14 15:22 - 000343260 _____ C:\Users\daniel\Downloads\ResilLigne-Free_24173674.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-08 23:26 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-08 23:20 - 2014-09-28 14:12 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-08 23:18 - 2016-11-16 13:29 - 000000000 ____D C:\Users\daniel\AppData\LocalLow\Mozilla
2020-12-08 23:15 - 2018-05-27 09:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-08 21:16 - 2018-05-27 09:55 - 000004148 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{22269D1B-39EF-4546-8AF1-75BE309BBA15}
2020-12-08 10:55 - 2018-09-26 12:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-08 10:54 - 2020-01-11 06:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-08 10:54 - 2018-04-29 03:57 - 000001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-12-08 10:39 - 2018-04-29 03:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-12-08 10:36 - 2017-03-15 19:48 - 000000000 ___RD C:\Program Files (x86)\Skype
2020-12-08 10:36 - 2015-03-13 08:14 - 000000000 ____D C:\ProgramData\Skype
2020-12-08 10:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-08 10:32 - 2017-12-14 12:57 - 000000000 ____D C:\Users\daniel\AppData\Local\Packages
2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagerr.xml
2020-12-08 08:59 - 2014-09-28 14:04 - 000000000 ____D C:\Users\daniel\AppData\Local\CrashDumps
2020-12-08 07:48 - 2018-05-24 02:03 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-07 13:15 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2020-12-07 12:57 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-12-07 12:35 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\registration
2020-12-07 07:05 - 2017-06-20 14:03 - 000028970 _____ C:\Users\daniel\Desktop\Classeur1.xlsx
2020-12-07 06:18 - 2014-10-24 19:01 - 000000000 ___HD C:\ProgramData\CanonIJScan
2020-12-07 06:18 - 2014-10-22 20:53 - 000000000 ____D C:\Users\daniel\AppData\Roaming\Canon
2020-12-07 06:17 - 2014-10-22 20:44 - 000000000 ____D C:\Program Files\Canon
2020-12-07 06:17 - 2014-10-22 17:43 - 000000000 ____D C:\Program Files (x86)\Canon
2020-12-06 12:41 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-05 07:20 - 2017-07-02 07:40 - 000000000 ____D C:\Users\daniel\AppData\Local\ZHP
2020-12-04 08:31 - 2018-05-27 09:35 - 001766594 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-04 08:31 - 2018-04-12 17:18 - 000789954 _____ C:\WINDOWS\system32\perfh00C.dat
2020-12-04 08:31 - 2018-04-12 17:18 - 000149486 _____ C:\WINDOWS\system32\perfc00C.dat
2020-12-04 08:24 - 2018-05-27 09:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-04 04:10 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-04 04:10 - 2017-07-23 08:49 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-12-04 03:22 - 2018-05-27 09:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 03:22 - 2018-05-27 09:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-26 08:14 - 2017-11-14 07:39 - 000000000 ____D C:\Users\daniel\Desktop\10bornes de conches
2020-11-18 17:21 - 2018-07-29 10:06 - 000000000 ____D C:\Users\daniel\AppData\Local\Garmin
2020-11-13 08:28 - 2018-06-23 07:55 - 000000000 ____D C:\WINDOWS\Minidump
2020-11-13 08:01 - 2018-05-27 09:18 - 000000000 ____D C:\Users\daniel
==================== Fichiers à la racine de certains dossiers ========
2014-09-30 18:13 - 2014-09-30 18:13 - 000000042 _____ () C:\Users\daniel\AppData\Roaming\WB.CFG
2014-09-30 12:21 - 2014-09-30 12:21 - 000000017 _____ () C:\Users\daniel\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll
2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll
2014-05-30 10:42 - 2012-11-01 10:21 - 000325120 _____ C:\WINDOWS\system32\APOMgr64.DLL
2013-12-24 01:26 - 2013-12-24 01:26 - 000362112 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\AthCredentialProvider.dll
2016-07-13 11:53 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2014-05-30 10:42 - 2012-11-01 10:23 - 000089600 _____ C:\WINDOWS\system32\CmdRtr64.DLL
2018-05-27 09:27 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll
2014-10-22 20:51 - 2013-04-04 04:00 - 000394240 _____ (CANON INC.) C:\WINDOWS\system32\CNMXLMBU.DLL
2014-09-30 07:29 - 2011-10-04 21:43 - 000087552 _____ C:\WINDOWS\system32\custmon64i.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-04-13 07:14 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2015-03-12 07:38 - 2014-10-29 02:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2015-03-12 07:48 - 2014-10-29 02:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll
2017-05-11 19:40 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2013-12-06 15:49 - 2013-12-06 15:49 - 000051200 _____ C:\WINDOWS\system32\kdbsdk64.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2015-09-09 08:54 - 2015-07-22 15:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2015-04-14 20:13 - 2015-03-14 02:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-09-30 06:50 - 2008-12-11 11:40 - 000176128 _____ (Euro Information) C:\WINDOWS\calceuro.exe
