cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-02-2021 01
Exécuté par Yoyo (administrateur) sur LAPTOP-8JLK8DOS (Acer Aspire A315-21) (09-02-2021 11:11:53)
Exécuté depuis C:\Users\Yoyo\Desktop
Profils chargés: Yoyo
Platform: Windows 10 Home Version 20H2 19042.789 (X64) Langue: Français (Canada)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated -> acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0334382.inf_amd64_385141a145af07f6\B333866\atiesrxx.exe
(AMD) [Fichier non signé] C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
(AMD) [Fichier non signé] C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\OpenOffice 4\program\soffice.bin
(Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20566.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20566.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(PhotoFiltre -> Antonio Da Cruz) [Fichier non signé] C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-03-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2780776 2011-07-18] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1637496 2011-08-04] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [TrayProcess] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe [1410184 2020-12-04] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
HKU\S-1-5-21-4000590256-866895084-3915349271-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4000590256-866895084-3915349271-1001\...\Run: [ChronosXP] => C:\Program Files (x86)\ChronosXP\ChronosXP.exe [599040 2009-04-12] (Robert Misiak) [Fichier non signé]
HKU\S-1-5-21-4000590256-866895084-3915349271-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31164320 2021-01-26] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Windows x64\Print Processors\Canon MX430 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB1.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [356864 2011-10-02] (CANON INC.) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00834934-9A19-409F-A634-BB3AC6984083} - System32\Tasks\AMDInstallUEP => C:\Program Files\AMD\InstallUEP\AMDInstallUEP.exe
Task: {130816C0-2FAE-4BE0-88CF-C9FF9A42850A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {20DA4812-A867-4C54-9DB4-A42CEDCAA217} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {273AE373-6D4B-43A6-88B0-16C25509D5EA} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [446256 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {2D28F9FE-7098-4223-96B3-B8D5A85B08CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42E68240-47F1-4481-A5DF-3AA68A522ACD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-04] (Mozilla Corporation -> Mozilla Foundation)
Task: {521C0DE8-2185-4408-8803-E6C991A2B29E} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4696880 2018-05-28] (Acer Incorporated -> )
Task: {536575FA-963C-438E-9E79-F8E4710D4F3F} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2019-09-25] (Acer Incorporated -> Acer Incorporated)
Task: {53709652-3DB1-455A-8665-3B0930926297} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2770736 2019-09-26] (Acer Incorporated -> Acer Incorporated)
Task: {53EEB3C7-C370-4F9F-BB71-FC6FD08AA64E} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40864 2021-01-26] (Garmin International, Inc. -> )
Task: {57CF11AB-D13B-43B5-ADE0-1ED5398047A9} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-09-13] (Acer Incorporated -> TODO: )
Task: {581B46E9-DE8B-44DF-9B36-74F3A265A760} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {68010041-987A-4F3D-A7FD-CCFDA3079CE0} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {784D3CF9-B67C-4C03-A2A5-7676C3E3CF12} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-12-14] (Acer Incorporated -> )
Task: {78C2AD3A-3399-49CE-A828-3BFD4D66F010} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {79200215-A628-4CCE-8C20-D648D8BAF886} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [66952 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {8070342C-DE97-4221-A26D-A8956735F552} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {9555BAAD-AD3F-40BB-9C2D-B9A5F779627E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {958761C2-80EE-4FFE-B90F-4BDA34A49705} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9F206CEE-41FF-4AF9-9858-177F594AFE34} - System32\Tasks\App Explorer => C:\Users\Yoyo\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe <==== ATTENTION
Task: {AB6D7E54-595B-42AE-B9AB-135992FC8DB4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {AEAB99B8-4E2B-4F2F-9447-C9DBCD29DB77} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-10-30] (Acer Incorporated -> )
Task: {BAA6D3EE-5CB4-4624-BCF0-28864C6CD9EF} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-05-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {BAA7043B-D531-40EE-B5BD-AC14302F70DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6D792C2-43F9-44E3-9436-1ED86150B88E} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-12-13] (Acer Incorporated -> Acer Incorporated)
Task: {D18878FD-8187-4D3D-B8A4-A7DECC7ECF8C} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-10-30] (Acer Incorporated -> )
Task: {E049115F-8107-441A-8A76-4FE196E519A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E21D7786-93A7-4369-A6D9-8236B866EA45} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {F40075A0-099F-4851-9D26-B4EA2BF27264} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d9a08047-d159-431a-8521-d4e9f3b430f8}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e41ce74e-7963-4f0f-a53d-a1522f14718c}: [DhcpNameServer] 40.33.1.55

