Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2020 Exécuté par daniel (administrateur) sur PC (Packard Bell oneTwo S3270) (08-12-2020 23:27:09) Exécuté depuis C:\Users\daniel\Desktop Profils chargés: daniel Platform: Windows 10 Home Version 1803 17134.1130 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7> (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13664984 2014-01-08] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [40576 2013-08-29] (Creative Technology Ltd -> Creative Technology Ltd.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) HKLM\...\Run: [DataCollectionAgentController] => C:\Program Files\EPSON\Epson Data Collection Agent\DataCollectionAgentController.exe [394904 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd) [Fichier non signé] HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Fichier non signé] HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [62208 2014-10-17] (Acer Incorporated -> Acer Incorporated) HKLM-x32\...\Run: [AgentMonitor] => C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [317824 2016-01-18] (VTech Electronics North America, LLC -> ) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-05-30] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2121472 2014-09-30] (Acer Incorporated -> ) HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Fichier non signé] HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWDE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-686708046-2947712787-74878262-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31019504 2020-07-31] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\Windows\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series XPS: C:\Windows\system32\CNMXLMBU.DLL [394240 2013-04-04] (CANON INC.) [Fichier non signé] HKLM\...\Print\Monitors\CUSTPDF Writer Monitor x86: C:\Windows\system32\custmon64i.dll [87552 2011-10-04] () [Fichier non signé] HKLM\...\Print\Monitors\EPSON XP-4100 Series 64MonitorBE: C:\Windows\system32\E_YLMBWDE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2013-12-24] (Qualcomm Atheros -> Qualcomm®Atheros®) [Fichier non signé] GroupPolicy-x32: Restriction ? <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {24C030B6-BE83-4E75-AFBE-1DB7CA20F2CC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3BB3C11D-5B98-4BA5-804D-4B898F09A679} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {41E3EB5B-67D1-4AC3-A29E-0E22DD4E7EA5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {57807EA2-DF0A-4CFF-A2A9-F910A111D495} - System32\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {6B2400F9-5F5B-4C55-83F5-943FE601B517} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-07-31] (Garmin International, Inc. -> ) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {7776880F-E003-4986-BFDB-3532FD60340C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7BDB19C3-4999-41DB-BF26-7140D08B1EBE} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [527616 2013-12-30] (Acer Incorporated -> Acer Incorporated) Task: {8308225D-1CB8-4BD3-B8D5-F70AC4A0EC01} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-06-03] (Adobe Inc. -> Adobe) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8D597158-A9E2-49B9-B088-695E8EBF5BD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {8DC9F483-2000-45C8-A12F-DEAE25C15E65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe) Task: {9129E378-881F-47FF-A7AB-631696775A07} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {92EA9D84-AF7B-43F0-847C-71879DD15DF8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {950A771E-7FAE-4275-BBC9-FA80C38178F7} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4150312 2013-07-08] (Acer Incorporated -> ) Task: {AD57DCBE-8524-419E-A56D-B2039CEFEBE1} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2621696 2014-10-20] (Acer Incorporated -> Acer) Task: {B71F83A0-C91C-4750-85C0-0EA399D3FF6B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe Task: {BD374051-085E-4DC7-836C-B226AF78AD3F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-09-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D38CB5E5-EB17-41F6-AC2C-E4FF6803B37C} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [490728 2014-03-18] (Acer Incorporated -> Acer Incorporated) Task: {D5BEBC9E-AA9D-4096-B0CC-C898C3D02ACC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {D64DBDAF-E909-4D39-844E-686878C64543} - System32\Tasks\UbtFrameworkService => C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-01-24] (Acer Incorporated -> TODO: ) Task: {DB2D8FA6-3B7E-40C4-B24B-4DBD61D02DC9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EAAB1402-49F6-4225-9CA2-5DA4E6875375} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-danielaurelia27@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) Task: {F8CF05A0-DC24-4810-993C-95AC829EE6C6} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008 2013-01-22] (Acer Incorporated -> ) Task: {F92EF823-8F5C-4DAE-A899-5D9E51F43D1A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-4100 Series Update {490FAC8B-D318-44CD-95B4-DAAE0D34AD1D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWDE.EXE:/EXE:{490FAC8B-D318-44CD-95B4-DAAE0D34AD1D} /F:UpdateWORKGROUP\PC$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{138825b6-a1bd-4dc4-8dc8-8b2522ceb672}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{40efad67-0b91-4b18-ac5e-ee36eea47732}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b5166298-e896-4d7c-aeed-f212278d23e1}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fbb17643-ce8a-4f1a-b6ed-bc44d024235e}: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF DefaultProfile: 4u1lipja.default FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\lq97jtae.default-release [2020-12-08] FF Homepage: Mozilla\Firefox\Profiles\lq97jtae.default-release -> hxxps://portail.free.fr/ FF ProfilePath: C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default [2020-12-08] FF Homepage: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxp://portail.free.fr/ FF Notifications: Mozilla\Firefox\Profiles\4u1lipja.default -> hxxps://www.bienici.com; hxxps://www.argentdubeurre.com; hxxps://www.mercotte.fr; hxxps://fr.reimageplus.com; hxxps://ericpineau.pushcrew.com; hxxps://games.softgames.com; hxxps://thebrickarmory.com FF HomepageOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _65Members_@download.fromdoctopdf.com FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Disabled: _j5Members_@ext.ask.com FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: wikipedia@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: qwant@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ebay@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: ddg@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: amazon@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: bing@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: google@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\4u1lipja.default -> Enabled: _j5Members_@ext.ask.com FF Extension: (Esiliq Diaporama skyline-ville) - C:\Users\daniel\AppData\Roaming\Mozilla\Firefox\Profiles\4u1lipja.default\Extensions\application@fr-esiliq.com.xpi [2018-07-02] [UpdateUrl:hxxps://data1.esiliq.com/partners/files/iti-maps/update_firefox_exts_esiliq.json] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-06-03] (Adobe Inc. -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [Pas de fichier] FF Plugin HKU\S-1-5-21-686708046-2947712787-74878262-1001: sony.com/MediaGoDetector -> C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll [2015-05-29] (Sony Network Entertainment International LLC) [Fichier non signé] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\daniel\AppData\Local\Google\Chrome\User Data\System Profile [2019-11-18] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2017-09-22] (Advanced Micro Devices, Inc. -> ) R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-03] (Adobe Inc. -> Adobe) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S4 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3096832 2014-10-17] (Acer Incorporated -> Acer Incorporated) R2 DCAgent; C:\Program Files\EPSON\Epson Data Collection Agent\DCAgent.exe [16536 2020-03-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 EDUSBAgent; C:\Program Files\EPSON\Epson Device USB Agent\EDUSBAgent.exe [17840 2019-12-03] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Fichier non signé] S4 UEIPSvc; C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-24] (Acer Incorporated -> acer) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.) R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation) S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2015-01-13] (Sony Mobile Communications AB -> Sony Mobile Communications) S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2014-11-20] (SurfRight B.V. -> ) S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net) R1 