2014-05-30 10:42 - 2000-05-11 00:00 - 000090112 _____ (Creative Technology Ltd.) C:\WINDOWS\Updreg.EXE
2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll
2014-05-30 10:42 - 2012-11-01 10:19 - 000246272 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL
2014-05-30 10:42 - 2012-11-01 10:22 - 000074240 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL
2016-09-30 06:50 - 2004-07-19 16:29 - 000102400 _____ (Euro Information) C:\WINDOWS\SysWOW64\CmutEuro32.dll
2014-10-24 18:56 - 2008-08-25 17:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll
2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll
2017-03-15 18:08 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2013-12-06 15:44 - 2013-12-06 15:44 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll
2015-10-30 08:19 - 2016-09-14 11:54 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-10-30 08:19 - 2016-09-14 11:54 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2006-10-26 12:45 - 2006-10-26 12:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe
2019-10-28 09:18 - 2019-10-28 09:18 - 001808233 _____ C:\Users\daniel\Desktop\pf-setup-fr-653.exe
2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe
2016-11-09 11:32 - 2016-11-09 11:33 - 001376137 _____ (Greenshot ) C:\Users\daniel\Downloads\Greenshot-INSTALLER-1.2.8.14-RELEASE.exe
2017-03-08 21:22 - 2017-03-08 21:22 - 008490419 _____ C:\Users\daniel\Downloads\JavaPlugin.exe
2017-05-10 15:18 - 2017-05-10 15:18 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(1).exe
2017-05-11 19:34 - 2017-05-11 19:35 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(2).exe
2017-05-10 15:16 - 2017-05-10 15:16 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install.exe
2016-11-09 11:28 - 2016-11-09 11:28 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1(1).exe
2016-10-23 10:56 - 2016-11-05 19:25 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1.exe
2016-11-10 12:43 - 2016-11-10 12:44 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0(1).exe
2016-10-24 14:09 - 2016-10-24 14:11 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0.exe
2020-01-08 06:00 - 2020-01-08 06:00 - 007460173 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap-pro440f-fr.exe
2018-03-07 08:57 - 2018-03-07 08:57 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr(1).exe
2018-01-15 17:23 - 2018-01-15 17:23 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr.exe
2019-06-21 12:05 - 2019-06-21 12:05 - 003712350 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400k-fr.exe
2020-01-08 06:05 - 2020-01-08 06:05 - 007477160 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap440f-fr.exe
2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d�marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 2
Gestionnaire de d�marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d�marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1}
nx OptIn
bootmenupolicy Standard
Chargeur de d�marrage Windows
-----------------------------
identificateur {a67389a9-618d-11e8-b089-9b576c26e6d1}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre � partir de la mise en veille prolong�e
-------------------------------------------------
identificateur {a67389a7-618d-11e8-b089-9b576c26e6d1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m�moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m�moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Param�tres EMS
--------------
identificateur {emssettings}
bootems No
Param�tres du d�bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m�moire RAM
----------------------
identificateur {badmemory}
Param�tres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Param�tres du chargeur de d�marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Param�tres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Param�tres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p�riph�rique
-----------------------
identificateur {a67389aa-618d-11e8-b089-9b576c26e6d1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par daniel (administrateur) sur PC (Packard Bell oneTwo S3270) (08-12-2020 23:27:09)
Exécuté depuis C:\Users\daniel\Desktop
Profils chargés: daniel
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13664984 2014-01-08] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [40576 2013-08-29] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [DataCollectionAgentController] => C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe [394904 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd) [Fichier non signé]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-10-17] (Acer Incorporated -> Acer Incorporated)
HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [317824 2016-01-18] (VTech Electronics North America, LLC -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-05-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2121472 2014-09-30] (Acer Incorporated -> )
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Fichier non signé]
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWDE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series XPS: C:\Windows\system32\CNMXLMBU.DLL [394240 2013-04-04] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\CUSTPDF Writer Monitor x86: C:\Windows\system32\custmon64i.dll [87552 2011-10-04] () [Fichier non signé]
HKLM\...\Print\Monitors\EPSON XP-4100 Series 64MonitorBE: C:\Windows\system32\E_YLMBWDE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé]
GroupPolicy-x32: Restriction ? <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {24C030B6-BE83-4E75-AFBE-1DB7CA20F2CC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3BB3C11D-5B98-4BA5-804D-4B898F09A679} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41E3EB5B-67D1-4AC3-A29E-0E22DD4E7EA5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {57807EA2-DF0A-4CFF-A2A9-F910A111D495} - System32\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {6B2400F9-5F5B-4C55-83F5-943FE601B517} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-07-31] (Garmin International, Inc. -> )
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7776880F-E003-4986-BFDB-3532FD60340C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7BDB19C3-4999-41DB-BF26-7140D08B1EBE} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [527616 2013-12-30] (Acer Incorporated -> Acer Incorporated)
Task: {8308225D-1CB8-4BD3-B8D5-F70AC4A0EC01} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-06-03] (Adobe Inc. -> Adobe)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8D597158-A9E2-49B9-B088-695E8EBF5BD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {8DC9F483-2000-45C8-A12F-DEAE25C15E65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe)
Task: {9129E378-881F-47FF-A7AB-631696775A07} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {92EA9D84-AF7B-43F0-847C-71879DD15DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {950A771E-7FAE-4275-BBC9-FA80C38178F7} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312 2013-07-08] (Acer Incorporated -> )
Task: {AD57DCBE-8524-419E-A56D-B2039CEFEBE1} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2621696 2014-10-20] (Acer Incorporated -> Acer)
Task: {B71F83A0-C91C-4750-85C0-0EA399D3FF6B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {BD374051-085E-4DC7-836C-B226AF78AD3F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D38CB5E5-EB17-41F6-AC2C-E4FF6803B37C} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [490728 2014-03-18] (Acer Incorporated -> Acer Incorporated)
Task: {D5BEBC9E-AA9D-4096-B0CC-C898C3D02ACC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D64DBDAF-E909-4D39-844E-686878C64543} - System32\Tasks\UbtFrameworkService => C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-01-24] (Acer Incorporated -> TODO:
Task: {DB2D8FA6-3B7E-40C4-B24B-4DBD61D02DC9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EAAB1402-49F6-4225-9CA2-5DA4E6875375} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-danielaurelia27@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {F8CF05A0-DC24-4810-993C-95AC829EE6C6} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> )
Task: {F92EF823-8F5C-4DAE-A899-5D9E51F43D1A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE:/EXE:{490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} /F:UpdateWORKGROUP\PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{138825b6-a1bd-4dc4-8dc8-8b2522ceb672}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{40efad67-0b91-4b18-ac5e-ee36eea47732}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5166298-e896-4d7c-aeed-f212278d23e1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fbb17643-ce8a-4f1a-b6ed-bc44d024235e}: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF DefaultProfile: 4u1lipja.default
FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\lq97jtae.default-release [2020-12-08]
FF Homepage: Mozilla\Firefox\Profiles\lq97jtae.default-release -> hxxps://portail.free.fr/
FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default [2020-12-08]
FF Homepage: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxp://portail.free.fr/
FF Notifications: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxps://www.bienici.com; hxxps://www.argentdubeurre.com; hxxps://www.mercotte.fr; hxxps://fr.reimageplus.com; hxxps://ericpineau.pushcrew.com; hxxps://games.softgames.com; hxxps://thebrickarmory.com
FF HomepageOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _j5Members_@ext.ask.com