Edge:
=======
DownloadDir: C:\Users\Yoyo\Downloads
Edge Notifications: HKU\S-1-5-21-4000590256-866895084-3915349271-1001 -> hxxps://nul-55.1fr1.net
Edge DefaultProfile: Default
Edge Profile: C:\Users\Yoyo\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-07]
Edge DownloadDir: C:\Users\Yoyo\Downloads
Edge Notifications: Default -> hxxps://nul-55.1fr1.net
Edge StartupUrls: Default -> "hxxps://www.msn.com/fr-ca"

FireFox:
========
FF DefaultProfile: x5grnmjp.default
FF ProfilePath: C:\Users\Yoyo\AppData\Roaming\Mozilla\Firefox\Profiles\x5grnmjp.default [2021-02-07]
FF ProfilePath: C:\Users\Yoyo\AppData\Roaming\Mozilla\Firefox\Profiles\vbpopjqq.default-release [2021-02-09]
FF Homepage: Mozilla\Firefox\Profiles\vbpopjqq.default-release -> hxxps://www.msn.com/fr-ca
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Yoyo\AppData\Roaming\Mozilla\Firefox\Profiles\vbpopjqq.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-02-07]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2011-09-21] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2017-04-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-05-22] (AMD) [Fichier non signé]
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [43656 2020-12-04] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-10] (Malwarebytes Inc -> Malwarebytes)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [466224 2019-09-26] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [508208 2019-09-26] (Acer Incorporated -> Acer Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12835096 2021-01-28] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-09-13] (Acer Incorporated -> acer)
R3 VssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{210DBC0C-68F5-40CB-9D8F-2BDD49FE5A18} [21312 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 VssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{210DBC0C-68F5-40CB-9D8F-2BDD49FE5A18} [21312 2020-10-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1640240 2020-10-05] (WildTangent Inc -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [74296 2020-11-27] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 EUBAKUP0; C:\WINDOWS\system32\drivers\EUBAKUP0.sys [74296 2020-11-27] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [53304 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 EUBKMON0; C:\WINDOWS\system32\drivers\EUBKMON0.sys [53304 2020-09-29] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [22784 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [341760 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
S3 EUFDDISK0; C:\WINDOWS\system32\drivers\EUFDDISK0.sys [341760 2020-02-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [22320 2017-10-30] (Acer Incorporated -> Acer Incorporated)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-02] (Malwarebytes Inc -> Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [16688 2017-10-30] (Acer Incorporated -> Acer Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Trois mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-09 11:11 - 2021-02-09 11:13 - 000021345 _____ C:\Users\Yoyo\Desktop\FRST.txt
2021-02-09 11:02 - 2021-02-09 11:03 - 002297344 _____ (Farbar) C:\Users\Yoyo\Downloads\FRST64.exe
2021-02-09 09:12 - 2021-02-09 09:12 - 000025053 _____ C:\Users\Yoyo\Downloads\Shortcut.txt
2021-02-09 09:07 - 2021-02-09 09:12 - 000065545 _____ C:\Users\Yoyo\Downloads\Addition.txt
2021-02-09 08:55 - 2021-02-09 09:12 - 000046770 _____ C:\Users\Yoyo\Downloads\FRST.txt
2021-02-09 08:52 - 2021-02-09 11:12 - 000000000 ____D C:\FRST
2021-02-09 08:50 - 2021-02-09 08:50 - 002297344 _____ (Farbar) C:\Users\Yoyo\Desktop\FRST64.exe
2021-02-08 13:24 - 2021-02-08 13:24 - 000287751 _____ C:\Users\Yoyo\Desktop\ZHPDiag.txt
2021-02-08 13:11 - 2021-02-08 13:11 - 000000868 _____ C:\Users\Yoyo\Desktop\ZHPSuite.lnk
2021-02-08 13:11 - 2021-02-08 13:11 - 000000000 ____D C:\Users\Yoyo\AppData\Local\ZHP
2021-02-08 13:05 - 2021-02-08 13:06 - 003480712 _____ (Nicolas Coolman) C:\Users\Yoyo\Downloads\ZHPSuite.exe
