Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-04-2022 01
Exécuté par THIERRY BOZEK (administrateur) sur DESKTOP-JRHADBH (Dell Inc. XPS 8300) (14-04-2022 19:20:14)
Exécuté depuis C:\
Profils chargés: THIERRY BOZEK
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(explorer.exe ->) (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé] C:\Users\THIERRY BOZEK\AppData\Local\Clavier+\Clavier.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\updater-ws.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\ws.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.0.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [25600 2010-09-14] (Creative Technology Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [Clavier+] => C:\Users\THIERRY BOZEK\AppData\Local\Clavier+\Clavier.exe [171008 2020-06-07] (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé]
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [EPSDNMON] => "" (Pas de fichier)
HKLM\...\Print\Monitors\EPSON XP-432 435 Series 64MonitorBE: C:\Windows\system32\E_YLMBPDE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\Windows\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2021-06-16] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [120072 2021-06-15] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\100.0.4896.88\Installer\chrmstp.exe [2022-04-12] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02F11D89-5C08-4F3C-A2C8-ACF315BA2580} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {0ADD9232-CACE-4EB5-98AB-D07C9259A318} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BBE1484-CC94-46B3-9296-9CC37F414F72} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2588745117-1126958561-1175916365-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200320 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {2128790E-A261-47F4-880A-89A28D61EE85} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-13] (Google LLC -> Google LLC)
Task: {23D38EE1-1746-453A-B65A-36D05DA0E6B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2A7059DA-6B92-487B-A3F8-D2A8CB1EA1D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CBCD69D-7FA1-4F12-9064-91A38BF687B3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111512 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {403830F9-7D00-4E10-A77B-33782FBCCEF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {52642DF7-A037-4B0C-976D-68685C1DFC61} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {60C94EF4-FD92-4898-9B6E-54BDF43D094F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F0D70AC-9A22-4184-B1EB-E9CFFB89E28A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200320 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {70DC4C94-D325-42F8-A26A-312911EB212D} - System32\Tasks\EPSON XP-432 435 Series Update {AA3D639A-401E-4A96-BF72-496FFA660690} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {81CE59CA-0681-4A3C-8BE1-92F7E5305BE6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111512 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9779ECE4-B76D-4E13-9114-6603BFA215B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6513608 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9829B65A-7BC6-4C43-A048-C6EB68D14621} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {9B521518-5D2E-45A5-8C0D-65738B1DF9A7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9EF88199-0969-42B9-8E1B-07E778B577EC} - System32\Tasks\EPSON XP-432 435 Series Update {550F83F2-DCAE-4B49-99A5-2662833059C3} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {DD441A7D-E6C8-48A3-99C4-C95FEB31ABA0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6513608 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9AC235E-3765-415D-B34C-AEB318CCB869} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-13] (Google LLC -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-432 435 Series Update {550F83F2-DCAE-4B49-99A5-2662833059C3}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{550F83F2-DCAE-4B49-99A5-2662833059C3} /F:UpdateWORKGROUP\DESKTOP-JRHADBH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-432 435 Series Update {AA3D639A-401E-4A96-BF72-496FFA660690}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{AA3D639A-401E-4A96-BF72-496FFA660690} /F:UpdateWORKGROUP\DESKTOP-JRHADBH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{016416ef-6c1f-431a-a2b7-e692e5ba4c64}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{86fa55d9-8494-4bb9-8520-f5a5c975f049}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-09]
Edge Extension: (Outlook) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-06-14]
Edge Extension: (Word) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-06-14]
Edge Extension: (PowerPoint) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-06-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: cyicoty4.default
FF ProfilePath: C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\cyicoty4.default [2021-06-16]
FF ProfilePath: C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 [2022-04-14]
FF DownloadDir: D:\Desktop\Probleme PC
FF Homepage: Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 -> hxxps://www.orange.fr/portail
FF NewTabOverride: Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 -> Enabled: newtaboverride@agenedia.com