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: qwant@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ebay@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: amazon@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: bing@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: google@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: _j5Members_@ext.ask.com
FF Extension: (Esiliq Diaporama skyline-ville) - C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default\Extensions\application@fr-esiliq.com.xpi [2018-07-02] [UpdateUrl:hxxps://data1.esiliq.com/partners/files/iti-maps/update_firefox_exts_esiliq.json]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> )
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-686708046-2947712787-74878262-1001: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2015-05-29] (Sony Network Entertainment International LLC) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\daniel\AppData\Local\Google\Chrome\User Data\System Profile [2019-11-18]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S4 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-09-22] (Advanced Micro Devices, Inc. -> )
R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3096832 2014-10-17] (Acer Incorporated -> Acer Incorporated)
R2 DCAgent; C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe [16536 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EDUSBAgent; C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe [17840 2019-12-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Fichier non signé]
S4 UEIPSvc; C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-24] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-01-13] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2014-11-20] (SurfRight B.V. -> )
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R1 MpKsl9e307c64; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{965AAA86-FA61-4BE7-9F02-EDE86EB07B29}\MpKsl9e307c64.sys [47328 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 PVUSB; C:\WINDOWS\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [337920 2017-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [38504 2014-03-26] (Realtek Semiconductor Corp -> Windows (R) Codename Longhorn DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Trois mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-08 23:27 - 2020-12-08 23:31 - 000022530 _____ C:\Users\daniel\Desktop\FRST.txt
2020-12-08 23:18 - 2020-12-08 23:18 - 000000000 ____D C:\Users\daniel\Desktop\FRST-OlderVersion
2020-12-08 23:17 - 2020-12-08 23:17 - 000010701 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).html
2020-12-08 23:17 - 2020-12-08 23:17 - 000003812 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).txt
2020-12-08 23:08 - 2020-12-08 23:08 - 000010397 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).html
2020-12-08 23:08 - 2020-12-08 23:08 - 000003619 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).txt
2020-12-08 10:43 - 2020-12-08 10:43 - 000001017 _____ C:\Users\daniel\Desktop\Firefox.lnk
2020-12-08 06:55 - 2020-12-08 08:18 - 000000000 ___HD C:\$WINDOWS.~BT
2020-12-07 11:22 - 2020-12-08 06:42 - 000000036 _____ C:\WINDOWS\progress.ini
2020-12-07 07:07 - 2020-12-08 08:59 - 000000000 ___HD C:\$GetCurrent
2020-12-07 06:20 - 2020-12-07 11:19 - 000000000 ____D C:\Windows10Upgrade
2020-12-07 06:20 - 2020-12-07 06:20 - 000000743 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk
2020-12-07 06:20 - 2020-12-07 06:20 - 000000731 _____ C:\Users\daniel\Desktop\Assistant Mise à jour de Windows 10.lnk
2020-12-06 08:09 - 2020-12-08 21:45 - 000000920 _____ C:\Users\daniel\Desktop\ZHPCleaner.lnk
2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe
2020-12-05 11:21 - 2020-12-05 11:21 - 000020527 _____ C:\Users\daniel\Desktop\devis_desroles_Fevrier2020.pdf
2020-12-05 08:13 - 2020-12-08 23:29 - 000000000 ____D C:\FRST
2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe
2020-12-05 07:20 - 2020-12-08 23:17 - 000000000 ____D C:\Users\daniel\AppData\Roaming\ZHP
2020-12-05 07:20 - 2020-12-05 07:20 - 000000910 _____ C:\Users\daniel\Desktop\ZHPSuite.lnk
2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe
2020-11-07 11:28 - 2020-11-07 11:28 - 000016380 _____ C:\Users\daniel\Desktop\Calendrier 2021 Cross calorg.PDF
2020-11-07 11:26 - 2020-11-07 11:26 - 000056972 _____ C:\Users\daniel\Desktop\Calendrier 2021 Running calorg.PDF
2020-10-07 09:21 - 2020-10-07 09:22 - 000080419 _____ C:\Users\daniel\Downloads\couponODR_FRAIS_DE_RESILIATION_Fixe_18080001.pdf
2020-10-07 09:02 - 2020-10-07 09:03 - 000026096 _____ C:\Users\daniel\Desktop\Facture_Free_202010_24173674_975929357.pdf
2020-10-04 09:22 - 2020-10-04 09:23 - 001167084 _____ C:\Users\daniel\Downloads\formulaire CE Desroles Illan.pdf
2020-09-30 14:30 - 2020-09-30 14:30 - 000122471 _____ C:\Users\daniel\Desktop\certificat medical illan.pdf
