Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 28-04-2021 Exécuté par Terence (administrateur) sur TERENCE-PC (MEDIONPC MS-7713) (01-05-2021 17:09:11) Exécuté depuis C:\Users\Terence\Desktop Profils chargés: Terence & DefaultAppPool Platform: Microsoft Windows 10 Famille Version 1903 18362.1082 (X86) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <9> (Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe (HP Inc. -> HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe <2> (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x86__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x86__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Terence\Desktop\ZHPSuite.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe (Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe (Realtek) [Fichier non signé] C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [104160 2021-03-12] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [2427400 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3137808 2020-01-17] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [iCloudDrive] => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-3093224504-3618405535-1614348-1000\...\Run: [iCloudPhotos] => C:\Program Files\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-07-22] (Apple Inc. -> Apple Inc.) HKLM\...\Print\Monitors\HP C511 Status Monitor: C:\WINDOWS\system32\hpinkstsC511LM.dll [271032 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP ENVY 4500 series): C:\WINDOWS\system32\HPDiscoPMC511.dll [597512 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\89.1.9136.128\Installer\chrmstp.exe [2021-04-20] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-05-01] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {00158505-A525-40E7-A0B5-967E91144DBB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {01EBA2B5-E73D-48AE-A15F-E815111D990C} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {06EF8751-699A-4E43-9D1C-6E32FF48340B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {0BAF10DF-6003-4596-94F1-29A9B3BA9E59} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {112800FB-D410-4F55-A4A8-9A35C6A3FA1C} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {14862110-F4B7-4135-AB22-F4B91E13B3FD} - System32\Tasks\HP AR Program Upload - 2442d7ee66e94b71a601468a0ac123335bd87f00095540abba1bf98ed1712145 => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2619400 2014-07-21] (Hewlett Packard -> TODO: ) Task: {1C601309-55EB-482C-9160-34701CBA6D09} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.) Task: {1CDA56D6-B24B-4F5F-8511-0091342775CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.) Task: {1E869E2D-6C7C-4627-B58E-EC89685470C0} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1EFB2E45-73DE-4EA6-AFF5-3DD6D83F93ED} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {20DF0D39-08D4-428B-8280-0895365B1F6C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [212856 2018-08-21] (HP Inc. -> HP Inc.) Task: {24FA84A0-E087-48EC-BC51-2B9C4C815D78} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {290CC8E0-2270-4B91-898F-E8356C738D25} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {29644E81-BCCE-4600-8D3E-A64A1ADE7B97} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {2D2BCA33-6552-4171-9AA5-FCAB3A2A5BE6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-04-30] (Avast Software s.r.o. -> Avast Software) Task: {2E198F5A-1EB9-4C08-9D06-DC470D2DC9C0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3405115F-1D9C-4A58-A496-84779B7D3638} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {367F930A-A3DB-4112-B1F1-50E92A171C88} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {3B54E3A8-2BC0-419C-A8EB-2D13200B5CA4} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-20] (HP Inc. -> ) Task: {416D94E1-81AA-48AB-B10F-B2BECCB5A1A9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {420B0797-2562-492E-96CB-CC6E86EB39AE} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {43A50F75-24F7-4AE6-9DAC-0854934B5113} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {44716953-142E-411D-BD94-4040B23F6C7B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {53364BE9-7D28-4A33-875C-B90F6CD68948} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {564E8991-2C2E-4A8B-9EF4-9132A8F73D99} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {5A7A892A-DA30-43CB-A514-F916636307D2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {5B638030-625E-418A-B9E9-54E33FFBE01B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe Task: {64241E71-0C24-4395-8D2E-4BCEA835AD83} - System32\Tasks\HP AR Program Upload - 29e34489bf0b42a6b9c8528e70bb3eac06636c764c7d4de3894aaafd2dad0a07 => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2619400 2014-07-21] (Hewlett Packard -> TODO: ) Task: {6462AAFA-AB20-45CD-AAF9-34EB4A1C6795} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {65BE2BFB-FD63-4BA4-AC87-5657DCB5D9D3} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-07-22] (Apple Inc. -> Apple Inc.) Task: {6F27D505-AFD2-492E-9994-CB734874B03E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {7B8C3565-CCA6-4D49-AEAA-70F66CDECEB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform) Task: {7BE9ADC9-9AE8-444B-BA73-DA5B00CE438C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7BFC5FF3-B51F-4246-B746-11788B6BA8E6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4123872 2021-04-30] (Avast Software s.r.o. -> AVAST Software) Task: {7C5BAD5D-8E29-4DBA-AE48-CB702BCC598D} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {84BA4D7D-EA3B-496D-8896-5287C142F22A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {87A10C87-33FF-45C6-A637-4147F272EA52} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {8CA7E583-32B2-4A61-9599-2CC665DEA39C} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe Task: {8D36015B-B18A-4F55-AA98-AE6E14DCC6A9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software) Task: {8E5646C7-BD12-41F0-963A-AF3F9CFC450F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107072 2016-05-09] (Hewlett-Packard Company -> Hewlett-Packard) Task: {907701F0-9035-40C3-9D0E-D12867EA52B5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {975847B8-BF1C-4271-A539-1AB8A8F9D85F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {999ACF27-71AA-4EEB-9292-2577AB5D4680} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9CFFF37B-7C3B-4793-97EF-431533413064} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9EB75E92-79D6-407F-B90B-C95C50D825BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2016-04-28] (Google Inc -> Google Inc.) Task: {9EECBE88-146A-4112-A710-4DD6649D9395} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {A21F7F81-DDBA-4835-ACED-B55ADA18CC70} - System32\Tasks\HP AR Program Upload - 87402703e2ee41e48e9272e74f9436f7a6585db431604b938b07555c0a73f2ab => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2619400 2014-07-21] (Hewlett Packard -> TODO: ) Task: {A585D244-74DA-4A9B-B783-2D89342899D6} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {A642BF3C-ADDB-4C73-9D84-88B793143F6F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software) Task: {AF59B04C-7091-4D82-861D-D68B715DEA50} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {B108C111-42B9-439F-86F3-3FBFCB720FAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [154440 2016-04-28] (Google Inc -> Google Inc.) Task: {B9EE5280-AB4E-47D0-A14C-F1050190B99F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {BB41E08F-C46F-417D-A2E5-1D5215495DBD} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {BDB7FFAE-77EE-437B-86ED-48700F262B28} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {C3BC1934-F038-4739-9003-0F45ECF605B1} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-05-17] (Corel Corporation -> Corel Corporation) Task: {C51D191E-EEC3-47A9-8992-41FBC8E8094E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [1148448 2016-12-07] (HP Inc. -> HP Inc.) Task: {C7CBF980-B654-4043-BF00-1DA455915A44} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1968160 2021-04-14] (Avast Software s.r.o. -> AVAST Software) Task: {C8F2D460-7FBA-48C6-A7F7-C1212F64B7B0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CABAC314-9B86-40E2-B33E-9B368314EC81} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {CB2037F1-5F69-457A-BE67-E42849547085} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-05-17] (Corel Corporation -> Corel Corporation) Task: {CBBCE691-B7DB-4C55-8127-2FB19CDDE8AB} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2019-05-17] (Corel Corporation -> Corel Corporation) Task: {CEDEECBE-1002-44E6-8284-88C7CCA28EC4} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D46F72CE-23E2-4FCA-9146-26E6B0BAAAAF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D48296CC-4DE0-4293-901B-B825724A096C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D8E96E0C-8D22-480B-834B-2F4B634B9C73} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {E3739CD2-4D11-414F-AF23-3F3C9CE74FF0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION Task: {E6794D61-1F3D-4DFE-AA58-E55D1F94C741} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1968160 2021-04-14] (Avast Software s.r.o. -> AVAST Software) Task: {E6F0B608-A3DC-4A23-9D3F-59ACE317D018} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {E79B2998-8F63-451A-A56D-26EDC0A5098A} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {E9E76207-430B-4B2D-9FD2-E3D1A66BCD03} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {F23053FA-82ED-4530-BB3C-9E467A5558E6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [1148448 2016-12-07] (HP Inc. -> HP Inc.) Task: {F321FAC9-EEBF-49ED-859F-D54C525984F3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {F362D66C-3103-4994-83CA-E1917FBF1C51} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.224.129.90 212.224.129.94 Tcpip\..\Interfaces\{42ad46cd-963e-4f93-87c3-79b07e959eff}: [DhcpNameServer] 212.224.129.90 212.224.129.94 Tcpip\..\Interfaces\{4e51e989-723f-41b9-924a-c11388db0d9d}: [DhcpNameServer] 212.224.129.90 212.224.129.94 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Terence\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-30] Edge HomePage: Default -> hxxp://www.google.be/ Edge HKLM\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 585v8p3n.default FF ProfilePath: C:\Users\Terence\AppData\Roaming\Mozilla\Firefox\Profiles\585v8p3n.default [2021-05-01] FF Extension: (Youtube Unblocker Remediation) - C:\Users\Terence\AppData\Roaming\Mozilla\Firefox\Profiles\585v8p3n.default\features\{af2f6922-cb39-4c2a-856d-eddb7d14f977}\malware-remediation@mozilla.org.xpi [2017-05-11] [] FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software) FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-29] (Avast Software s.r.o. -> AVAST Software) FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN) [Fichier non signé] Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default [2021-04-30] CHR HomePage: Default -> hxxp://www.google.be/ CHR StartupUrls: Default -> "hxxp://www.google.be/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.bing.com/?PC=K433" CHR Extension: (Google Drive) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-25] CHR Extension: (Signets iCloud) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2017-10-13] CHR Extension: (Google Docs hors connexion) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-25] CHR Extension: (Avast Online Security) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-09] CHR Extension: (IGRAAL - Cashback & codes promo) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2020-11-25] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04] CHR Extension: (Gmail) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-16] CHR Profile: C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-04-30] CHR DefaultSearchURL: Profile 1 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210BE0G0&p={searchTerms} CHR DefaultSearchKeyword: Profile 1 -> mcafee CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-25] CHR Extension: (Google Docs hors connexion) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-16] CHR Extension: (Avast Online Security) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-03-12] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-12] CHR Extension: (Chrome Media Router) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-16] CHR Profile: C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-05-01] CHR Extension: (Slides) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-03-24] CHR Extension: (Docs) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-03-24] CHR Extension: (Google Drive) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-24] CHR Extension: (YouTube) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-24] CHR Extension: (InsertLearning) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dehajjkfchegiinhcmoclkfbnmpgcahj [2021-03-24] CHR Extension: (Kami for Google Chrome™) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ecnphlgnajanjnkcmbpancdjoidceilk [2021-05-01] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-03-24] CHR Extension: (Sheets) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-03-24] CHR Extension: (Google Docs hors connexion) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-30] CHR Extension: (CraftyCursor) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gjponoohlplibjdnjnbnhbjljffpkkok [2021-05-01] CHR Extension: (Avast Online