FF Extension: (AdBlocker Ultimate) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\adblockultimate@adblockultimate.net.xpi [2022-03-10]
FF Extension: (New Tab Override) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\newtaboverride@agenedia.com.xpi [2022-01-14]
FF Extension: (Classic Blue) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{065a1db8-6bba-4e1e-bcdc-d3dd53b68828}.xpi [2022-01-14]
FF Extension: (Hard Wood) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{1942c62a-4d35-4fb5-9b2c-8e663c88afcd}.xpi [2022-01-14]
FF Extension: (Dark space - The best dynamic theme) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{22b0eca1-8c02-4c0d-a5d7-6604ddd9836e}.xpi [2022-01-14]
FF Extension: (Colourful Spectrum) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{2365ada2-af27-463b-9830-071c51531043}.xpi [2022-01-14]
FF Extension: (Glossy night-silence) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{4c71163a-2b7a-48eb-8d02-c73598c75031}.xpi [2022-01-14]
FF Extension: (Blue Carbon Fiber) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{5ab03bdd-3d91-4c73-801e-607ca27458d0}.xpi [2022-01-14]
FF Extension: (Marijuana Leaves) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{5c5f5454-712a-44fb-8599-21e32277493c}.xpi [2022-01-14]
FF Extension: (DarkTheme) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{99c277af-d778-4a0b-9faa-b1d8165f0a55}.xpi [2022-01-16]
FF Extension: (Matte Black (Red)) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-24]
FF Extension: (Dark Brushed Metal CLASSIC) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{c7796181-405a-4261-91e7-abb790ac6c0a}.xpi [2022-04-11]
FF Extension: (Dark and Violet) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{f5e5ba3d-6fbd-41db-87af-f03b837fd16e}.xpi [2022-01-14]
FF HKLM\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 7 Creator) - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi [2019-10-02]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default [2022-04-14]
CHR Extension: (Slides) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-14]
CHR Extension: (uBlock Origin) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-04-08]
CHR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2022-04-03]
CHR Extension: (Sheets) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-14]
CHR Extension: (Streak CRM pour Gmail) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik [2021-06-15]
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-22]
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-22]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA Profile: C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-15]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-06-15]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-06-15]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-10]
BRA Extension: (Brave NTP sponsored images) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-10-10]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-10-10]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.055.0313.0001\FileSyncHelper.exe [3389824 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.055.0313.0001\OneDriveUpdaterService.exe [3867512 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
R3 PDF Architect 7; C:\Program Files\PDF Architect 7\ws.exe [2579752 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 7 Creator; C:\Program Files\PDF Architect 7\creator\common\creator-ws.exe [692008 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 7 Update Service; C:\Program Files\PDF Architect 7\updater-ws.exe [1832232 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AthDfu; C:\Windows\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [35696 2022-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-14 19:20 - 2022-04-14 19:20 - 000024305 _____ C:\FRST.txt
2022-04-14 19:19 - 2022-04-14 17:53 - 002365952 _____ (Farbar) C:\FRST64.exe
2022-04-14 18:02 - 2022-04-14 19:20 - 000000000 ____D C:\FRST
2022-04-13 09:19 - 2022-04-13 09:19 - 000000000 ___HD C:\$WinREAgent
2022-04-12 23:34 - 2022-04-13 09:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-04-12 22:31 - 2022-04-12 22:31 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-04-12 22:31 - 2022-04-12 22:31 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-04-07 12:29 - 2022-04-07 12:29 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-04-07 12:29 - 2022-04-07 12:29 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-30 18:44 - 2022-03-30 18:44 - 000000000 ____D C:\Program Files\dotnet
2022-03-22 04:35 - 2022-03-22 04:35 - 000035696 _____ (Dell) C:\Windows\system32\Drivers\DellInstrumentation.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-14 19:15 - 2021-06-14 13:10 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-14 18:53 - 2021-06-11 15:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-04-14 18:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-14 18:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-04-14 18:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-14 18:21 - 2021-06-14 17:44 - 000786702 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-14 18:21 - 2019-12-07 16:49 - 000791924 _____ C:\Windows\system32\perfh00C.dat