2020-09-30 14:29 - 2020-09-30 14:29 - 000122471 _____ C:\Users\daniel\Documents\img20200930_15292444.pdf
2020-09-29 05:29 - 2020-09-29 05:29 - 000155782 _____ C:\Users\daniel\Desktop\votre autorisation de prélèvement.pdf
2020-09-14 15:22 - 2020-09-14 15:22 - 000343260 _____ C:\Users\daniel\Downloads\ResilLigne-Free_24173674.pdf
==================== Trois mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-08 23:26 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-08 23:20 - 2014-09-28 14:12 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-08 23:18 - 2016-11-16 13:29 - 000000000 ____D C:\Users\daniel\AppData\LocalLow\Mozilla
2020-12-08 23:15 - 2018-05-27 09:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-08 21:16 - 2018-05-27 09:55 - 000004148 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{22269D1B-39EF-4546-8AF1-75BE309BBA15}
2020-12-08 10:55 - 2018-09-26 12:11 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-08 10:54 - 2020-01-11 06:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-08 10:54 - 2018-04-29 03:57 - 000001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-12-08 10:39 - 2018-04-29 03:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-12-08 10:36 - 2017-03-15 19:48 - 000000000 ___RD C:\Program Files (x86)\Skype
2020-12-08 10:36 - 2015-03-13 08:14 - 000000000 ____D C:\ProgramData\Skype
2020-12-08 10:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-08 10:32 - 2017-12-14 12:57 - 000000000 ____D C:\Users\daniel\AppData\Local\Packages
2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagerr.xml
2020-12-08 08:59 - 2014-09-28 14:04 - 000000000 ____D C:\Users\daniel\AppData\Local\CrashDumps
2020-12-08 07:48 - 2018-05-24 02:03 - 000000000 ___DC C:\WINDOWS\Panther
2020-12-07 13:15 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2020-12-07 12:57 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-12-07 12:35 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\registration
2020-12-07 07:05 - 2017-06-20 14:03 - 000028970 _____ C:\Users\daniel\Desktop\Classeur1.xlsx
2020-12-07 06:18 - 2014-10-24 19:01 - 000000000 ___HD C:\ProgramData\CanonIJScan
2020-12-07 06:18 - 2014-10-22 20:53 - 000000000 ____D C:\Users\daniel\AppData\Roaming\Canon
2020-12-07 06:17 - 2014-10-22 20:44 - 000000000 ____D C:\Program Files\Canon
2020-12-07 06:17 - 2014-10-22 17:43 - 000000000 ____D C:\Program Files (x86)\Canon
2020-12-06 12:41 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-05 07:20 - 2017-07-02 07:40 - 000000000 ____D C:\Users\daniel\AppData\Local\ZHP
2020-12-04 08:31 - 2018-05-27 09:35 - 001766594 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-04 08:31 - 2018-04-12 17:18 - 000789954 _____ C:\WINDOWS\system32\perfh00C.dat
2020-12-04 08:31 - 2018-04-12 17:18 - 000149486 _____ C:\WINDOWS\system32\perfc00C.dat
2020-12-04 08:24 - 2018-05-27 09:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-04 04:10 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-12-04 04:10 - 2017-07-23 08:49 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-12-04 03:22 - 2018-05-27 09:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-04 03:22 - 2018-05-27 09:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-26 08:14 - 2017-11-14 07:39 - 000000000 ____D C:\Users\daniel\Desktop\10bornes de conches
2020-11-18 17:21 - 2018-07-29 10:06 - 000000000 ____D C:\Users\daniel\AppData\Local\Garmin
2020-11-13 08:28 - 2018-06-23 07:55 - 000000000 ____D C:\WINDOWS\Minidump
2020-11-13 08:01 - 2018-05-27 09:18 - 000000000 ____D C:\Users\daniel
==================== Fichiers à la racine de certains dossiers ========
2014-09-30 18:13 - 2014-09-30 18:13 - 000000042 _____ () C:\Users\daniel\AppData\Roaming\WB.CFG
2014-09-30 12:21 - 2014-09-30 12:21 - 000000017 _____ () C:\Users\daniel\AppData\Local\resmon.resmoncfg
==================== SigCheckExt =========================
2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll
2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll
2014-05-30 10:42 - 2012-11-01 10:21 - 000325120 _____ C:\WINDOWS\system32\APOMgr64.DLL
2013-12-24 01:26 - 2013-12-24 01:26 - 000362112 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\AthCredentialProvider.dll
2016-07-13 11:53 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2014-05-30 10:42 - 2012-11-01 10:23 - 000089600 _____ C:\WINDOWS\system32\CmdRtr64.DLL
2018-05-27 09:27 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll
2014-10-22 20:51 - 2013-04-04 04:00 - 000394240 _____ (CANON INC.) C:\WINDOWS\system32\CNMXLMBU.DLL
2014-09-30 07:29 - 2011-10-04 21:43 - 000087552 _____ C:\WINDOWS\system32\custmon64i.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-04-13 07:14 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2015-03-12 07:38 - 2014-10-29 02:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2015-03-12 07:48 - 2014-10-29 02:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll
2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll
2017-05-11 19:40 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2013-12-06 15:49 - 2013-12-06 15:49 - 000051200 _____ C:\WINDOWS\system32\kdbsdk64.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2015-09-09 08:54 - 2015-07-22 15:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2015-04-14 20:13 - 2015-03-14 02:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-09-30 06:50 - 2008-12-11 11:40 - 000176128 _____ (Euro Information) C:\WINDOWS\calceuro.exe
2014-05-30 10:42 - 2000-05-11 00:00 - 000090112 _____ (Creative Technology Ltd.) C:\WINDOWS\Updreg.EXE
2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll
2014-05-30 10:42 - 2012-11-01 10:19 - 000246272 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL
2014-05-30 10:42 - 2012-11-01 10:22 - 000074240 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL
2016-09-30 06:50 - 2004-07-19 16:29 - 000102400 _____ (Euro Information) C:\WINDOWS\SysWOW64\CmutEuro32.dll
2014-10-24 18:56 - 2008-08-25 17:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll
2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll
2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll
2017-03-15 18:08 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2013-12-06 15:44 - 2013-12-06 15:44 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll
2015-10-30 08:19 - 2016-09-14 11:54 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2015-10-30 08:19 - 2016-09-14 11:54 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2015-05-29 15:50 - 2015-05-29 15:50 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2006-10-26 12:45 - 2006-10-26 12:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE
2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe
2019-10-28 09:18 - 2019-10-28 09:18 - 001808233 _____ C:\Users\daniel\Desktop\pf-setup-fr-653.exe
2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe
2016-11-09 11:32 - 2016-11-09 11:33 - 001376137 _____ (Greenshot ) C:\Users\daniel\Downloads\Greenshot-INSTALLER-1.2.8.14-RELEASE.exe
2017-03-08 21:22 - 2017-03-08 21:22 - 008490419 _____ C:\Users\daniel\Downloads\JavaPlugin.exe
2017-05-10 15:18 - 2017-05-10 15:18 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(1).exe
2017-05-11 19:34 - 2017-05-11 19:35 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(2).exe
2017-05-10 15:16 - 2017-05-10 15:16 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install.exe
2016-11-09 11:28 - 2016-11-09 11:28 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1(1).exe
2016-10-23 10:56 - 2016-11-05 19:25 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1.exe
2016-11-10 12:43 - 2016-11-10 12:44 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0(1).exe
2016-10-24 14:09 - 2016-10-24 14:11 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0.exe
2020-01-08 06:00 - 2020-01-08 06:00 - 007460173 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap-pro440f-fr.exe
2018-03-07 08:57 - 2018-03-07 08:57 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr(1).exe
2018-01-15 17:23 - 2018-01-15 17:23 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr.exe
2019-06-21 12:05 - 2019-06-21 12:05 - 003712350 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400k-fr.exe
2020-01-08 06:05 - 2020-01-08 06:05 - 007477160 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap440f-fr.exe
2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d�marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
timeout 2
Gestionnaire de d�marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d�marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1}
nx OptIn
bootmenupolicy Standard
Chargeur de d�marrage Windows
-----------------------------
identificateur {a67389a9-618d-11e8-b089-9b576c26e6d1}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre � partir de la mise en veille prolong�e
-------------------------------------------------
identificateur {a67389a7-618d-11e8-b089-9b576c26e6d1}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m�moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m�moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
Param�tres EMS
--------------
identificateur {emssettings}
bootems No
Param�tres du d�bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Erreurs de m�moire RAM
----------------------
identificateur {badmemory}
Param�tres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Param�tres du chargeur de d�marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Param�tres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Param�tres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p�riph�rique
-----------------------
identificateur {a67389aa-618d-11e8-b089-9b576c26e6d1}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================