MpKsl9e307c64; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{965AAA86-FA61-4BE7-9F02-EDE86EB07B29}\MpKsl9e307c64.sys [47328 2020-12-04] (Microsoft Windows -> Microsoft Corporation) S3 PVUSB; C:\WINDOWS\System32\drivers\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD. -> CASIO COMPUTER CO.,LTD.) R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [337920 2017-05-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [38504 2014-03-26] (Realtek Semiconductor Corp -> Windows (R) Codename Longhorn DDK provider) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-08 23:27 - 2020-12-08 23:31 - 000022530 _____ C:\Users\daniel\Desktop\FRST.txt 2020-12-08 23:18 - 2020-12-08 23:18 - 000000000 ____D C:\Users\daniel\Desktop\FRST-OlderVersion 2020-12-08 23:17 - 2020-12-08 23:17 - 000010701 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).html 2020-12-08 23:17 - 2020-12-08 23:17 - 000003812 _____ C:\Users\daniel\Desktop\ZHPCleaner (R).txt 2020-12-08 23:08 - 2020-12-08 23:08 - 000010397 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).html 2020-12-08 23:08 - 2020-12-08 23:08 - 000003619 _____ C:\Users\daniel\Desktop\ZHPCleaner (S).txt 2020-12-08 10:43 - 2020-12-08 10:43 - 000001017 _____ C:\Users\daniel\Desktop\Firefox.lnk 2020-12-08 06:55 - 2020-12-08 08:18 - 000000000 ___HD C:\$WINDOWS.~BT 2020-12-07 11:22 - 2020-12-08 06:42 - 000000036 _____ C:\WINDOWS\progress.ini 2020-12-07 07:07 - 2020-12-08 08:59 - 000000000 ___HD C:\$GetCurrent 2020-12-07 06:20 - 2020-12-07 11:19 - 000000000 ____D C:\Windows10Upgrade 2020-12-07 06:20 - 2020-12-07 06:20 - 000000743 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assistant Mise à jour de Windows 10.lnk 2020-12-07 06:20 - 2020-12-07 06:20 - 000000731 _____ C:\Users\daniel\Desktop\Assistant Mise à jour de Windows 10.lnk 2020-12-06 08:09 - 2020-12-08 21:45 - 000000920 _____ C:\Users\daniel\Desktop\ZHPCleaner.lnk 2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe 2020-12-05 11:21 - 2020-12-05 11:21 - 000020527 _____ C:\Users\daniel\Desktop\devis_desroles_Fevrier2020.pdf 2020-12-05 08:13 - 2020-12-08 23:29 - 000000000 ____D C:\FRST 2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe 2020-12-05 07:20 - 2020-12-08 23:17 - 000000000 ____D C:\Users\daniel\AppData\Roaming\ZHP 2020-12-05 07:20 - 2020-12-05 07:20 - 000000910 _____ C:\Users\daniel\Desktop\ZHPSuite.lnk 2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe 2020-11-07 11:28 - 2020-11-07 11:28 - 000016380 _____ C:\Users\daniel\Desktop\Calendrier 2021 Cross calorg.PDF 2020-11-07 11:26 - 2020-11-07 11:26 - 000056972 _____ C:\Users\daniel\Desktop\Calendrier 2021 Running calorg.PDF 2020-10-07 09:21 - 2020-10-07 09:22 - 000080419 _____ C:\Users\daniel\Downloads\couponODR_FRAIS_DE_RESILIATION_Fixe_18080001.pdf 2020-10-07 09:02 - 2020-10-07 09:03 - 000026096 _____ C:\Users\daniel\Desktop\Facture_Free_202010_24173674_975929357.pdf 2020-10-04 09:22 - 2020-10-04 09:23 - 001167084 _____ C:\Users\daniel\Downloads\formulaire CE Desroles Illan.pdf 2020-09-30 14:30 - 2020-09-30 14:30 - 000122471 _____ C:\Users\daniel\Desktop\certificat medical illan.pdf 2020-09-30 14:29 - 2020-09-30 14:29 - 000122471 _____ C:\Users\daniel\Documents\img20200930_15292444.pdf 2020-09-29 05:29 - 2020-09-29 05:29 - 000155782 _____ C:\Users\daniel\Desktop\votre autorisation de prélèvement.pdf 2020-09-14 15:22 - 2020-09-14 15:22 - 000343260 _____ C:\Users\daniel\Downloads\ResilLigne-Free_24173674.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-12-08 23:26 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-12-08 23:20 - 2014-09-28 14:12 - 000000000 ____D C:\ProgramData\Mozilla 2020-12-08 23:18 - 2016-11-16 13:29 - 000000000 ____D C:\Users\daniel\AppData\LocalLow\Mozilla 2020-12-08 23:15 - 2018-05-27 09:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-12-08 21:16 - 2018-05-27 09:55 - 000004148 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{22269D1B-39EF-4546-8AF1-75BE309BBA15} 2020-12-08 10:55 - 2018-09-26 12:11 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-12-08 10:54 - 2020-01-11 06:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-12-08 10:54 - 2018-04-29 03:57 - 000001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-12-08 10:39 - 2018-04-29 03:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-12-08 10:36 - 2017-03-15 19:48 - 000000000 ___RD C:\Program Files (x86)\Skype 2020-12-08 10:36 - 2015-03-13 08:14 - 000000000 ____D C:\ProgramData\Skype 