2022-04-14 18:21 - 2019-12-07 16:49 - 000004620 _____ C:\Windows\system32\perfc00C.dat
2022-04-14 18:21 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-04-14 18:18 - 2022-02-10 10:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-14 18:17 - 2021-06-15 15:56 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\LocalLow\Mozilla
2022-04-14 18:14 - 2021-06-11 15:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-14 18:14 - 2021-06-11 15:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-14 18:13 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-04-14 09:06 - 2021-06-15 18:22 - 000000000 ____D C:\ProgramData\Unified Remote
2022-04-13 23:42 - 2021-06-11 15:58 - 000000000 ____D C:\Users\THIERRY BOZEK
2022-04-13 16:36 - 2021-08-08 16:31 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\CrashDumps
2022-04-13 09:21 - 2021-10-06 15:36 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-13 09:21 - 2021-06-15 15:56 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-04-13 09:21 - 2021-06-15 15:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-04-13 09:19 - 2021-06-14 16:47 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-12 00:15 - 2021-10-13 10:18 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-10 18:52 - 2021-06-11 15:58 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\Packages
2022-04-10 09:30 - 2021-06-14 16:47 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-10 09:30 - 2021-06-14 16:47 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-09 09:56 - 2021-12-12 20:01 - 000459488 _____ C:\Windows\system32\FNTCACHE.DAT
2022-04-08 16:37 - 2021-06-22 14:12 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\D3DSCache
2022-04-08 13:50 - 2021-06-21 20:33 - 000000000 ____D C:\Program Files\Dell
2022-04-08 13:49 - 2021-06-21 20:33 - 000000000 ____D C:\ProgramData\Dell
2022-04-08 13:48 - 2022-03-10 18:28 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Roaming\Zoom
2022-04-08 09:29 - 2021-09-24 20:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-04-08 09:22 - 2021-06-11 15:50 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-04-06 09:12 - 2021-06-14 17:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-04-05 19:23 - 2021-06-15 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-04-04 11:07 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-03-30 19:46 - 2021-06-11 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2022-03-27 11:43 - 2021-12-13 17:56 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2588745117-1126958561-1175916365-1001
2022-03-27 10:38 - 2021-10-06 14:34 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\LocalLow\IGDump
2022-03-27 10:38 - 2021-10-06 14:29 - 000000000 ____D C:\Program Files\Malwarebytes
2022-03-27 10:38 - 2021-06-16 10:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 7
2022-03-27 10:38 - 2021-06-15 17:17 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\Clavier+
2022-03-27 10:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2022-03-27 10:35 - 2021-06-21 20:33 - 000000000 ____D C:\ProgramData\SupportAssist
2022-03-27 10:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration
2022-03-24 10:11 - 2021-06-11 15:58 - 000000000 ____D C:\ProgramData\Packages
2022-03-23 21:13 - 2021-06-14 17:36 - 000601432 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2022-03-23 21:12 - 2021-06-14 17:36 - 000483664 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
==================== Fichiers à la racine de certains dossiers ========
2021-08-08 12:54 - 2021-08-08 16:14 - 000016438 _____ () C:\Users\THIERRY BOZEK\AppData\Local\partner.bmp
2022-01-04 10:22 - 2022-01-04 10:22 - 000000000 _____ () C:\Users\THIERRY BOZEK\AppData\Local\{BE73157F-D976-4422-95EB-10375228D663}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
displaymessageoverride StartupRepair
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
nx OptIn
numproc 8
bootmenupolicy Standard
usefirmwarepcisettings No
Chargeur de d‚marrage Windows
-----------------------------
identificateur {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================
Exécuté par THIERRY BOZEK (administrateur) sur DESKTOP-JRHADBH (Dell Inc. XPS 8300) (14-04-2022 19:20:14)
Exécuté depuis C:\
Profils chargés: THIERRY BOZEK
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(explorer.exe ->) (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé] C:\Users\THIERRY BOZEK\AppData\Local\Clavier+\Clavier.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\updater-ws.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\ws.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.5.0.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\THXCfg64.dll [25600 2010-09-14] (Creative Technology Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [Clavier+] => C:\Users\THIERRY BOZEK\AppData\Local\Clavier+\Clavier.exe [171008 2020-06-07] (Guillaume Ryder (hxxp://utilfr42.free.fr)) [Fichier non signé]
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3186264 2019-08-04] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-2588745117-1126958561-1175916365-1001\...\Run: [EPSDNMON] => "" (Pas de fichier)