Security) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-03-24] CHR Extension: (EquatIO - Math made digital) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hjngolefdpdnooamgdldlkjgmdcmcjnc [2021-04-20] CHR Extension: (Read&Write for Google Chrome™) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\inoeonmfapjbbkmdafoankkfajkcphgd [2021-04-30] CHR Extension: (Genshin Impact Free Primogems iOS & Android) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\joobmhbkjccpmkephgjfjbkfdhbcbnnp [2021-04-21] CHR Extension: (BookWidgets Google Classroom Integration) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ldddhclipgmgkcjfkeimcjgcpmkadkhl [2021-03-24] CHR Extension: (Google Classroom) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mfhehppjhmmnlfbbopchdfldgimhfhfk [2021-03-24] CHR Extension: (Screencastify - Screen Video Recorder) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2021-04-30] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-19] CHR Extension: (Gmail) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-24] CHR Extension: (Chrome Media Router) - C:\Users\Terence\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-01] CHR Profile: C:\Users\Terence\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-30] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [223216 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [284872 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7050776 2021-04-19] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-03-12] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-03-12] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-29] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\89.1.9136.128\elevation_service.exe [1230544 2021-04-14] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-03-12] (Avast Software s.r.o. -> AVAST Software) R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc. -> HP Inc.) R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5959136 2021-04-30] (Malwarebytes Inc -> Malwarebytes) S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2475312 2020-01-17] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files\Origin\OriginWebHelperService.exe [3393848 2020-01-17] (Electronic Arts, Inc. -> Electronic Arts) R2 Realtek11nSU; C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Fichier non signé] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [252728 2020-11-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3379072 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [91560 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [19525104 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [542192 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [50400 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33552 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [179032 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [292336 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206320 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16816 2021-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [151912 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [378384 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92704 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [386248 2021-04-30] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-03-12] (Avast Software s.r.o. -> AVAST Software) S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [38984 2016-04-28] (AVAST Software a.s. -> The OpenVPN Project) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276984 2021-04-30] (Avast Software s.r.o. -> AVAST Software) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT3.sys [82432 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [165376 2019-10-20] (Microsoft Corporation) [Fichier non signé] R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [163800 2021-04-30] (Malwarebytes Inc -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [184200 2021-04-30] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [17360 2021-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [161512 2021-04-30] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [66656 2021-04-30] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [213936 2021-04-30] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [128240 2021-04-30] (Malwarebytes Inc -> Malwarebytes) R3 RTL8192su; C:\WINDOWS\System32\drivers\RTL8192su.sys [596992 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [38280 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [268768 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [128704 2016-08-16] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [47584 2019-03-19] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-01 17:09 - 2021-05-01 17:11 - 000036791 _____ C:\Users\Terence\Desktop\FRST.txt 2021-05-01 17:08 - 2021-05-01 17:10 - 000000000 ____D C:\FRST 2021-05-01 17:08 - 2021-05-01 17:08 - 000000000 ____D C:\Users\Terence\AppData\LocalLow\IGDump 2021-05-01 17:07 - 2021-05-01 17:07 - 002010624 _____ (Farbar) C:\Users\Terence\Desktop\FRST.exe 2021-05-01 15:16 - 2021-05-01 15:16 - 000378126 _____ C:\Users\Terence\Desktop\ZHPDiag.txt 2021-05-01 14:42 - 2021-05-01 15:16 - 000000000 ____D C:\Users\Terence\AppData\Roaming\ZHP 2021-05-01 14:42 - 2021-05-01 14:42 - 000000911 _____ C:\Users\Terence\Desktop\ZHPSuite.lnk 2021-05-01 14:42 - 2021-05-01 14:42 - 000000000 ____D C:\Users\Terence\AppData\Local\ZHP 2021-05-01 14:41 - 2021-05-01 14:41 - 003468440 _____ (Nicolas Coolman) C:\Users\Terence\Desktop\ZHPSuite.exe 2021-04-30 22:55 - 2021-04-30 22:55 - 000039424 _____ () C:\WINDOWS\system32\Drivers\staport.sys.161981610450008 2021-04-30 22:54 - 2021-04-30 22:53 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2021-04-30 22:54 - 2021-04-30 22:53 - 000161824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswc2c62b2010a1d16f.tmp 2021-04-30 22:29 - 2021-04-30 22:28 - 000066656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-04-30 22:28 - 2021-04-30 22:28 - 000161512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-04-30 22:28 - 2021-04-30 22:28 - 000128240 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-04-30 21:51 - 2021-04-30 21:51 - 000000000 ____D C:\Users\Terence\AppData\Local\mbam 2021-04-30 21:50 - 2021-04-30 21:50 - 000213936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-04-30 21:50 - 2021-04-30 21:50 - 000184200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-04-30 21:50 - 2021-04-30 21:50 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-04-30 21:50 - 2021-04-30 21:50 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-04-30 21:49 - 2021-04-30 21:48 - 000163800 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae.sys 2021-04-30 21:49 - 2021-04-30 21:48 - 000017360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-04-30 21:45 - 2021-04-30 21:45 - 000000000 ____D C:\Program Files\Malwarebytes 2021-04-30 21:43 - 2021-04-30 21:43 - 002078632 _____ (Malwarebytes) C:\Users\Terence\Downloads\MBSetup.exe 2021-04-30 21:19 - 2021-04-30 21:19 - 000000000 _____ C:\Users\Terence\Desktop\Nouveau document texte.txt 2021-04-30 21:15 - 2021-04-30 21:17 - 000000000 ____D C:\Users\Terence\AppData\Local\TeamViewer 2021-04-30 21:14 - 2021-04-30 21:14 - 000001002 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2021-04-30 21:14 - 2021-04-30 21:14 - 000000990 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2021-04-21 14:08 - 2021-04-21 14:10 - 124745448 _____ (miHoYo) C:\Users\Terence\Downloads\GenshinImpact_install_20210323145008 (2).exe 2021-04-21 14:07 - 2021-04-21 14:08 - 124745448 _____ (miHoYo) C:\Users\Terence\Downloads\GenshinImpact_install_20210323145008 (1).exe 2021-04-21 14:04 - 2021-04-21 14:05 - 124745448 _____ (miHoYo) C:\Users\Terence\Downloads\GenshinImpact_install_20210323145008.exe 2021-04-19 11:36 - 2021-04-19 11:36 - 000001049 _____ C:\Users\Terence\Desktop\Corentin - Chrome.rar 2021-03-24 15:50 - 2021-04-21 13:57 - 000002436 _____ C:\Users\Terence\Desktop\Corentin - Chrome.lnk 2021-03-12 10:24 - 2021-03-12 10:23 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-05-01 17:12 - 2019-03-19 04:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-05-01 13:08 - 2018-03-26 17:12 - 000000000 ____D C:\Users\Terence\AppData\Local\AVAST Software 2021-05-01 12:37 - 2019-01-28 19:04 - 000000000 ____D C:\Users\Terence\AppData\Local\CrashDumps 2021-05-01 12:37 - 2016-05-13 11:42 - 000000000 ____D C:\Program Files\CCleaner 2021-05-01 12:08 - 2020-06-19 20:56 - 000002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-05-01 12:08 - 2020-06-19 20:56 - 000002230 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-05-01 11:58 - 2019-03-19 04:44 - 000000000 ____D C:\WINDOWS\INF 2021-04-30 22:54 - 2019-10-19 20:09 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-04-30 22:54 - 2019-03-19 04:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-04-30 22:53 - 2020-10-15 18:48 - 000151912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2021-04-30 22:53 - 2020-05-03 17:29 - 000378384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2021-04-30 22:53 - 2019-01-28 19:41 - 000292336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2021-04-30 22:53 - 2019-01-28 19:13 - 000206320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2021-04-30 22:53 - 2019-01-28 19:13 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2021-04-30 22:53 - 2019-01-28 19:13 - 000033552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2021-04-30 22:53 - 2018-10-17 15:16 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000386248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000276984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000179032 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000092704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2021-04-30 22:53 - 2018-07-07 21:19 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2021-04-30 22:53 - 2018-06-27 18:59 - 000016816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2021-04-30 22:48 - 2016-05-01 14:31 - 000000000 ____D C:\ProgramData\Origin 2021-04-30 22:43 - 2018-02-25 17:00 - 000000000 ____D C:\Users\Terence\AppData\Local\Origin 2021-04-30 22:34 - 2016-05-13 11:42 - 000000000 ____D C:\Users\Terence\Desktop\scan pc 2021-04-30 22:33 - 2019-10-19 19:50 - 001980602 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-30 22:33 - 2019-03-19 09:18 - 000864782 _____ C:\WINDOWS\system32\perfh00C.dat 2021-04-30 22:33 - 2019-03-19 09:18 - 000177034 _____ C:\WINDOWS\system32\perfc00C.dat 2021-04-30 22:27 - 2019-10-19 19:24 - 000438608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-04-30 22:27 - 2016-05-12 23:18 - 000000000 ____D C:\Program Files\TeamViewer 2021-04-30 22:26 - 2019-10-19 20:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-30 22:25 - 2019-03-19 04:35 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-04-30 22:21 - 2016-04-28 13:19 - 000000000 ____D C:\Program Files\DriverToolkit 2021-04-30 22:21 - 2016-02-01 15:59 - 000000000 ____D C:\rei 2021-04-30 21:49 - 2016-05-13 11:39 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-04-30 21:28 - 2020-06-19 20:55 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-04-30 21:28 - 2020-06-19 20:55 - 000003498 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-04-30 21:12 - 2019-10-19 20:09 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-04-21 20:05 - 2019-10-19 20:09 - 000002214 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-04-21 20:05 - 2019-10-19 20:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-04-21 19:21 - 2019-10-19 20:09 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-04-21 19:21 - 2019-10-19 20:09 - 000003452 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-04-20 13:19 - 2018-03-26 17:14 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2021-04-20 13:19 - 2018-03-26 17:14 - 000002411 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk ==================== Fichiers à la racine de certains dossiers ======== 2019-07-02 19:00 - 2019-07-02 19:00 - 000000017 _____ () C:\Users\Terence\AppData\Roaming\.cache3678791056.dat ==================== SigCheckExt ========================= 2016-07-16 10:25 - 2016-07-16 10:25 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2016-05-01 03:14 - 2016-05-01 03:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-downlevel-version-l1-1-0.dll 2019-10-28 11:17 - 2019-10-28 11:17 - 000302592 _____ (Belgian Government) C:\WINDOWS\system32\beidpkcs11.dll 2019-10-28 11:17 - 2019-10-28 11:17 - 000304128 _____ (Belgian Government) C:\WINDOWS\system32\beid_ff_pkcs11.dll 2016-07-13 00:05 - 2016-07-01 05:39 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 07:45 - 2015-10-30 07:45 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2016-07-16 10:25 - 2016-07-16 10:25 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2018-04-11 22:29 - 2018-04-11 22:29 - 001161216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dml.dll 2018-07-07 20:59 - 2018-07-07 20:59 - 001075712 _____ C:\WINDOWS\system32\FaceProcessor.dll 2018-04-11 22:29 - 2018-04-11 22:29 - 000041472 ____N (Microsoft Corporation) C:\WINDOWS\system32\gamemonitor.dll 2019-07-16 22:44 - 2019-06-20 09:42 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll 2017-03-15 11:22 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 10:26 - 2016-07-16 19:17 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2018-04-11 22:29 - 2018-04-11 22:29 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPPMon.dll 2016-04-28 13:36 - 2010-12-01 09:31 - 000451072 _____ C:\WINDOWS\system32\ISSRemoveSP.exe 2018-04-11 22:29 - 2018-04-11 22:29 - 000022528 ____N (Microsoft Corporation) C:\WINDOWS\system32\MapsTelemetry.dll 2016-05-01 11:23 - 2016-03-31 01:22 - 001155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmlmedia.dll 2016-04-30 04:39 - 2012-08-21 22:12 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\OxpsConverter.exe 2018-04-11 22:29 - 2018-04-11 22:29 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneDataSync.dll 2016-04-30 04:46 - 2015-01-09 04:48 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\powertracker.dll 2016-04-30 04:32 - 2012-04-26 06:41 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrmemptylst.exe 2016-04-28 14:46 - 2009-04-02 10:27 - 000188416 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\RTLExtUI.dll 2016-04-28 14:46 - 2011-07-06 23:33 - 000537088 _____ (Realtek Semiconductor Corp. ) C:\WINDOWS\system32\Rtlihvs.dll 2018-04-11 22:29 - 2018-04-11 22:29 - 000022528 ____N (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvcPAL.dll 2015-10-30 07:45 - 2015-10-30 07:45 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2016-04-30 04:37 - 2015-07-22 18:38 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-04-30 04:31 - 2012-11-29 00:57 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wdfres.dll 2016-07-16 10:25 - 2016-07-16 10:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 10:25 - 2016-07-16 10:25 - 000068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WISPTIS.EXE 2016-04-30 04:40 - 2016-02-12 20:05 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2016-04-28 14:46 - 2009-03-31 14:31 - 000380928 _____ (Realtek) C:\WINDOWS\RtlUI2.exe 2016-05-12 22:20 - 2016-05-12 22:20 - 000003072 _____ C:\WINDOWS\SECOH-QAD.dll 2021-05-01 17:07 - 2021-05-01 17:07 - 002010624 _____ (Farbar) C:\Users\Terence\Desktop\FRST.exe 2021-05-01 14:41 - 2021-05-01 14:41 - 003468440 _____ (Nicolas Coolman) C:\Users\Terence\Desktop\ZHPSuite.exe 2016-05-12 22:30 - 2016-05-12 22:30 - 001107003 _____ (Igor Pavlov) C:\Users\Terence\Downloads\7z1600.exe 2018-03-14 18:33 - 2018-03-14 18:33 - 076736444 _____ (Prixe) C:\Users\Terence\Downloads\Lindo Setup 1.1.6.exe 2018-05-20 23:06 - 2018-05-20 23:08 - 099073109 _____ (Prixe) C:\Users\Terence\Downloads\Lindo.Setup.2.0.1.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=F: description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {73e40ab4-f29d-11e9-bfd1-cb358fbc4633} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {c768ab8a-f295-11e9-8c08-b82cd413ebe5} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {73e40ab4-f29d-11e9-bfd1-cb358fbc4633} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {bac08a5d-3545-11e0-8b61-9d5aa8dcf882} device ramdisk=[C:]\Recovery\bac08a5d-3545-11e0-8b61-9d5aa8dcf882\Winre.wim,{bac08a5e-3545-11e0-8b61-9d5aa8dcf882} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\bac08a5d-3545-11e0-8b61-9d5aa8dcf882\Winre.wim,{bac08a5e-3545-11e0-8b61-9d5aa8dcf882} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {c768ab8a-f295-11e9-8c08-b82cd413ebe5} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{c768ab8b-f295-11e9-8c08-b82cd413ebe5} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{c768ab8b-f295-11e9-8c08-b82cd413ebe5} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {ccb1ae7f-0d33-11e6-b1a4-9a35e929190d} device ramdisk=[C:]\Recovery\ccb1ae7f-0d33-11e6-b1a4-9a35e929190d\Winre.wim,{ccb1ae80-0d33-11e6-b1a4-9a35e929190d} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\ccb1ae7f-0d33-11e6-b1a4-9a35e929190d\Winre.wim,{ccb1ae80-0d33-11e6-b1a4-9a35e929190d} systemroot \windows nx OptIn winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {73e40ab4-f29d-11e9-bfd1-cb358fbc4633} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {c768ab8a-f295-11e9-8c08-b82cd413ebe5} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard pae Yes debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=F: path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {bac08a5e-3545-11e0-8b61-9d5aa8dcf882} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\bac08a5d-3545-11e0-8b61-9d5aa8dcf882\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {c768ab8b-f295-11e9-8c08-b82cd413ebe5} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {ccb1ae80-0d33-11e6-b1a4-9a35e929190d} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\ccb1ae7f-0d33-11e6-b1a4-9a35e929190d\boot.sdi