Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2021 Exécuté par christian (administrateur) sur CHRISTIAN (Packard Bell EasyNote TE69KB) (14-03-2021 05:05:17) Exécuté depuis C:\Users\christian\Downloads Profils chargés: christian Platform: Windows 10 Home Version 1909 18363.1316 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Acer Incorporated -> Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMEvent.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMMsg.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe (Acer Incorporated -> Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMTray.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe (Acer Incorporated -> Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Sources\SetupHost.exe (Microsoft Windows -> Microsoft Corporation) C:\$WINDOWS.~BT\Work\BB41D820-E525-4339-8A88-6DE04E3A10C3\DismHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\ef481fd5388b220c95c48d503728cac0\WindowsUpdateBox.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8> (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\christian\AppData\Roaming\ZHP\ZHPSuite.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\64DriverLoad.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Xerox Corporation -> Xerox Corporation) C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2042917867-2589683493-3529557936-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM\...\Windows x64\Print Processors\Canon MG2400 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBW.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\EPSON XP-243 245 247 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRFE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\WINDOWS\system32\hpinkstsB111LM.dll [328552 2012-01-11] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe [2021-03-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-15] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-04-15] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-02-20] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {036C2F23-D4C2-4896-8AF3-E9A90F1E0F5B} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {1108521B-C3DD-4275-8DE3-102E5645E557} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {181FA5DB-0F95-46E7-A710-1F0187BB22A4} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {1E6ED0DC-003C-4331-9EF2-374369017DFA} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [1140616 2020-06-17] (Microsoft Corporation -> Microsoft Corporation) Task: {1F047400-FBB4-4BE9-8303-F543FD89B0A1} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [4153648 2017-03-15] (Acer Incorporated -> ) Task: {1F896405-6C68-4C89-82C2-6F4C6297793F} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {21EE679A-CD7F-497F-8FF4-6F66DA03F03D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {2B76C224-859A-40FE-BD54-CA59B46616B5} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306440 2013-03-15] (Acer Incorporated -> Acer Incorporated) Task: {2D94DFFE-F2CF-4451-A22C-018531B83523} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972176 2020-05-12] (Microsoft Corporation -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {53D4469E-FC42-46FB-B0B6-B7F6CAEF3DD4} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - New or Changed => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [322024 2019-04-03] (Xerox Corporation -> Xerox Corporation) Task: {59EADE77-67E3-421F-9045-869564268A4D} - System32\Tasks\Xerox\Xerox PowerENGAGE => C:\Program Files (x86)\Xerox PowerENGAGE\xeroxreg.exe [117984 2016-09-13] (Aviata Inc -> Aviata Inc) Task: {62AA511C-55F8-440E-A727-120D98306183} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {6C7503FE-FD46-4080-A25B-79E9FF08CBED} - System32\Tasks\EPSON XP-243 245 247 Series Update {46C93ACD-DD7F-4628-9E93-3076A350429C} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {6C8BBF37-5056-4AA5-9479-906E6A3E46BF} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - Periodic Refresh => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [322024 2019-04-03] (Xerox Corporation -> Xerox Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {714EF11C-A750-4C06-A196-2E26CF16A130} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-07] (Google Inc -> Google Inc.) Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {7C39F462-6C22-4F9D-B3F3-3667AD5B8C6C} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [41264 2017-03-15] (Acer Incorporated -> ) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8FC10188-4848-4656-BF50-AECFCC5B86C1} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {973F21E0-1E65-4E6C-9494-8F60778EC712} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-07] (Google Inc -> Google Inc.) Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {9C41A5EC-F56C-455E-905E-295D7F84B133} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {9F8F9379-9C50-4614-BB78-4972C913E349} - System32\Tasks\Xerox XeroxPrintExperience Printer Configuration - User Logon => c:\program files\xerox\xeroxprintexperience\xeroxprintexperience\XeroxPrinterConfiguration.exe [322024 2019-04-03] (Xerox Corporation -> Xerox Corporation) Task: {A0E88DBC-26CB-4F5C-9D2B-96C3E4A20537} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe Task: {A3C11D1B-503A-4B48-9E27-EF1F9722CE77} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A469D87C-D2BB-436B-9A3F-1641FF926679} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe Task: {A7C82381-2A22-4B22-988E-82868D30F916} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BB1EFC55-59C9-45E5-AFEA-BF2235DE2013} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CC6D13D4-0FF4-4A34-9765-CA8EC61C0FFC} - System32\Tasks\Xerox\Xerox PowerENGAGE Update => C:\Program Files (x86)\Xerox PowerENGAGE\xeroxreg.exe [117984 2016-09-13] (Aviata Inc -> Aviata Inc) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {DDC228B1-D1D2-4042-A8A8-D7308F14CE7F} - System32\Tasks\Launch Manager => C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [415272 2013-03-15] (Acer Incorporated -> Acer Incorporate) Task: {DEF71814-5AC4-46B5-AC1A-029EA4C88E2E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.) Task: {E6195D5E-5E6A-48BE-972C-77FB630A9617} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF4F8702-0EC5-4F82-8241-C027B573B6DE} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [4227672 2017-07-11] (Synaptics Incorporated -> Synaptics Incorporated) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{12c0f355-a404-4c66-802b-7de86d0393d0}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{eef03571-bda1-4dd2-b3be-aefaddbce316}: [DhcpNameServer] 212.27.40.241 212.27.40.240 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\christian\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-14] FireFox: ======== FF DefaultProfile: zjbd1iyc.default-1615654914801 FF ProfilePath: C:\Users\christian\AppData\Roaming\Mozilla\Firefox\Profiles\zjbd1iyc.default-1615654914801 [2021-03-14] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-03-19] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default [2021-03-14] CHR Extension: (Slides) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-17] CHR Extension: (Docs) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-17] CHR Extension: (Google Drive) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-17] CHR Extension: (Sheets) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-17] CHR Extension: (Google Docs hors connexion) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-03] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25] CHR Extension: (Chrome Media Router) - C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-13] CHR HKLM-x32\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052944 2020-07-14] (Microsoft Corporation -> Microsoft Corporation) S3 DeviceFastLaneService; C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated -> Acer Incorporated) R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated -> Acer Incorporated) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Fichier non signé] R2 LMSvc; C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe [431656 2013-03-15] (Acer Incorporated -> Acer Incorporate) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé] S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665136 2019-01-16] (TeamViewer GmbH -> TeamViewer GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 XeroxPrintJobEventManagerService; C:\Program Files\Xerox\XeroxPrintExperience\CommonFiles\XeroxPrintJobEventManagerService.exe [319440 2019-04-03] (Xerox Corporation -> Xerox Corporation) S3 XeroxProdRegManager; C:\Program Files (x86)\Xerox PowerENGAGE\EngageService.exe [293608 2016-09-13] (Aviata Inc -> Aviata, Inc.) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 AthrSdSrv; C:\WINDOWS\system32\DRIVERS\athrsd.sys [48760 2012-12-01] (Atheros Communications Inc. -> Qualcomm Atheros, Inc.) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Apple, Inc.) [Fichier non signé] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49544 2021-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420088 2021-03-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-03-14 05:05 - 2021-03-14 05:09 - 000023436 _____ C:\Users\christian\Downloads\FRST.txt 2021-03-14 05:04 - 2021-03-14 05:07 - 000000000 ____D C:\FRST 2021-03-14 04:58 - 2021-03-14 04:58 - 002300928 _____ (Farbar) C:\Users\christian\Downloads\FRST64.exe 2021-03-14 04:47 - 2021-03-14 04:46 - 000388610 _____ C:\Users\christian\Desktop\ZHPDiag.txt 2021-03-14 03:16 - 2021-03-14 03:16 - 000000881 _____ C:\Users\christian\Desktop\ZHPSuite.lnk 2021-03-14 03:14 - 2021-03-14 03:14 - 003466904 _____ (Nicolas Coolman) C:\Users\christian\Downloads\ZHPSuite.exe 2021-03-13 18:02 - 2021-03-13 18:02 - 000000000 ____D C:\Users\christian\Desktop\Anciennes données de Firefox 2021-03-12 16:53 - 2021-03-13 18:50 - 000028004 _____ C:\Users\christian\Desktop\INVENTAIRE).xlsx 2021-03-12 14:50 - 2021-03-12 14:50 - 000000165 ____H C:\Users\christian\Desktop\~$Copie de INVENTAIRE(2).xlsx 2021-02-24 08:45 - 2021-02-24 08:45 - 000000000 ____D C:\Users\christian\AppData\Local\cache 2021-02-24 08:38 - 2021-02-24 08:38 - 000000000 ____D C:\ProgramData\Propagation 2021-02-23 09:26 - 2021-02-23 09:26 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN 2021-02-23 09:26 - 2021-02-23 09:26 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR 2021-02-23 09:26 - 2021-02-23 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software 2021-02-23 09:25 - 2021-02-23 09:25 - 000000000 ____D C:\Program Files (x86)\AMD 2021-02-23 09:16 - 2021-02-23 09:16 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-02-23 09:10 - 2020-10-29 13:39 - 001783920 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 001783920 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 001593456 _____ (AMD) C:\WINDOWS\system32\coinst_20.10.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 001374320 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 001374320 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 001085360 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 001085360 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000944208 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000944208 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000736880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000621168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000496752 _____ C:\WINDOWS\system32\GameManager64.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000493168 _____ C:\WINDOWS\system32\dgtrayicon.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 000380016 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000339568 _____ C:\WINDOWS\system32\clinfo.exe 2021-02-23 09:10 - 2020-10-29 13:39 - 000186992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000166512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000156784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000142448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000046704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000043632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000019784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2021-02-23 09:10 - 2020-10-29 13:39 - 000019784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2021-02-23 09:10 - 2020-10-29 12:29 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2021-02-23 09:10 - 2020-10-29 12:29 - 000125488 _____ C:\WINDOWS\system32\kapp_ci.sbin 2021-02-23 09:09 - 2020-10-29 13:39 - 000760432 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2021-02-23 09:09 - 2020-10-29 13:39 - 000456304 _____ C:\WINDOWS\system32\atieah64.exe 2021-02-23 09:09 - 2020-10-29 13:39 - 000245360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2021-02-23 09:09 - 2020-10-29 13:39 - 000213104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2021-02-23 09:09 - 2020-10-29 13:39 - 000140912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 064809072 _____ C:\WINDOWS\system32\amd_comgr.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 053684848 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 004630640 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 004141168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 001341552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 001341552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000468592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000351856 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2021-02-23 09:09 - 2020-10-29 13:38 - 000158648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000134768 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000125552 _____ C:\WINDOWS\system32\atidxx64.