HKLM\...\Print\Monitors\EPSON XP-432 435 Series 64MonitorBE: C:\Windows\system32\E_YLMBPDE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\Windows\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2021-06-16] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [120072 2021-06-15] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\100.0.4896.88\Installer\chrmstp.exe [2022-04-12] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02F11D89-5C08-4F3C-A2C8-ACF315BA2580} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {0ADD9232-CACE-4EB5-98AB-D07C9259A318} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22865832 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BBE1484-CC94-46B3-9296-9CC37F414F72} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2588745117-1126958561-1175916365-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200320 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {2128790E-A261-47F4-880A-89A28D61EE85} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-13] (Google LLC -> Google LLC)
Task: {23D38EE1-1746-453A-B65A-36D05DA0E6B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2A7059DA-6B92-487B-A3F8-D2A8CB1EA1D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2CBCD69D-7FA1-4F12-9064-91A38BF687B3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111512 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {403830F9-7D00-4E10-A77B-33782FBCCEF1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {52642DF7-A037-4B0C-976D-68685C1DFC61} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {60C94EF4-FD92-4898-9B6E-54BDF43D094F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6F0D70AC-9A22-4184-B1EB-E9CFFB89E28A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4200320 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {70DC4C94-D325-42F8-A26A-312911EB212D} - System32\Tasks\EPSON XP-432 435 Series Update {AA3D639A-401E-4A96-BF72-496FFA660690} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {81CE59CA-0681-4A3C-8BE1-92F7E5305BE6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111512 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9779ECE4-B76D-4E13-9114-6603BFA215B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6513608 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9829B65A-7BC6-4C43-A048-C6EB68D14621} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {9B521518-5D2E-45A5-8C0D-65738B1DF9A7} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {9EF88199-0969-42B9-8E1B-07E778B577EC} - System32\Tasks\EPSON XP-432 435 Series Update {550F83F2-DCAE-4B49-99A5-2662833059C3} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {DD441A7D-E6C8-48A3-99C4-C95FEB31ABA0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6513608 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {F9AC235E-3765-415D-B34C-AEB318CCB869} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-13] (Google LLC -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-432 435 Series Update {550F83F2-DCAE-4B49-99A5-2662833059C3}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{550F83F2-DCAE-4B49-99A5-2662833059C3} /F:UpdateWORKGROUP\DESKTOP-JRHADBH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-432 435 Series Update {AA3D639A-401E-4A96-BF72-496FFA660690}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{AA3D639A-401E-4A96-BF72-496FFA660690} /F:UpdateWORKGROUP\DESKTOP-JRHADBH$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{016416ef-6c1f-431a-a2b7-e692e5ba4c64}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{86fa55d9-8494-4bb9-8520-f5a5c975f049}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-09]
Edge Extension: (Outlook) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-06-14]
Edge Extension: (Word) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-06-14]
Edge Extension: (PowerPoint) - C:\Users\THIERRY BOZEK\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-06-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: cyicoty4.default
FF ProfilePath: C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\cyicoty4.default [2021-06-16]
FF ProfilePath: C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 [2022-04-14]
FF DownloadDir: D:\Desktop\Probleme PC
FF Homepage: Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 -> hxxps://www.orange.fr/portail
FF NewTabOverride: Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859 -> Enabled: newtaboverride@agenedia.com
FF Extension: (AdBlocker Ultimate) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\adblockultimate@adblockultimate.net.xpi [2022-03-10]
FF Extension: (New Tab Override) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\newtaboverride@agenedia.com.xpi [2022-01-14]
FF Extension: (Classic Blue) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{065a1db8-6bba-4e1e-bcdc-d3dd53b68828}.xpi [2022-01-14]
FF Extension: (Hard Wood) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{1942c62a-4d35-4fb5-9b2c-8e663c88afcd}.xpi [2022-01-14]
FF Extension: (Dark space - The best dynamic theme) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{22b0eca1-8c02-4c0d-a5d7-6604ddd9836e}.xpi [2022-01-14]
FF Extension: (Colourful Spectrum) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{2365ada2-af27-463b-9830-071c51531043}.xpi [2022-01-14]