2021-02-07 10:23 - 2021-02-07 10:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-07 09:16 - 2021-02-07 09:16 - 056619984 _____ (Mozilla) C:\Users\Yoyo\Downloads\Firefox Setup 85.0.1.exe
2021-02-07 08:59 - 2021-02-07 08:59 - 000090498 _____ C:\Users\Yoyo\Desktop\bookmarks-2021-02-07.json
2021-02-07 07:27 - 2021-02-09 07:12 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-02-06 08:26 - 2021-02-07 10:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-05 22:46 - 2021-02-05 22:46 - 000029546 _____ C:\Users\Yoyo\Documents\Lune en Maison X.odt
2021-02-05 10:42 - 2021-02-05 10:42 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-05 10:42 - 2021-02-05 10:42 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-05 10:42 - 2021-02-05 10:42 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-05 10:42 - 2021-02-05 10:42 - 000010908 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-05 10:40 - 2021-02-05 10:40 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-02 11:21 - 2021-02-02 11:21 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-31 20:58 - 2021-01-31 21:00 - 000000000 ____D C:\Users\Yoyo\Documents\Mars
2021-01-31 20:46 - 2021-01-31 20:48 - 000000000 ____D C:\Users\Yoyo\Documents\Jacques et Diane
2021-01-31 20:41 - 2021-01-31 20:42 - 000000000 ____D C:\Users\Yoyo\Documents\Notaire
2021-01-31 20:29 - 2021-01-31 20:32 - 000000000 ____D C:\Users\Yoyo\Documents\Prpgression
2021-01-31 20:25 - 2021-01-31 20:26 - 000000000 ____D C:\Users\Yoyo\Documents\Celi
2021-01-31 20:16 - 2021-01-31 20:21 - 000000000 ____D C:\Users\Yoyo\Documents\Astéroide
2021-01-15 23:29 - 2021-01-15 23:29 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-15 23:29 - 2021-01-15 23:29 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-15 23:29 - 2021-01-15 23:29 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-15 23:29 - 2021-01-15 23:29 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-15 23:29 - 2021-01-15 23:29 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-15 23:28 - 2021-01-15 23:28 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-15 23:28 - 2021-01-15 23:28 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-15 23:28 - 2021-01-15 23:28 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-15 23:28 - 2021-01-15 23:28 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-15 23:28 - 2021-01-15 23:28 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-15 23:28 - 2021-01-15 23:28 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-15 23:28 - 2021-01-15 23:28 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-15 23:28 - 2021-01-15 23:28 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-15 23:28 - 2021-01-15 23:28 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-15 23:27 - 2021-01-15 23:27 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-15 23:27 - 2021-01-15 23:27 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-15 23:27 - 2021-01-15 23:27 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-15 23:27 - 2021-01-15 23:27 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-15 23:27 - 2021-01-15 23:27 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-15 23:26 - 2021-01-15 23:26 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-15 23:26 - 2021-01-15 23:26 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-15 23:26 - 2021-01-15 23:26 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-15 23:26 - 2021-01-15 23:26 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-15 23:26 - 2021-01-15 23:26 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-15 23:26 - 2021-01-15 23:26 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-15 23:26 - 2021-01-15 23:26 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-15 23:25 - 2021-01-15 23:25 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-15 23:25 - 2021-01-15 23:25 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-15 23:25 - 2021-01-15 23:25 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-15 23:25 - 2021-01-15 23:25 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-15 23:25 - 2021-01-15 23:25 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-15 23:24 - 2021-01-15 23:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-15 23:24 - 2021-01-15 23:24 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-15 23:24 - 2021-01-15 23:24 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-15 23:23 - 2021-01-15 23:23 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-15 23:23 - 2021-01-15 23:23 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-15 23:23 - 2021-01-15 23:23 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-15 23:23 - 2021-01-15 23:23 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-15 23:22 - 2021-01-15 23:22 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-08 10:05 - 2021-01-08 10:05 - 000744576 _____ C:\Users\Yoyo\Documents\Reçu - avance de 500$ avocat.eml
2020-12-30 22:03 - 2020-12-30 22:03 - 000024363 _____ C:\Users\Yoyo\Documents\L'axe des portes.odt
2020-12-24 21:42 - 2021-01-09 13:01 - 000015158 _____ C:\Users\Yoyo\Documents\Degrés critiques.odt
2020-12-24 08:34 - 2020-12-24 08:34 - 001505848 _____ (Adobe) C:\Users\Yoyo\Downloads\uninstall_flash_player.exe
2020-12-17 22:25 - 2020-12-18 16:40 - 000023629 _____ C:\Users\Yoyo\Documents\Planètes hors Limites.odt
2020-12-16 07:55 - 2020-12-16 07:56 - 000000000 ____D C:\Users\Yoyo\Desktop\Cycle
2020-12-16 07:54 - 2020-12-16 07:55 - 000000000 ____D C:\Users\Yoyo\Desktop\Dan
2020-12-16 07:53 - 2020-12-16 07:54 - 000000000 ____D C:\Users\Yoyo\Desktop\Daniel
2020-12-14 23:47 - 2021-01-31 20:40 - 000026030 _____ C:\Users\Yoyo\Documents\RL Hors Planète 1.odt
2020-12-10 09:08 - 2020-12-10 09:07 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-12-10 08:43 - 2021-01-12 07:15 - 000000048 _____ C:\WINDOWS\SysWOW64\EUTB.TODI
2020-12-10 08:43 - 2020-11-27 10:33 - 000074296 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUBAKUP0.sys
2020-12-10 08:43 - 2020-09-29 11:04 - 000053304 _____ C:\WINDOWS\system32\Drivers\EUBKMON0.sys
2020-12-10 08:43 - 2020-02-24 13:05 - 000341760 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EUFDDISK0.sys
2020-12-10 08:40 - 2020-12-04 10:28 - 000028808 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\fbnative.exe
2020-12-10 08:37 - 2020-12-10 08:39 - 096365952 _____ (CHENGDU YIWO Tech Development Co., Ltd ) C:\Users\Yoyo\Downloads\TB_Free_easeus.exe
2020-12-10 08:36 - 2020-12-10 08:36 - 001980736 _____ C:\Users\Yoyo\Downloads\tb_free_installer.exe
2020-12-10 07:48 - 2020-12-10 07:48 - 030536752 _____ (Piriform Software Ltd) C:\Users\Yoyo\Downloads\ccsetup575.exe
2020-12-09 21:57 - 2020-12-09 21:59 - 000000000 ____D C:\Users\Yoyo\Desktop\Profections Perse
2020-12-09 13:13 - 2020-12-09 13:13 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-09 13:13 - 2020-12-09 13:13 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-09 13:12 - 2020-12-09 13:12 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-09 13:12 - 2020-12-09 13:12 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-09 13:12 - 2020-12-09 13:12 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 13:12 - 2020-12-09 13:12 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-09 13:12 - 2020-12-09 13:12 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-09 13:12 - 2020-12-09 13:12 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-09 13:12 - 2020-12-09 13:12 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-09 13:12 - 2020-12-09 13:12 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-09 13:12 - 2020-12-09 13:12 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-09 13:11 - 2020-12-09 13:11 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 13:11 - 2020-12-09 13:11 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-09 13:11 - 2020-12-09 13:11 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-09 13:11 - 2020-12-09 13:11 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-09 13:11 - 2020-12-09 13:11 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-11-18 12:06 - 2020-11-18 12:06 - 000055188 _____ C:\Users\Yoyo\Downloads\vousavezducourrier2.wav
2020-11-16 06:14 - 2020-11-19 15:20 - 000000000 ____D C:\WINDOWS\Minidump
2020-11-12 07:50 - 2020-11-12 07:50 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll

==================== Trois mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-09 11:15 - 2020-06-17 08:26 - 000003506 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2021-02-09 08:52 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\registration
2021-02-09 08:04 - 2018-12-26 01:12 - 000000000 ____D C:\Users\Yoyo\AppData\LocalLow\Mozilla
2021-02-09 07:32 - 2019-01-01 15:20 - 000000000 ____D C:\Program Files\CCleaner
2021-02-08 23:06 - 2020-11-10 15:02 - 000000000 ____D C:\Users\Yoyo\Desktop\Moi
2021-02-08 21:43 - 2020-06-17 07:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-08 13:24 - 2019-09-06 08:45 - 000000000 ____D C:\Users\Yoyo\AppData\Roaming\ZHP
2021-02-08 08:19 - 2020-06-17 08:26 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4000590256-866895084-3915349271-1001
2021-02-08 08:19 - 2020-06-17 07:59 - 000002364 _____ C:\Users\Yoyo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-08 08:19 - 2018-12-25 06:37 - 000000000 ___RD C:\Users\Yoyo\OneDrive
2021-02-07 20:33 - 2018-12-26 11:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-07 14:43 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-07 10:36 - 2020-07-18 10:17 - 000000000 ____D C:\Users\Yoyo\Documents\Yoyo et JC
2021-02-07 10:23 - 2018-12-26 01:11 - 000000000 ____D C:\Users\Yoyo\AppData\Roaming\Mozilla
2021-02-07 10:23 - 2018-12-26 01:11 - 000000000 ____D C:\Users\Yoyo\AppData\Local\Mozilla
2021-02-07 07:30 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-06 08:26 - 2018-06-12 21:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-05 17:54 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-05 17:47 - 2020-06-17 08:26 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-05 17:47 - 2020-06-17 08:26 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-05 12:19 - 2018-12-28 13:23 - 000000000 ____D C:\Users\Yoyo\AppData\Local\D3DSCache
2021-02-05 11:28 - 2020-06-17 08:10 - 001767554 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-05 11:28 - 2019-12-07 10:06 - 000789650 _____ C:\WINDOWS\system32\perfh00C.dat
2021-02-05 11:28 - 2019-12-07 10:06 - 000147688 _____ C:\WINDOWS\system32\perfc00C.dat
2021-02-05 11:23 - 2020-06-17 08:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-05 11:23 - 2020-06-17 07:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-05 11:22 - 2019-12-07 04:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-02-05 11:22 - 2018-06-12 21:04 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2021-02-05 11:11 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-05 11:01 - 2020-06-17 07:57 - 000294704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-05 10:57 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-05 10:56 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-05 10:56 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-05 10:13 - 2020-06-16 21:24 - 000000000 ___HD C:\$WinREAgent
2021-02-03 16:54 - 2019-01-29 19:38 - 000000000 ____D C:\Program Files (x86)\Garmin
2021-02-03 16:53 - 2020-06-17 08:26 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-01-31 21:04 - 2018-12-25 06:34 - 000000000 ____D C:\Users\Yoyo\AppData\Roaming\Adobe
2021-01-31 20:43 - 2019-03-09 13:08 - 000000000 ____D C:\Users\Yoyo\Documents\Jacques
2021-01-31 20:28 - 2020-06-23 09:00 - 000000000 ____D C:\Users\Yoyo\Documents\Les parts
2021-01-31 20:23 - 2020-06-16 18:38 - 000000000 ____D C:\Users\Yoyo\Documents\Honda
2021-01-30 17:28 - 2020-01-22 10:47 - 000004096 ___SH C:\{09F516AE-75A8-40CA-9726-BCE50065C111}.CBM
2021-01-30 16:57 - 2020-10-30 17:43 - 000000000 ____D C:\WINDOWS\system32\config\regsave
2021-01-30 16:57 - 2019-08-17 06:32 - 000410624 ___SH C:\EUMONBMP.SYS
2021-01-30 05:37 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-29 09:50 - 2018-12-25 06:34 - 000000000 ____D C:\Users\Yoyo\AppData\Local\Packages
2021-01-27 19:32 - 2020-06-17 08:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-22 06:52 - 2018-12-26 11:39 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-20 16:42 - 2020-09-26 06:34 - 000000000 ____D C:\Users\Yoyo\AppData\Local\CrashDumps
2021-01-20 16:22 - 2018-12-25 23:08 - 000000000 ____D C:\Users\Yoyo\AppData\Local\PlaceholderTileLogoFolder
2021-01-19 07:57 - 2019-01-15 16:13 - 000000000 ____D C:\Users\Yoyo\AppData\Roaming\vlc
2021-01-15 23:41 - 2019-12-07 10:09 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-15 23:41 - 2019-12-07 10:09 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-15 23:41 - 2019-12-07 04:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-15 23:22 - 2020-06-17 08:01 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-15 22:44 - 2018-12-25 23:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-15 22:41 - 2018-12-25 23:56 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 23:49 - 2020-06-17 07:59 - 000000000 ____D C:\Users\Yoyo
2021-01-13 12:40 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-01-13 12:40 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Macromed

