Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2021 Exécuté par campi (administrateur) sur LAPTOP-QV4K5RJ9 (LENOVO 81LY) (26-04-2021 20:31:45) Exécuté depuis C:\Users\campi\OneDrive\Bureau Profils chargés: campi Platform: Windows 10 Home Version 2004 19041.450 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10027.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10027.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0363447.inf_amd64_93a3939d912a7cc6\B363243\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0363447.inf_amd64_93a3939d912a7cc6\B363243\atiesrxx.exe (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~2.INF\DAX3API.exe (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_925ded1d9428eaee\DAX3API.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2> (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.19.0_x64__5grkq8ppsgwt4\VFS\ProgramFilesX64\Lenovo\LenovoUtility\utility.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\campi\AppData\Local\Microsoft\OneDrive\21.062.0328.0001\FileCoAuth.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\campi\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe <2> (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe [1219312 2020-12-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [CanonQuickToolbox] => C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe [2357144 2019-05-27] (Canon Inc. -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MB2100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCZ.DLL [30720 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MB2100 series: C:\WINDOWS\system32\CNCALCZ.DLL [254464 2015-11-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MB2100 series: C:\WINDOWS\system32\CNMLMCZ.DLL [436736 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\WINDOWS\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.85\Installer\chrmstp.exe [2021-04-23] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02FA7353-04B2-4FBF-A9A4-5D63E4BD32AA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {0657303C-BF87-4B68-9B80-700FE9BBDA57} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {073BB796-7526-45F6-82E2-8B8FD0F50B11} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\48dce719-8be0-41a2-ab2a-d753fcb9e226 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.) Task: {1F6A5297-8869-480E-B565-5DA7EC09C488} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-11] (Google LLC -> Google LLC) Task: {2595DDCF-4005-4BAB-8575-3D12B38B7FCB} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60008 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {31B8E8EC-C1A8-4F0A-AD2E-4326B4E3E980} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62392 2021-03-14] (Lenovo -> Lenovo Group Ltd.) Task: {3F96866B-6D3C-4D6A-AF35-150004E7ABF0} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [67688 2020-02-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {588A6DEB-E76D-4D9F-81FA-D3CFADD2F1D3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9d1ad103-bdfa-4bca-94b7-4b3517634f0c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.) Task: {63D611E6-E391-4197-B4D5-18616DA368B5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bcf88661-392e-4ed8-94d1-98a595296f0e => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.) Task: {65509D88-9BF9-4350-A139-9ED962285C5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {73D1C50D-A4E4-4126-9464-2FA2BF1E585F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {88286BAE-7D75-4028-9E9B-9776BD94CDFE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8C65CD04-B35B-4D74-97D7-2FB6F0D89536} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {952E7951-EB2C-4C34-A048-9C81259CB69E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7f710c02-af61-420b-88c8-d2287becbbb6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.) Task: {AC3C7C61-FF59-420E-A841-F3F16F0901B2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [Fichier non signé] Task: {AC8CD968-137B-45F3-BF3C-96BBD69B7AA4} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-03-02] (Lenovo -> Lenovo Group Ltd.) Task: {C1673735-00E8-4B78-B785-81354E1369FF} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [Fichier non signé] Task: {C1C41A64-E5FF-4C57-9764-E2F9BE3B2030} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-11] (Google LLC -> Google LLC) Task: {C3A729FE-5C37-432F-A843-EF42B701C582} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility:// Task: {D583B2AB-B8FB-4CDA-9BA0-BAF3F6C5AE02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FC037F8A-5BAD-4A48-9CAD-11D361FFBB61} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [1628160 2020-02-29] (Advanced Micro Devices, Inc.) [Fichier non signé] (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{033cd966-ea89-45be-8ad2-65c992daa2f7}: [DhcpNameServer] 150.209.1.2 Tcpip\..\Interfaces\{0b609769-97eb-4405-a54f-9bc5b1aef4e8}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\campi\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-21] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default [2021-04-26] CHR StartupUrls: Default -> "hxxps://account.microsoft.com/?ref=MeControl&lang=fr-FR&partnerId=msn&partnerDomain=www.msn.com&refd=www.msn.com","hxxps://assistance.orange.fr/ordinateurs-peripheriques/depanner/probleme-de-mail/probleme-pour-acceder-a-la-messagerie/mail-orange-messages-d-erreur_77598-78554","hxxps://assistance.orange.fr/ordinateurs-peripheriques/installer-et-utiliser/la-recherche-et-navigation-sur-le-web-cookies/un-navigateur/google-chrome/google-chrome-gerer-les-cookies_279247-820030" CHR Extension: (Slides) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-11] CHR Extension: (Docs) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-11] CHR Extension: (Google Drive) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-11] CHR Extension: (Sheets) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-11] CHR Extension: (Google Docs hors connexion) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-15] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\campi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-25] CHR Profile: C:\Users\campi\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-15] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_925ded1d9428eaee\DAX3API.exe [2205144 2020-12-22] (Dolby Laboratories, Inc. -> Dolby Laboratories) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81824 2021-03-14] (Lenovo -> Lenovo Group Ltd.) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\LenovoVantageService.exe [16648 2019-12-04] (Lenovo -> Lenovo Group Ltd.) R2 RtkAudioUniversalService; C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe [1219312 2020-12-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12849960 2021-03-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation) R3 MpKsl6e18adb3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BDCDE256-1052-4CB0-A174-39F5B007FCF5}\MpKslDrv.sys [47336 2021-04-26] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-12] (Microsoft Windows -> Microsoft Corporation) R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) S3 amdkmdap; \SystemRoot\System32\DriverStore\FileRepository\u0354259.inf_amd64_9c1fcd1df26ce806\B354183\atikmpag.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-04-26 20:29 - 2021-04-26 20:33 - 000000000 ____D C:\FRST 2021-04-26 17:57 - 2021-04-26 17:58 - 003326616 _____ (Nicolas Coolman) C:\Users\campi\Downloads\ZHPCleaner.exe 2021-04-26 16:45 - 2021-04-26 20:17 - 000000000 ____D C:\Users\campi\AppData\Roaming\ZHP 2021-04-26 16:45 - 2021-04-26 17:58 - 000000000 ____D C:\Users\campi\AppData\Local\ZHP 2021-04-26 16:45 - 2021-04-26 16:45 - 003274392 _____ (Nicolas Coolman) C:\Users\campi\Downloads\ZHPDiag3.exe 2021-04-26 16:33 - 2021-04-26 16:33 - 001414608 _____ (CPUID, Inc. ) C:\Users\campi\Downloads\hwmonitor_1.44.exe 2021-04-26 16:33 - 2021-04-26 16:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2021-04-26 16:33 - 2021-04-26 16:33 - 000000000 ____D C:\Program Files\CPUID 2021-04-18 09:28 - 2021-04-18 09:28 - 000031444 _____ C:\Users\campi\Downloads\RIR.pdf 2021-04-08 04:03 - 2021-04-26 16:42 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2021-03-17 20:31 - 2021-04-25 21:45 - 077332480 _____ C:\WINDOWS\system32\config\SOFTWARE 2021-03-13 08:17 - 2021-03-13 08:17 - 000941824 _____ C:\Users\campi\Downloads\relevefiscal.pdf 2021-03-07 14:02 - 2021-03-07 14:02 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2021-02-21 09:42 - 2021-02-21 09:42 - 000000000 ____D C:\ProgramData\Propagation 2021-02-03 19:58 - 2021-02-03 19:58 - 000010450 _____ C:\Users\campi\Downloads\bulletins-du-01012021-au-31012021.pdf 2021-01-27 13:05 - 2021-02-19 21:17 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-04-26 20:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-26 20:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-04-26 20:12 - 2020-06-16 20:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-04-26 18:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-04-26 17:41 - 2020-01-11 19:11 - 000000000 ___RD C:\Users\campi\OneDrive 2021-04-26 16:42 - 2020-10-25 18:34 - 000003296 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2021-04-26 16:42 - 2020-01-11 19:08 - 000000000 ____D C:\Users\campi\AppData\Local\D3DSCache 2021-04-26 16:40 - 2020-06-16 21:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-26 16:40 - 2020-06-16 20:41 - 000008192 ___SH C:\DumpStack.log.tmp 2021-04-26 16:40 - 2020-01-17 20:32 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-04-26 16:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-04-26 16:31 - 2020-06-24 05:51 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-26 16:31 - 2020-06-24 05:51 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-04-25 21:45 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-04-25 20:49 - 2020-06-16 20:47 - 000000000 ____D C:\Users\campi 2021-04-25 20:27 - 2020-06-16 20:55 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-25 20:27 - 2019-12-07 16:49 - 000756416 _____ C:\WINDOWS\system32\perfh00C.dat 2021-04-25 20:27 - 2019-12-07 16:49 - 000142186 _____ C:\WINDOWS\system32\perfc00C.dat 2021-04-25 20:10 - 2020-06-24 05:52 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-04-25 20:10 - 2020-06-24 05:52 - 000002287 _____ C:\ProgramData\Bureau\Microsoft Edge.lnk 2021-04-25 20:10 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-25 20:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-04-23 07:25 - 2020-01-11 21:51 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-04-23 07:16 - 2020-01-11 21:50 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-04-21 07:19 - 2020-02-21 21:49 - 000000000 ____D C:\Users\campi\OneDrive\Documents\photo de carte identité, permis et justificatif domicile 2021-04-21 06:26 - 2020-06-16 21:10 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-04-21 06:26 - 2020-06-16 21:10 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-04-21 06:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-04-18 09:30 - 2021-01-16 19:41 - 000000000 ____D C:\ProgramData\CanonIJPLM 2021-04-15 04:55 - 2020-06-16 21:10 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-181200265-1438161113-2070017992-1001 2021-04-15 04:54 - 2020-06-16 20:47 - 000002408 _____ C:\Users\campi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-04-12 03:27 - 2018-09-19 20:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd ==================== SigCheckExt ========================= 2020-02-04 18:54 - 2020-02-04 18:55 - 041570000 _____ (AMD Inc.) C:\Users\campi\Downloads\radeon-software-adrenalin-2020-20.1.3-minimalsetup-200130_64bit.exe 2020-05-22 07:36 - 2020-05-22 07:36 - 040550000 _____ (AMD Inc.) C:\Users\campi\Downloads\radeon-software-adrenalin-2020-20.2.2-minimalsetup-200304_64bit.exe 2020-05-22 07:35 - 2020-05-22 07:36 - 040550000 _____ (AMD Inc.) C:\Users\campi\Downloads\radeon-software-adrenalin-2020-20.4.2-minimalsetup-200423_64bit.exe 2021-04-26 17:57 - 2021-04-26 17:58 - 003326616 _____ (Nicolas Coolman) C:\Users\campi\Downloads\ZHPCleaner.exe 2021-04-26 16:45 - 2021-04-26 16:45 - 003274392 _____ (Nicolas Coolman) C:\Users\campi\Downloads\ZHPDiag3.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {1975f836-b2fd-11e9-b51b-806e6f6e6963} {1975f837-b2fd-11e9-b51b-806e6f6e6963} {1975f838-b2fd-11e9-b51b-806e6f6e6963} {1975f839-b2fd-11e9-b51b-806e6f6e6963} {1975f83a-b2fd-11e9-b51b-806e6f6e6963} {1975f83b-b2fd-11e9-b51b-806e6f6e6963} {1975f83c-b2fd-11e9-b51b-806e6f6e6963} {1975f83d-b2fd-11e9-b51b-806e6f6e6963} {3a6bab1d-a69d-11eb-9d13-806e6f6e6963} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {5076c6c1-b009-11ea-b549-8c45b04cc0da} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Application logicielle (101fffff) -------------------------------- identificateur {1975f832-b2fd-11e9-b51b-806e6f6e6963} description Setup Application logicielle (101fffff) -------------------------------- identificateur {1975f833-b2fd-11e9-b51b-806e6f6e6963} description Boot Menu Application logicielle (101fffff) -------------------------------- identificateur {1975f834-b2fd-11e9-b51b-806e6f6e6963} description Diagnostic Splash Application logicielle (101fffff) -------------------------------- identificateur {1975f835-b2fd-11e9-b51b-806e6f6e6963} description OilDiagApp Application logicielle (101fffff) -------------------------------- identificateur {1975f836-b2fd-11e9-b51b-806e6f6e6963} description ATA HDD: WDC WD10SPZX-24Z10 Application logicielle (101fffff) -------------------------------- identificateur {1975f837-b2fd-11e9-b51b-806e6f6e6963} description ATA HDD1: Application logicielle (101fffff) -------------------------------- identificateur {1975f838-b2fd-11e9-b51b-806e6f6e6963} description NVMe: Application logicielle (101fffff) -------------------------------- identificateur {1975f839-b2fd-11e9-b51b-806e6f6e6963} description ATAPI CD: Application logicielle (101fffff) -------------------------------- identificateur {1975f83a-b2fd-11e9-b51b-806e6f6e6963} description USB HDD: Application logicielle (101fffff) -------------------------------- identificateur {1975f83b-b2fd-11e9-b51b-806e6f6e6963} description PCI LAN: EFI Network (IPv4) Application logicielle (101fffff) -------------------------------- identificateur {1975f83c-b2fd-11e9-b51b-806e6f6e6963} description USB FDD: Application logicielle (101fffff) -------------------------------- identificateur {1975f83d-b2fd-11e9-b51b-806e6f6e6963} description USB CD: Application logicielle (101fffff) -------------------------------- identificateur {3a6bab1d-a69d-11eb-9d13-806e6f6e6963} description PCI LAN: EFI Network (IPv6) Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {5076c6c3-b009-11ea-b549-8c45b04cc0da} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {5076c6c1-b009-11ea-b549-8c45b04cc0da} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {5076c6c3-b009-11ea-b549-8c45b04cc0da} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5076c6c4-b009-11ea-b549-8c45b04cc0da} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5076c6c4-b009-11ea-b549-8c45b04cc0da} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {5076c6c1-b009-11ea-b549-8c45b04cc0da} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {5076c6c3-b009-11ea-b549-8c45b04cc0da} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {5076c6c4-b009-11ea-b549-8c45b04cc0da} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================