FF Extension: (Glossy night-silence) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{4c71163a-2b7a-48eb-8d02-c73598c75031}.xpi [2022-01-14]
FF Extension: (Blue Carbon Fiber) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{5ab03bdd-3d91-4c73-801e-607ca27458d0}.xpi [2022-01-14]
FF Extension: (Marijuana Leaves) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{5c5f5454-712a-44fb-8599-21e32277493c}.xpi [2022-01-14]
FF Extension: (DarkTheme) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{99c277af-d778-4a0b-9faa-b1d8165f0a55}.xpi [2022-01-16]
FF Extension: (Matte Black (Red)) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-24]
FF Extension: (Dark Brushed Metal CLASSIC) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{c7796181-405a-4261-91e7-abb790ac6c0a}.xpi [2022-04-11]
FF Extension: (Dark and Violet) - C:\Users\THIERRY BOZEK\AppData\Roaming\Mozilla\Firefox\Profiles\uxcdp056.default-release-1642154160859\Extensions\{f5e5ba3d-6fbd-41db-87af-f03b837fd16e}.xpi [2022-01-14]
FF HKLM\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Extension: (PDF Architect 7 Creator) - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi [2019-10-02]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_7_conv_v.2@pdfforge.org] - C:\Program Files\PDF Architect 7\creator\plugins\FirefoxAddin\pdf_architect_7_conv_v.2@pdfforge.org.xpi
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-06] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default [2022-04-14]
CHR Extension: (Slides) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-14]
CHR Extension: (uBlock Origin) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-04-08]
CHR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2022-04-03]
CHR Extension: (Sheets) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-14]
CHR Extension: (Streak CRM pour Gmail) - C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik [2021-06-15]
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-22]
CHR Profile: C:\Users\THIERRY BOZEK\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-22]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA Profile: C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-06-15]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-06-15]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-06-15]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-10]
BRA Extension: (Brave NTP sponsored images) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-10-10]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\THIERRY BOZEK\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-10-10]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11666384 2022-04-05] (Microsoft Corporation -> Microsoft Corporation)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.055.0313.0001\FileSyncHelper.exe [3389824 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.055.0313.0001\OneDriveUpdaterService.exe [3867512 2022-04-07] (Microsoft Corporation -> Microsoft Corporation)
R3 PDF Architect 7; C:\Program Files\PDF Architect 7\ws.exe [2579752 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 7 Creator; C:\Program Files\PDF Architect 7\creator\common\creator-ws.exe [692008 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 7 Update Service; C:\Program Files\PDF Architect 7\updater-ws.exe [1832232 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvak.inf_amd64_a1ae244dd2e4b40a\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AthDfu; C:\Windows\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
S3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies)
S3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [35696 2022-03-22] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49600 2022-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [443664 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-08] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-14 19:20 - 2022-04-14 19:20 - 000024305 _____ C:\FRST.txt
2022-04-14 19:19 - 2022-04-14 17:53 - 002365952 _____ (Farbar) C:\FRST64.exe
2022-04-14 18:02 - 2022-04-14 19:20 - 000000000 ____D C:\FRST
2022-04-13 09:19 - 2022-04-13 09:19 - 000000000 ___HD C:\$WinREAgent
2022-04-12 23:34 - 2022-04-13 09:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-04-12 22:31 - 2022-04-12 22:31 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-04-12 22:31 - 2022-04-12 22:31 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-04-07 12:29 - 2022-04-07 12:29 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-04-07 12:29 - 2022-04-07 12:29 - 000002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-03-30 18:44 - 2022-03-30 18:44 - 000000000 ____D C:\Program Files\dotnet
2022-03-22 04:35 - 2022-03-22 04:35 - 000035696 _____ (Dell) C:\Windows\system32\Drivers\DellInstrumentation.sys
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-14 19:15 - 2021-06-14 13:10 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-14 18:53 - 2021-06-11 15:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-04-14 18:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-14 18:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-04-14 18:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-14 18:21 - 2021-06-14 17:44 - 000786702 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-14 18:21 - 2019-12-07 16:49 - 000791924 _____ C:\Windows\system32\perfh00C.dat
2022-04-14 18:21 - 2019-12-07 16:49 - 000004620 _____ C:\Windows\system32\perfc00C.dat
2022-04-14 18:21 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-04-14 18:18 - 2022-02-10 10:14 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-14 18:17 - 2021-06-15 15:56 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\LocalLow\Mozilla
2022-04-14 18:14 - 2021-06-11 15:50 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-14 18:14 - 2021-06-11 15:50 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-14 18:13 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-04-14 09:06 - 2021-06-15 18:22 - 000000000 ____D C:\ProgramData\Unified Remote
2022-04-13 23:42 - 2021-06-11 15:58 - 000000000 ____D C:\Users\THIERRY BOZEK
2022-04-13 16:36 - 2021-08-08 16:31 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\CrashDumps
2022-04-13 09:21 - 2021-10-06 15:36 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2022-04-13 09:21 - 2021-06-15 15:56 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-04-13 09:21 - 2021-06-15 15:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-04-13 09:19 - 2021-06-14 16:47 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-12 00:15 - 2021-10-13 10:18 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-04-10 18:52 - 2021-06-11 15:58 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\Packages
2022-04-10 09:30 - 2021-06-14 16:47 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-04-10 09:30 - 2021-06-14 16:47 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-04-09 09:56 - 2021-12-12 20:01 - 000459488 _____ C:\Windows\system32\FNTCACHE.DAT
2022-04-08 16:37 - 2021-06-22 14:12 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\D3DSCache
2022-04-08 13:50 - 2021-06-21 20:33 - 000000000 ____D C:\Program Files\Dell
2022-04-08 13:49 - 2021-06-21 20:33 - 000000000 ____D C:\ProgramData\Dell
2022-04-08 13:48 - 2022-03-10 18:28 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Roaming\Zoom
2022-04-08 09:29 - 2021-09-24 20:59 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-04-08 09:22 - 2021-06-11 15:50 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-04-06 09:12 - 2021-06-14 17:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-04-05 19:23 - 2021-06-15 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2022-04-04 11:07 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-03-30 19:46 - 2021-06-11 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2022-03-27 11:43 - 2021-12-13 17:56 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2588745117-1126958561-1175916365-1001
2022-03-27 10:38 - 2021-10-06 14:34 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\LocalLow\IGDump
2022-03-27 10:38 - 2021-10-06 14:29 - 000000000 ____D C:\Program Files\Malwarebytes
2022-03-27 10:38 - 2021-06-16 10:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 7
2022-03-27 10:38 - 2021-06-15 17:17 - 000000000 ____D C:\Users\THIERRY BOZEK\AppData\Local\Clavier+
2022-03-27 10:38 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2022-03-27 10:35 - 2021-06-21 20:33 - 000000000 ____D C:\ProgramData\SupportAssist
2022-03-27 10:35 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration
2022-03-24 10:11 - 2021-06-11 15:58 - 000000000 ____D C:\ProgramData\Packages
2022-03-23 21:13 - 2021-06-14 17:36 - 000601432 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2022-03-23 21:12 - 2021-06-14 17:36 - 000483664 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
==================== Fichiers à la racine de certains dossiers ========
2021-08-08 12:54 - 2021-08-08 16:14 - 000016438 _____ () C:\Users\THIERRY BOZEK\AppData\Local\partner.bmp
2022-01-04 10:22 - 2022-01-04 10:22 - 000000000 _____ () C:\Users\THIERRY BOZEK\AppData\Local\{BE73157F-D976-4422-95EB-10375228D663}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== BCD ================================
Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
displaymessageoverride StartupRepair
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
nx OptIn
numproc 8
bootmenupolicy Standard
usefirmwarepcisettings No
Chargeur de d‚marrage Windows
-----------------------------
identificateur {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
device ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-fr
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume3]\Recovery\WindowsRE\Winre.wim,{3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {3d7b75a7-cac4-11eb-abd4-e84e29afc3e5}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {3d7b75a9-cac4-11eb-abd4-e84e29afc3e5}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes
ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No
ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Local
Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}
ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}
Options de p‚riph‚rique
-----------------------
identificateur {3d7b75aa-cac4-11eb-abd4-e84e29afc3e5}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume3
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Fin de FRST.txt ========================