==================== SigCheckExt =========================

2019-04-30 12:23 - 2011-10-02 23:55 - 000356864 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6PPM.DLL
2019-04-30 12:23 - 2011-10-02 23:55 - 000039424 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6UI.DLL
2017-01-27 17:01 - 2017-01-27 17:01 - 000322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2017-01-27 17:02 - 2017-01-27 17:02 - 000118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
2019-04-30 12:23 - 2011-10-02 23:55 - 000363520 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNMNPPM.DLL
2019-10-06 10:05 - 2007-08-25 16:11 - 000246784 ____S (DelphiZip) C:\WINDOWS\SysWOW64\DelZip179.dll
2019-10-06 10:05 - 2008-05-06 10:53 - 000217088 ____S C:\WINDOWS\SysWOW64\LPNG.DLL
2019-10-06 10:05 - 2009-04-07 09:17 - 000479232 ____S C:\WINDOWS\SysWOW64\SWEDLL32.DLL
2017-01-27 17:04 - 2017-01-27 17:04 - 000326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-27 17:05 - 2017-01-27 17:05 - 000103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2021-02-09 08:50 - 2021-02-09 08:50 - 002297344 _____ (Farbar) C:\Users\Yoyo\Desktop\FRST64.exe
2021-02-09 11:02 - 2021-02-09 11:03 - 002297344 _____ (Farbar) C:\Users\Yoyo\Downloads\FRST64.exe
2021-02-08 13:05 - 2021-02-08 13:06 - 003480712 _____ (Nicolas Coolman) C:\Users\Yoyo\Downloads\ZHPSuite.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


==================== BCD ================================

Gestionnaire de d�marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{f85e9eca-6eb2-11e8-aeb4-806e6f6e6963}
{f85e9ecb-6eb2-11e8-aeb4-806e6f6e6963}
{f85e9ecc-6eb2-11e8-aeb4-806e6f6e6963}
timeout 0

Gestionnaire de d�marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale fr-CA
inherit {globalsettings}
default {current}
resumeobject {3f6fe4e2-b0a2-11ea-ac1d-bf4486b51c9f}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Application logicielle (101fffff)
--------------------------------
identificateur {f85e9eca-6eb2-11e8-aeb4-806e6f6e6963}
description EFI USB Device

Application logicielle (101fffff)
--------------------------------
identificateur {f85e9ecb-6eb2-11e8-aeb4-806e6f6e6963}
description EFI DVD/CDROM

Application logicielle (101fffff)
--------------------------------
identificateur {f85e9ecc-6eb2-11e8-aeb4-806e6f6e6963}
description EFI Network

Chargeur de d�marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-CA
inherit {bootloadersettings}
recoverysequence {3f6fe4e4-b0a2-11ea-ac1d-bf4486b51c9f}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {3f6fe4e2-b0a2-11ea-ac1d-bf4486b51c9f}
nx OptIn
bootmenupolicy Standard

Chargeur de d�marrage Windows
-----------------------------
identificateur {3f6fe4e4-b0a2-11ea-ac1d-bf4486b51c9f}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{3f6fe4e5-b0a2-11ea-ac1d-bf4486b51c9f}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-CA
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{3f6fe4e5-b0a2-11ea-ac1d-bf4486b51c9f}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Reprendre � partir de la mise en veille prolong�e
-------------------------------------------------
identificateur {3f6fe4e2-b0a2-11ea-ac1d-bf4486b51c9f}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-CA
inherit {resumeloadersettings}
recoverysequence {3f6fe4e4-b0a2-11ea-ac1d-bf4486b51c9f}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Testeur de m�moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m�moire Windows
locale fr-CA
inherit {globalsettings}
badmemoryaccess Yes

Param�tres EMS
--------------
identificateur {emssettings}
bootems No

Param�tres du d�bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local

Erreurs de m�moire RAM
----------------------
identificateur {badmemory}

Param�tres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Param�tres du chargeur de d�marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Param�tres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Param�tres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p�riph�rique
-----------------------
identificateur {3f6fe4e5-b0a2-11ea-ac1d-bf4486b51c9f}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité