Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01 Exécuté par papa (administrateur) sur YANNICK (Acer Aspire V3-771) (29-07-2021 13:08:10) Exécuté depuis C:\Users\papa\Desktop Profils chargés: papa Platform: Windows 10 Home Version 2004 19041.1110 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files\Farm2Desktop\Farm2Launch.exe () [Fichier non signé] C:\Program Files\Farm2Desktop\Farmville Two.exe () [Fichier non signé] C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (Dritek System Inc. -> Dritek System INC.) C:\Windows\RfBtnSvc64.exe (EGIS TECHNOLOGY INC. -> Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe (EGIS TECHNOLOGY INC. -> Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.92\GoogleCrashHandler64.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxext.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Kaspersky Lab -> Kaspersky Lab ZAO) C:\Program Files (x86)\Orange\Analyse de vulnérabilité\kss.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingSports_4.54.31792.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Sports.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe (NTI Corporation -> NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realsil Microelectronics Inc.) [Fichier non signé] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [706440 2015-09-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Farmville Two Launcher] => C:\Program Files\Farm2Desktop\Farm2Launch.exe [312832 2021-05-17] () [Fichier non signé] HKLM\...\Run: [Farmville Two Notifications] => C:\Program Files\Farm2Desktop\Farm2Notification\Farm2TaskbarNotifier.exe [385536 2021-05-17] (Zynga Inc.) [Fichier non signé] HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare) HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe" HKU\S-1-5-21-769696743-751697078-3527906357-1002\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony Mobile Communications -> Sony) [Fichier non signé] HKU\S-1-5-21-769696743-751697078-3527906357-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-769696743-751697078-3527906357-1002\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-769696743-751697078-3527906357-1002\...\Run: [KSS] => C:\Program Files (x86)\Orange\Analyse de vulnérabilité\kss.exe [601720 2013-09-17] (Kaspersky Lab -> Kaspersky Lab ZAO) HKU\S-1-5-21-769696743-751697078-3527906357-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-769696743-751697078-3527906357-1090\...\Run: [EPLTarget\P0000000000000002] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIREE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-769696743-751697078-3527906357-1090\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-769696743-751697078-3527906357-1090\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1193176 2012-09-22] (Spotify Ltd -> ) HKU\S-1-5-21-769696743-751697078-3527906357-1090\...\Run: [Avast Browser] => C:\Users\famille\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserUpdateCore.exe [521176 2021-01-26] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-21-769696743-751697078-3527906357-1090\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- microsoft-edge:hxxps://www.msn.com/spar (l'élément de données a 594 caractères en plus). HKU\S-1-5-21-769696743-751697078-3527906357-1090\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Print\Monitors\EPSON XP-302 303 305 306 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMIKE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\WINDOWS\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\WINDOWS\system32\WSPDFelementMonitor.dll [286240 2019-12-30] (Wondershare Technology Co.,Ltd -> Wondershare Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.107\Installer\chrmstp.exe [2021-07-27] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-01-28] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-01-28] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-09-03] ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation -> NTI Corporation) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0246B53D-09CB-4724-BA87-053938F1C892} - \Avast Secure Browser Heartbeat Task (Hourly) -> Pas de fichier <==== ATTENTION Task: {08E5B5A4-083A-4D9E-9887-A47B0654E016} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {0A0323CA-C56E-41C7-9D07-FD25EC5FBE12} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) S-1-5-21-769696743-751697078-3527906357-1090 => C:\Users\famille\AppData\Local\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-07-16] (Avast Software s.r.o. -> AVAST Software) Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {120284DD-A2D5-4A6A-B4FD-FE8B5383376C} - System32\Tasks\{2C6B8AFB-FB14-428B-ABDE-4C081C146F49} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe" -c --uninstall=1 Task: {14238981-97D8-48A3-A470-248B76FCC63A} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.) Task: {1CA48F78-FDB4-457A-86A7-27FF539FFAB3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.) Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {2D197C55-32C5-4EF8-8BCD-10ED4538BD38} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3B82EE64-7F61-44D9-B8A8-D67365A10207} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {3D286C7E-6CC8-4980-B460-8422A42298BB} - System32\Tasks\AdobeAAMUpdater-1.0-Yannick-famille => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {3E43794D-8B50-4F92-8D5D-33B36DD2A5A8} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {4025AF32-5AFD-4A4D-9789-DBD880E0B675} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) Task: {43D62529-A50F-45AF-A91F-8446EEBBF7F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {45B932B3-CCC0-4C24-955C-3C978FA1B998} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4A56260D-E247-42A9-943F-67419F895631} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {54F5A5FC-BD84-4966-A14F-C241F71D2B2B} - System32\Tasks\EPSON XP-342 343 345 Series Update {EC824CB7-6741-4FF4-920C-EEC015CD6558} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {5599CD4F-FC39-4F12-8F32-BE170B4B1F3A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.) Task: {663C69D9-37B0-4ACA-82AB-5E6E7023FCAB} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.) Task: {66626395-A8AA-4C5D-8010-553D9004BEDE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6E98665D-1604-41D5-86CC-C61781E481D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6FB714CF-DC54-435E-B4A7-7CB5416FF62A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {723A3E20-1E9B-43B9-A943-DAFD3321519D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [972184 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) Task: {78BC1AEA-B140-4523-BC22-01DF204360AF} - System32\Tasks\EPSON XP-342 343 345 Series Update {D4A8EA0F-724E-4873-A13F-8FC640748501} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {80639540-70FA-4FB3-A643-079A9C98549C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.) Task: {814FB2F4-AC03-468A-9200-982978E02349} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8EA07EE3-8A7C-4904-BFC0-5D931F728A43} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {99A23B53-04A7-4D61-9140-F13F61E0D289} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-769696743-751697078-3527906357-1090UA => C:\Users\famille\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software) Task: {9B3C764C-9327-40F9-B634-D9F892422A12} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-769696743-751697078-3527906357-1002_0 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [421376 2021-06-09] (Microsoft Windows -> Microsoft Corporation) Task: {9F66F02A-C6EC-4CE1-B600-CF503FE44EF6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform) Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {C57333A9-7945-4DCC-8346-F8D52E08B1F5} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {EAB930C1-266A-4E08-A3F5-E3C261FDBBBA} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [39920 2018-10-24] (Garmin International, Inc. -> ) Task: {F553C72D-DA09-4869-9B8E-357598BBF035} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-769696743-751697078-3527906357-1090Core => C:\Users\famille\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-26] (Avast Software s.r.o. -> AVAST Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-342 343 345 Series Update {D4A8EA0F-724E-4873-A13F-8FC640748501}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE:/EXE:{D4A8EA0F-724E-4873-A13F-8FC640748501} /F:UpdateWORKGROUP\YANNICK$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-342 343 345 Series Update {EC824CB7-6741-4FF4-920C-EEC015CD6558}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSREE.EXE:/EXE:{EC824CB7-6741-4FF4-920C-EEC015CD6558} /F:UpdateWORKGROUP\YANNICK$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0b0fd277-0c47-4075-a5b9-ecff95e20202}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{33e033e7-782b-4614-b544-a6b883a10d85}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fa21c6d9-c6d5-4e6d-b19d-11b07e5218ed}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{fa21c6d9-c6d5-4e6d-b19d-11b07e5218ed}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\papa\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-29] FireFox: ======== FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2012-11-02] (Garmin International, Inc. -> GARMIN Corp.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2013-10-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Pas de fichier] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin HKU\S-1-5-21-769696743-751697078-3527906357-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2013-10-21] (Ubisoft Entertainment Sweden AB -> ) FF Plugin HKU\S-1-5-21-769696743-751697078-3527906357-1090: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Users\famille\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-26] (Avast Software s.r.o. -> AVAST Software) FF Plugin HKU\S-1-5-21-769696743-751697078-3527906357-1090: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Users\famille\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-26] (Avast Software s.r.o. -> AVAST Software) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default [2021-07-29] CHR HomePage: Default -> hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_CH CHR StartupUrls: Default -> "hxxps://www.google.fr/" CHR Extension: (Docs) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-05] CHR Extension: (Google Drive) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-28] CHR Extension: (YouTube) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-06] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-07-28] CHR Extension: (uBlock Origin) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-28] CHR Extension: (Recherche Google) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-11] CHR Extension: (Adobe Acrobat) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-07-29] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-07-29] CHR Extension: (uBlock) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\epcnnfbjfcgphgdmggkamkmgojdagdnn [2020-03-31] CHR Extension: (Farmville2 X-Press) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbgjpdhhnbgmnafojckjmjogcpoinlim [2020-03-31] CHR Extension: (Google Docs hors connexion) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-28] CHR Extension: (Avast Online Security) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-07-29] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-28] CHR Extension: (Gmail) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-07-28] CHR Extension: (Chrome Media Router) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-29] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [104840 2015-09-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3052952 2021-03-17] (Microsoft Corporation -> Microsoft Corporation) R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé] R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé] R2 KSS; C:\Program Files (x86)\Orange\Analyse de vulnérabilité\kss.exe [601720 2013-09-17] (Kaspersky Lab -> Kaspersky Lab ZAO) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation -> NTI Corporation) R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-22] (Dritek System Inc. -> Dritek System INC.) S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Sony Mobile Communications -> Avanquest Software) [Fichier non signé] R2 UpdateService; C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe [1024512 2021-05-17] () [Fichier non signé] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [X] S3 DeviceFastLaneService; "C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe" [X] S3 ePowerSvc; "C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe" [X] S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X] S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X] R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" S2 PMBDeviceInfoProvider; "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe" [X] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2011-05-18] (Hardware Group Test Cert -> Microsoft Corporation) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159800 2021-04-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.) S3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.) S3 MpKsl47bbc0d3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4F48A873-6BFA-4F37-9A20-2F738D668711}\MpKslDrv.sys [107752 2021-07-29] (Microsoft Windows -> Microsoft Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-29 13:08 - 2021-07-29 13:09 - 000034894 _____ C:\Users\papa\Desktop\FRST.txt 2021-07-29 13:07 - 2021-07-29 13:09 - 000000000 ____D C:\FRST 2021-07-29 13:06 - 2021-07-29 13:06 - 002300416 _____ (Farbar) C:\Users\papa\Desktop\FRST64.exe 2021-07-29 08:05 - 2021-07-29 08:11 - 000000000 ____D C:\AdwCleaner 2021-07-29 07:44 - 2021-07-29 07:44 - 000000915 _____ C:\Users\papa\Desktop\ZHPCleaner.lnk 2021-07-29 07:41 - 2021-07-29 07:41 - 008553680 _____ (Malwarebytes) C:\Users\papa\Desktop\adwcleaner_8.3.0.exe 2021-07-29 07:40 - 2021-07-28 08:50 - 003258520 _____ (Nicolas Coolman) C:\Users\papa\Desktop\ZHPCleaner.exe 2021-07-29 07:39 - 2021-07-29 07:39 - 002822118 _____ C:\Users\papa\Desktop\ZHPCleaner.zip 2021-07-29 07:27 - 2021-07-29 07:27 - 000004032 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-769696743-751697078-3527906357-1002_0 2021-07-28 21:47 - 2021-07-28 08:50 - 003473560 _____ (Nicolas Coolman) C:\Users\famille\Desktop\ZHPSuite.exe 2021-07-28 21:46 - 2021-07-28 21:46 - 003017839 _____ C:\Users\famille\Desktop\ZHPSuite.zip 2021-07-28 20:42 - 2021-07-29 08:35 - 000000905 _____ C:\Users\papa\Desktop\ZHPSuite.lnk 2021-07-28 20:31 - 2021-07-28 20:32 - 000000000 ____D C:\Users\famille\Desktop\Nouveau dossier (2) 2021-07-28 17:26 - 2021-07-28 17:26 - 000810681 _____ C:\Users\famille\Downloads\AttestationHebergement.pdf 2021-07-28 17:14 - 2021-07-28 17:15 - 000063528 _____ C:\Users\famille\Downloads\facture_9018820426_2021-07-05.pdf 2021-07-27 21:05 - 2021-07-27 21:05 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-07-22 08:58 - 2021-07-22 08:59 - 000003341 _____ C:\Users\famille\Documents\ActeEtatCivil.pdf 2021-07-20 20:00 - 2021-07-20 20:01 - 000008964 _____ C:\Users\famille\Documents\cc_20210720_200051.reg 2021-07-16 22:44 - 2021-07-16 22:44 - 000000000 ____D C:\Users\papa\AppData\Roaming\com.zynga.f2desktop 2021-07-13 21:05 - 2021-07-13 21:05 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-07-13 21:05 - 2021-07-13 21:05 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-07-13 21:05 - 2021-07-13 21:05 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-07-13 21:05 - 2021-07-13 21:05 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb 2021-07-13 21:03 - 2021-07-13 21:03 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-07-13 21:03 - 2021-07-13 21:03 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-07-10 21:04 - 2021-07-10 21:05 - 1468892608 _____ C:\Users\famille\Downloads\Black.Widow.2021.TRUEFRENCH.HDRip.XviD-Wawacity.bz.avi 2021-07-09 13:41 - 2021-07-09 13:41 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-07-09 13:41 - 2021-07-09 13:41 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-07-09 13:41 - 2021-07-09 13:41 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-07-09 13:41 - 2021-07-09 13:41 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-07-09 13:40 - 2021-07-09 13:40 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-07-09 13:40 - 2021-07-09 13:40 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-07-09 13:39 - 2021-07-09 13:39 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-07-09 13:39 - 2021-07-09 13:39 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-07-09 13:38 - 2021-07-09 13:38 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-07-09 13:38 - 2021-07-09 13:38 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-07-03 21:17 - 2021-07-03 21:19 - 1465527206 _____ C:\Users\famille\Downloads\The.Tomorrow.War.2021.TRUEFRENCH.HDRip.XviD-Wawacity.bz.avi ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-07-29 13:11 - 2020-09-25 00:02 - 000004156 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{CA5A8D05-D3DD-48E9-9A68-CBF05FEF8F8B} 2021-07-29 13:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-29 12:57 - 2020-09-24 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-07-29 12:16 - 2013-06-27 22:38 - 000000000 ____D C:\Program Files (x86)\Google 2021-07-29 10:25 - 2016-01-17 10:07 - 000000000 ____D C:\Program Files\CCleaner 2021-07-29 08:52 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-07-29 08:40 - 2017-11-10 12:32 - 000000000 ____D C:\Users\papa\AppData\Roaming\ZHP 2021-07-29 08:33 - 2019-10-03 18:14 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-07-29 08:30 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-29 08:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-07-29 08:15 - 2015-08-13 17:30 - 000000000 __SHD C:\Users\papa\IntelGraphicsProfiles 2021-07-29 08:13 - 2020-09-25 00:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-07-29 08:13 - 2020-09-24 22:54 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-29 08:13 - 2016-10-01 14:14 - 000000000 ____D C:\ProgramData\NVIDIA 2021-07-29 08:12 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2021-07-29 08:11 - 2017-11-10 18:55 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2021-07-29 08:11 - 2016-12-14 15:47 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2021-07-29 08:11 - 2013-06-30 09:00 - 000000000 ____D C:\Program Files (x86)\Sony 2021-07-29 08:11 - 2012-09-03 08:47 - 000000000 ____D C:\Program Files\Acer 2021-07-29 08:11 - 2012-09-03 08:47 - 000000000 ____D C:\Program Files (x86)\Acer 2021-07-29 08:10 - 2020-09-25 00:02 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-769696743-751697078-3527906357-1002 2021-07-29 08:10 - 2020-09-24 23:02 - 000002439 _____ C:\Users\papa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-29 08:10 - 2013-08-23 21:30 - 000000000 __RDO C:\Users\papa\SkyDrive 2021-07-29 08:01 - 2016-10-17 15:03 - 000000000 ____D C:\Users\papa\AppData\Local\ConnectedDevicesPlatform 2021-07-29 07:44 - 2017-11-10 12:26 - 000000000 ____D C:\Users\papa\AppData\Local\ZHP 2021-07-29 07:09 - 2015-07-31 12:47 - 000000000 __SHD C:\Users\famille\IntelGraphicsProfiles 2021-07-28 22:32 - 2019-02-26 22:11 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-07-28 22:32 - 2017-12-24 01:41 - 000000000 ____D C:\Users\papa\AppData\Local\Packages 2021-07-28 22:25 - 2020-09-25 00:02 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-07-28 22:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-07-28 17:20 - 2020-09-28 23:04 - 000000000 ____D C:\Users\famille\AppData\Local\Deployment 2021-07-25 22:23 - 2021-06-02 20:03 - 000002464 _____ C:\Users\famille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-25 22:23 - 2020-09-25 00:02 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-769696743-751697078-3527906357-1090 2021-07-25 22:23 - 2015-07-31 12:53 - 000000000 ___RD C:\Users\famille\OneDrive 2021-07-24 21:03 - 2020-06-22 07:46 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-21 20:29 - 2019-08-19 17:03 - 000002744 _____ C:\Users\famille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2021-07-20 20:22 - 2013-10-13 10:58 - 000000000 ____D C:\Program Files\Microsoft Office 15 2021-07-20 10:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-07-20 08:28 - 2020-09-17 21:10 - 000000000 ___DC C:\WINDOWS\Panther 2021-07-16 22:41 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-07-16 22:38 - 2018-02-17 21:50 - 000000000 ___RD C:\Users\papa\3D Objects 2021-07-16 22:38 - 2013-06-27 02:07 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-07-16 16:25 - 2020-09-24 23:28 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-07-16 16:25 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat 2021-07-16 16:25 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat 2021-07-16 15:10 - 2020-09-25 00:02 - 000003588 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-07-16 15:10 - 2020-09-25 00:02 - 000003464 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-14 08:55 - 2020-09-24 22:54 - 003122032 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-07-13 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-07-13 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-07-13 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-07-13 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-13 21:27 - 2021-06-01 21:15 - 000000000 ____D C:\Users\famille\Documents\ORANGE BANK 2021-07-13 21:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-07-13 20:28 - 2020-09-17 20:35 - 000000000 ___HD C:\$WinREAgent 2021-07-13 20:17 - 2013-07-14 12:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-07-13 20:10 - 2013-06-29 20:37 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-07-11 21:01 - 2014-06-24 22:46 - 000000000 ____D C:\Users\famille\AppData\Roaming\vlc 2021-07-09 21:03 - 2018-06-29 00:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-07-09 16:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-06-29 20:42 - 2020-09-25 00:02 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-06-29 20:42 - 2020-09-25 00:02 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Fichiers à la racine de certains dossiers ======== 2020-09-28 22:49 - 2020-09-28 22:49 - 000004177 _____ () C:\Program Files (x86)\unins000.dat 2013-07-14 13:48 - 2013-07-14 13:49 - 000036677 _____ () C:\Users\papa\AppData\Roaming\Valeurs séparées par des virgules (DOS).ADR 2019-11-05 10:58 - 2019-11-05 10:58 - 000000000 _____ () C:\Users\papa\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================