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000122480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000120432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000108248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000107632 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000107120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2021-02-23 09:09 - 2020-10-29 13:38 - 000070256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2021-02-23 09:09 - 2020-10-29 13:37 - 000130232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2021-02-23 09:09 - 2020-10-29 13:37 - 000108248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2021-02-23 09:09 - 2020-10-29 12:29 - 000544256 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2021-02-23 09:09 - 2020-10-29 12:29 - 000544256 _____ C:\WINDOWS\system32\atiapfxx.blb 2021-02-23 09:08 - 2020-10-29 13:38 - 000941168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000768624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000553584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000489584 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000383600 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000380016 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2021-02-23 09:08 - 2020-10-29 13:38 - 000167400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2021-02-23 09:08 - 2020-10-29 13:37 - 000546800 _____ C:\WINDOWS\system32\amdmiracast.dll 2021-02-23 09:08 - 2020-10-29 13:37 - 000135928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2021-02-23 09:08 - 2020-10-29 13:37 - 000120264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2021-02-23 09:08 - 2020-10-29 12:29 - 000069770 _____ C:\WINDOWS\system32\AMDKernelEvents.man 2021-02-10 10:04 - 2021-02-10 10:04 - 000121507 _____ C:\Users\christian\Downloads\ATTESTATION D'ASSURANCE HABITATI.PDF 2021-02-10 09:58 - 2021-02-26 10:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-02-10 09:58 - 2021-02-10 09:59 - 000000000 ____D C:\Users\christian\AppData\LocalLow\Adobe 2021-02-10 09:56 - 2021-03-11 11:55 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-10 09:56 - 2021-02-26 10:10 - 000002136 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk 2021-02-10 09:55 - 2021-02-10 09:55 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-02-10 09:53 - 2021-02-10 09:59 - 000000000 ____D C:\ProgramData\Adobe 2021-02-10 09:50 - 2021-02-10 09:59 - 000000000 ____D C:\Users\christian\AppData\Local\Adobe 2021-02-08 10:27 - 2021-02-08 10:27 - 000000000 ___HD C:\$WinREAgent 2021-01-15 09:26 - 2021-01-15 09:26 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-01-15 09:25 - 2021-01-15 09:25 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-01-15 09:25 - 2021-01-15 09:25 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-01-15 09:25 - 2021-01-15 09:25 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-01-15 09:24 - 2021-01-15 09:24 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-01-15 09:24 - 2021-01-15 09:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-01-15 09:23 - 2021-01-15 09:23 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-01-15 09:23 - 2021-01-15 09:23 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-01-15 09:23 - 2021-01-15 09:23 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-01-15 09:23 - 2021-01-15 09:23 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-01-15 09:23 - 2021-01-15 09:23 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-01-15 09:22 - 2021-01-15 09:22 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-01-15 09:22 - 2021-01-15 09:22 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-01-15 09:21 - 2021-01-15 09:21 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-01-15 09:21 - 2021-01-15 09:21 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-01-15 09:20 - 2021-01-15 09:20 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-01-15 09:20 - 2021-01-15 09:20 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2021-01-15 09:20 - 2021-01-15 09:20 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2021-01-15 09:18 - 2021-01-15 09:18 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-01-15 09:17 - 2021-01-15 09:17 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-01-14 12:20 - 2021-01-14 12:20 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-01-14 12:20 - 2021-01-14 12:20 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-01-14 12:19 - 2021-01-14 12:19 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-01-14 12:19 - 2021-01-14 12:19 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-01-14 12:19 - 2021-01-14 12:19 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-01-14 12:17 - 2021-01-14 12:17 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-01-14 12:16 - 2021-01-14 12:16 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll 2021-01-14 12:16 - 2021-01-14 12:16 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-01-14 12:16 - 2021-01-14 12:16 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-01-14 12:14 - 2021-01-14 12:14 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-01-14 12:14 - 2021-01-14 12:14 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll 2021-01-14 12:13 - 2021-01-14 12:13 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-01-14 12:12 - 2021-01-14 12:12 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-01-14 12:12 - 2021-01-14 12:12 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll 2021-01-14 12:12 - 2021-01-14 12:12 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-01-14 12:12 - 2021-01-14 12:12 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2020-12-17 10:11 - 2020-12-17 10:11 - 000001392 _____ C:\Users\christian\Desktop\CAISSE 2021 CHRISTIAN.xlsx - Raccourci.lnk ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-03-14 05:17 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-14 04:56 - 2019-03-14 15:37 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-14 04:55 - 2019-03-14 15:37 - 000000000 ____D C:\Users\christian\AppData\LocalLow\Mozilla 2021-03-14 04:49 - 2020-04-25 13:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-14 04:46 - 2019-03-11 18:45 - 000000000 ____D C:\Users\christian\AppData\Roaming\ZHP 2021-03-14 03:31 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2021-03-14 03:16 - 2019-03-11 18:45 - 000000000 ____D C:\Users\christian\AppData\Local\ZHP 2021-03-14 03:06 - 2020-07-15 09:23 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-14 03:06 - 2020-07-15 09:23 - 000002292 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-03-13 19:30 - 2020-04-25 14:33 - 000110493 _____ C:\WINDOWS\diagwrn.xml 2021-03-13 19:30 - 2020-04-25 14:33 - 000110493 _____ C:\WINDOWS\diagerr.xml 2021-03-13 19:30 - 2019-03-19 05:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-03-13 19:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Registration 2021-03-13 19:00 - 2019-12-07 16:30 - 000000000 ___HD C:\$WINDOWS.~BT 2021-03-13 18:58 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-03-13 18:54 - 2020-04-25 13:39 - 000000000 ____D C:\Users\Administrator 2021-03-13 18:39 - 2013-10-16 12:13 - 000000000 ____D C:\Users\christian\AppData\Local\Packages 2021-03-13 18:35 - 2019-03-14 15:37 - 000001017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-03-13 18:35 - 2019-03-14 15:36 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-03-13 17:39 - 2020-04-08 08:23 - 000000000 ___DC C:\WINDOWS\Panther 2021-03-13 12:06 - 2020-01-04 17:35 - 000000000 ____D C:\Users\christian\Desktop\CAISSES 2021-03-13 02:50 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-13 02:08 - 2020-08-17 16:04 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-13 02:08 - 2020-08-17 16:04 - 000002270 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2021-03-12 17:24 - 2020-04-25 13:39 - 000000000 ____D C:\Users\christian 2021-03-12 16:40 - 2020-04-25 13:59 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-12 16:40 - 2019-03-19 13:00 - 000793190 _____ C:\WINDOWS\system32\perfh00C.dat 2021-03-12 16:40 - 2019-03-19 13:00 - 000150222 _____ C:\WINDOWS\system32\perfc00C.dat 2021-03-12 16:32 - 2020-04-25 14:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-12 16:32 - 2019-02-11 16:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-03-12 16:12 - 2014-03-21 08:34 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-03-12 15:44 - 2014-03-21 08:34 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-03-12 10:47 - 2020-10-01 07:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-03-08 16:35 - 2020-04-25 14:37 - 000004274 _____ C:\WINDOWS\system32\Tasks\Xerox XeroxPrintExperience Printer Configuration - New or Changed 2021-03-07 09:51 - 2018-12-12 09:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-04 09:34 - 2020-07-15 09:22 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-04 09:34 - 2020-07-15 09:22 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-02-28 10:02 - 2020-04-25 14:37 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2042917867-2589683493-3529557936-1001 2021-02-28 10:02 - 2020-04-25 13:39 - 000002429 _____ C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-28 10:02 - 2014-10-23 13:50 - 000000000 ___RD C:\Users\christian\OneDrive 2021-02-24 08:44 - 2015-12-20 20:05 - 000000000 ____D C:\Users\christian\AppData\Local\AMD 2021-02-23 09:27 - 2015-12-20 18:55 - 000000000 ____D C:\Program Files\AMD 2021-02-17 08:58 - 2014-02-20 18:12 - 000000000 ____D C:\Program Files\Microsoft Office 15 ==================== Fichiers à la