2020-12-08 10:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-12-08 10:32 - 2017-12-14 12:57 - 000000000 ____D C:\Users\daniel\AppData\Local\Packages 2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagwrn.xml 2020-12-08 08:59 - 2018-05-27 09:52 - 000001908 _____ C:\WINDOWS\diagerr.xml 2020-12-08 08:59 - 2014-09-28 14:04 - 000000000 ____D C:\Users\daniel\AppData\Local\CrashDumps 2020-12-08 07:48 - 2018-05-24 02:03 - 000000000 ___DC C:\WINDOWS\Panther 2020-12-07 13:15 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF 2020-12-07 12:57 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-12-07 12:35 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\registration 2020-12-07 07:05 - 2017-06-20 14:03 - 000028970 _____ C:\Users\daniel\Desktop\Classeur1.xlsx 2020-12-07 06:18 - 2014-10-24 19:01 - 000000000 ___HD C:\ProgramData\CanonIJScan 2020-12-07 06:18 - 2014-10-22 20:53 - 000000000 ____D C:\Users\daniel\AppData\Roaming\Canon 2020-12-07 06:17 - 2014-10-22 20:44 - 000000000 ____D C:\Program Files\Canon 2020-12-07 06:17 - 2014-10-22 17:43 - 000000000 ____D C:\Program Files (x86)\Canon 2020-12-06 12:41 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2020-12-05 07:20 - 2017-07-02 07:40 - 000000000 ____D C:\Users\daniel\AppData\Local\ZHP 2020-12-04 08:31 - 2018-05-27 09:35 - 001766594 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-12-04 08:31 - 2018-04-12 17:18 - 000789954 _____ C:\WINDOWS\system32\perfh00C.dat 2020-12-04 08:31 - 2018-04-12 17:18 - 000149486 _____ C:\WINDOWS\system32\perfc00C.dat 2020-12-04 08:24 - 2018-05-27 09:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-12-04 04:10 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-12-04 04:10 - 2017-07-23 08:49 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2020-12-04 03:22 - 2018-05-27 09:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-12-04 03:22 - 2018-05-27 09:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-11-26 08:14 - 2017-11-14 07:39 - 000000000 ____D C:\Users\daniel\Desktop\10bornes de conches 2020-11-18 17:21 - 2018-07-29 10:06 - 000000000 ____D C:\Users\daniel\AppData\Local\Garmin 2020-11-13 08:28 - 2018-06-23 07:55 - 000000000 ____D C:\WINDOWS\Minidump 2020-11-13 08:01 - 2018-05-27 09:18 - 000000000 ____D C:\Users\daniel ==================== Fichiers à la racine de certains dossiers ======== 2014-09-30 18:13 - 2014-09-30 18:13 - 000000042 _____ () C:\Users\daniel\AppData\Roaming\WB.CFG 2014-09-30 12:21 - 2014-09-30 12:21 - 000000017 _____ () C:\Users\daniel\AppData\Local\resmon.resmoncfg ==================== SigCheckExt ========================= 2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2014-05-30 10:42 - 2012-11-01 10:21 - 000325120 _____ C:\WINDOWS\system32\APOMgr64.DLL 2013-12-24 01:26 - 2013-12-24 01:26 - 000362112 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\AthCredentialProvider.dll 2016-07-13 11:53 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2014-05-30 10:42 - 2012-11-01 10:23 - 000089600 _____ C:\WINDOWS\system32\CmdRtr64.DLL 2018-05-27 09:27 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll 2014-10-22 20:51 - 2013-04-04 04:00 - 000394240 _____ (CANON INC.) C:\WINDOWS\system32\CNMXLMBU.DLL 2014-09-30 07:29 - 2011-10-04 21:43 - 000087552 _____ C:\WINDOWS\system32\custmon64i.dll 2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-13 07:14 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2015-03-12 07:38 - 2014-10-29 02:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2015-03-12 07:48 - 2014-10-29 02:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2017-05-11 19:40 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2013-12-06 15:49 - 2013-12-06 15:49 - 000051200 _____ C:\WINDOWS\system32\kdbsdk64.dll 2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2015-09-09 08:54 - 2015-07-22 15:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2015-04-14 20:13 - 2015-03-14 02:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2016-09-30 06:50 - 2008-12-11 11:40 - 000176128 _____ (Euro Information) C:\WINDOWS\calceuro.exe 2014-05-30 10:42 - 2000-05-11 00:00 - 000090112 _____ (Creative Technology Ltd.) C:\WINDOWS\Updreg.EXE 2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2014-05-30 10:42 - 2012-11-01 10:19 - 000246272 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL 2014-05-30 10:42 - 2012-11-01 10:22 - 000074240 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL 2016-09-30 