racine de certains dossiers ======== 2019-03-14 21:44 - 2019-03-14 21:44 - 003210624 _____ () C:\Users\christian\ZHPDiag3.exe ==================== SigCheckExt ========================= 2013-08-22 12:45 - 2013-08-22 12:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 12:43 - 2013-08-22 12:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2013-04-15 10:25 - 2013-04-15 10:25 - 000361600 _____ (Qualcomm Atheros Commnucations) C:\WINDOWS\system32\AthCredentialProvider.dll 2015-04-21 18:56 - 2014-10-29 02:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2015-04-21 19:07 - 2014-10-29 02:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 12:42 - 2013-08-22 12:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000057344 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll 2010-01-19 15:12 - 2010-01-19 15:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL 2009-11-27 12:15 - 2009-11-27 12:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000079872 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll 2012-11-27 00:18 - 2012-11-27 00:18 - 000050688 _____ C:\WINDOWS\system32\kdbsdk64.dll 2014-10-27 13:12 - 2014-07-10 05:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lockscreencn.dll 2015-09-20 18:09 - 2015-07-22 15:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2015-04-15 11:44 - 2015-03-14 02:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2013-08-22 05:17 - 2013-08-22 05:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 05:14 - 2013-08-22 05:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000050688 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000034816 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll 2012-11-27 00:18 - 2012-11-27 00:18 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll 2011-04-29 12:27 - 2011-04-29 12:27 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2011-04-29 17:01 - 2011-04-29 17:01 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2011-04-29 15:41 - 2011-04-29 15:41 - 001230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4.dll 2011-04-29 15:41 - 2011-04-29 15:41 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll 2019-03-14 21:44 - 2019-03-14 21:44 - 003210624 _____ C:\Users\christian\ZHPDiag3.exe 2019-03-18 16:07 - 2019-03-18 16:07 - 004026766 _____ C:\Users\christian\Downloads\Adware_Prevention.exe 2014-10-14 13:51 - 2014-10-14 13:52 - 000527872 _____ (Jerome Saynes) C:\Users\christian\Downloads\ArchiFacile.exe 2021-03-14 04:58 - 2021-03-14 04:58 - 002300928 _____ (Farbar) C:\Users\christian\Downloads\FRST64.exe 2019-02-11 15:49 - 2019-02-11 15:52 - 170422883 _____ C:\Users\christian\Downloads\HDPlayer.5.3.98.0 (2).exe 2019-03-25 18:42 - 2019-03-25 18:58 - 194507627 _____ C:\Users\christian\Downloads\hdplayer.6.4.7.0.exe 2019-03-18 10:50 - 2019-03-18 10:50 - 002103230 _____ C:\Users\christian\Downloads\temp-file-cleaner_4-5-0_en_368834.exe 2021-03-14 03:14 - 2021-03-14 03:14 - 003466904 _____ (Nicolas Coolman) C:\Users\christian\Downloads\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {ef1daf14-cccd-11e2-a96e-ce7500fc689d} {ef1daf15-cccd-11e2-a96e-ce7500fc689d} {ef1daf16-cccd-11e2-a96e-ce7500fc689d} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {d5141d28-86f7-11ea-bf86-dc5bc08d7438} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {ef1daf14-cccd-11e2-a96e-ce7500fc689d} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {ef1daf15-cccd-11e2-a96e-ce7500fc689d} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {ef1daf16-cccd-11e2-a96e-ce7500fc689d} description EFI Network Chargeur de d‚marrage Windows ----------------------------- identificateur {b666617b-fdde-11e8-bb16-d22871eda1c1} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b666617c-fdde-11e8-bb16-d22871eda1c1} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b666617c-fdde-11e8-bb16-d22871eda1c1} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {d5141d2a-86f7-11ea-bf86-dc5bc08d7438} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {d5141d28-86f7-11ea-bf86-dc5bc08d7438} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {d5141d2a-86f7-11ea-bf86-dc5bc08d7438} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{d5141d2b-86f7-11ea-bf86-dc5bc08d7438} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{d5141d2b-86f7-11ea-bf86-dc5bc08d7438} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {d5141d28-86f7-11ea-bf86-dc5bc08d7438} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {d5141d2a-86f7-11ea-bf86-dc5bc08d7438} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {d5141d2b-86f7-11ea-bf86-dc5bc08d7438} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================