06:50 - 2004-07-19 16:29 - 000102400 _____ (Euro Information) C:\WINDOWS\SysWOW64\CmutEuro32.dll 2014-10-24 18:56 - 2008-08-25 17:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll 2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2017-03-15 18:08 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2013-12-06 15:44 - 2013-12-06 15:44 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll 2015-10-30 08:19 - 2016-09-14 11:54 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 08:19 - 2016-09-14 11:54 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2015-05-29 15:50 - 2015-05-29 15:50 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2015-05-29 15:50 - 2015-05-29 15:50 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2015-05-29 15:50 - 2015-05-29 15:50 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2006-10-26 12:45 - 2006-10-26 12:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE 2020-12-05 08:11 - 2020-12-08 23:18 - 002288640 _____ (Farbar) C:\Users\daniel\Desktop\FRST64.exe 2019-10-28 09:18 - 2019-10-28 09:18 - 001808233 _____ C:\Users\daniel\Desktop\pf-setup-fr-653.exe 2020-12-06 08:07 - 2020-12-06 08:07 - 003339136 _____ (Nicolas Coolman) C:\Users\daniel\Desktop\ZHPCleaner.exe 2016-11-09 11:32 - 2016-11-09 11:33 - 001376137 _____ (Greenshot ) C:\Users\daniel\Downloads\Greenshot-INSTALLER-1.2.8.14-RELEASE.exe 2017-03-08 21:22 - 2017-03-08 21:22 - 008490419 _____ C:\Users\daniel\Downloads\JavaPlugin.exe 2017-05-10 15:18 - 2017-05-10 15:18 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(1).exe 2017-05-11 19:34 - 2017-05-11 19:35 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install(2).exe 2017-05-10 15:16 - 2017-05-10 15:16 - 001076089 _____ C:\Users\daniel\Downloads\OELauncher_Install.exe 2016-11-09 11:28 - 2016-11-09 11:28 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1(1).exe 2016-10-23 10:56 - 2016-11-05 19:25 - 005202180 _____ C:\Users\daniel\Downloads\pf7-setup-fr-7.2.1.exe 2016-11-10 12:43 - 2016-11-10 12:44 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0(1).exe 2016-10-24 14:09 - 2016-10-24 14:11 - 011123536 _____ C:\Users\daniel\Downloads\pfsx-setup-fr-10.11.0.exe 2020-01-08 06:00 - 2020-01-08 06:00 - 007460173 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap-pro440f-fr.exe 2018-03-07 08:57 - 2018-03-07 08:57 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr(1).exe 2018-01-15 17:23 - 2018-01-15 17:23 - 003651754 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400j-fr.exe 2019-06-21 12:05 - 2019-06-21 12:05 - 003712350 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap400k-fr.exe 2020-01-08 06:05 - 2020-01-08 06:05 - 007477160 _____ (GmSofts ) C:\Users\daniel\Downloads\setup-gmcap440f-fr.exe 2020-12-05 07:18 - 2020-12-05 07:19 - 003443584 _____ (Nicolas Coolman) C:\Users\daniel\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d�marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} timeout 2 Gestionnaire de d�marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d�marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {a67389a7-618d-11e8-b089-9b576c26e6d1} nx OptIn bootmenupolicy Standard Chargeur de d�marrage Windows ----------------------------- identificateur {a67389a9-618d-11e8-b089-9b576c26e6d1} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{a67389aa-618d-11e8-b089-9b576c26e6d1} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre � partir de la mise en veille prolong�e ------------------------------------------------- identificateur {a67389a7-618d-11e8-b089-9b576c26e6d1} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {a67389a9-618d-11e8-b089-9b576c26e6d1} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m�moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m�moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Param�tres EMS -------------- identificateur {emssettings} bootems No Param�tres du d�bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m�moire RAM ---------------------- identificateur {badmemory} Param�tres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Param�tres du chargeur de d�marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Param�tres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Param�tres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p�riph�rique ----------------------- identificateur {a67389aa-618d-11e8-b089-9b576c26e6d1} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================