Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 03-08-2021 Exécuté par Wartelle (administrateur) sur VAIO (Sony Corporation SVE1713A6EW) (04-08-2021 11:10:05) Exécuté depuis C:\Users\Wartelle\Desktop Profils chargés: Wartelle Platform: Windows 10 Home Version 2004 19041.1110 (X64) Langue: Français (France) Navigateur par défaut: FF Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Atheros) [Fichier non signé] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Wartelle\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <10> (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe <2> (Sony Corporation -> Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe <2> (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Sony Corporation -> Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-10-10] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-06-30] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation -> Sony Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation -> Sony Corporation) HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-10-04] (Intel® Services Manager -> Intel Corporation) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION HKLM\...\Policies\Explorer\Run: [BtvStack] => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" HKU\S-1-5-21-2518016042-4239179178-4311613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35062912 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2518016042-4239179178-4311613-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31046640 2020-08-20] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP DeskJet 3630 series): C:\WINDOWS\system32\HPDiscoPME311.dll [803848 2015-04-09] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.) HKLM\...\Print\Monitors\PCL hpz3lw72: C:\WINDOWS\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.107\Installer\chrmstp.exe [2021-07-21] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.125\Installer\chrmstp.exe [2021-07-19] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6960.198\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2012-12-28] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2012-12-28] (Qualcomm Atheros -> Qualcomm Atheros Commnucations) [Fichier non signé] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0632FC9F-DFF1-47E2-84F3-600FBF6367B1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {13E77490-505F-42DC-95D4-4FC38A14C0E9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-07-02] (Avast Software s.r.o. -> AVAST Software) Task: {186091BD-3CEB-40C4-9C6D-B700D0DBAFDB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {190DBC6B-C102-42D3-AB53-EF63F6E92A02} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544 2012-07-24] (CyberLink -> CyberLink Corp.) Task: {1B285216-0531-4B20-BB0A-8742AE397AAA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29136000 2021-07-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GarminUpdaterTask" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-2518016042-4239179178-4311613-1001" /ENABLE Task: {1C1E2B96-38C5-40A7-826A-040A473886C5} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {223C377D-57DD-4A03-A810-697CDF9209EF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {2363F92D-933F-4A41-818D-5E954C5E6F79} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {24D1CA6F-438F-4C5E-A306-3974B7CF3642} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [1210856 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {28A74ADF-98E2-4F76-A46B-523B9CBD7960} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [503424 2014-11-17] (Sony Corporation -> Sony Corporation) Task: {28B6A249-0FE8-4A9E-9737-233F42667365} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {299669BC-DDCC-4465-B64C-B37376B79455} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [503424 2014-11-17] (Sony Corporation -> Sony Corporation) Task: {30B3C005-1170-4F7B-B48E-2F2917ED13CF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3ACE1977-8BC4-4E9A-A6AC-89849C8CBABA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {4BBA5E42-7E6A-416C-A016-9E057FE3855E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.) Task: {58F482EC-1B96-44A1-98B9-B79CA4359FE6} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe [1688152 2013-09-28] (Sony Corporation -> Sony Corporation) Task: {58FDF7E3-A98E-4F3B-BDE7-02AE00C07D6E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {637DDCAC-38B9-44B0-9C1B-A0B20BADAA38} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION Task: {63E3C1AF-C74C-4A1C-A70E-8D7A3CCAADE0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4903192 2021-06-30] (Avast Software s.r.o. -> AVAST Software) Task: {64DCA3D4-7626-48D3-BE30-77973CE12384} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [52712 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {666EF872-5BFD-420B-8074-2AAF4FA0DCF5} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {6A827241-1DED-4CDA-973F-A0023AD3102C} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6E20E07F-99E0-4196-BEC4-BE84764C286B} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-23] (Mozilla Corporation -> Mozilla Foundation) Task: {6F114FF2-DBE2-440D-B52B-FDA8E7B6F61D} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [3152360 2019-11-08] (Sony Corporation -> Sony Corporation) Task: {70AA58F0-8CBC-4433-9B9B-0CD580965C43} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {73074BD3-9AD6-4406-866F-010C858696F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc -> Google Inc.) Task: {7E1D3C83-A111-49E0-A0DE-E80E0D4C3C06} - System32\Tasks\Sony Corporation\VAIO Care\UpdateContacts => C:\ProgramData\Sony Corporation\VAIO Care\UpdateContacts.exe Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {96B42DF4-24F2-489E-BAF2-F25E5B139230} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {9A89C78D-E258-42D3-ADB8-6988E0E13E64} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_403_Plugin.exe [1475640 2020-08-11] (Adobe Inc. -> Adobe) Task: {9C41A5EC-F56C-455E-905E-295D7F84B133} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {9F50ED52-73FA-4CE8-9010-43FA4B64CA7D} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2020-08-20] (Garmin International, Inc. -> ) Task: {A601E597-52F9-4E24-8610-B5D59A517033} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {ADBA9037-4334-47E2-986B-DC61BE17B335} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-06] (Sony Corporation -> Sony Corporation) Task: {B9C7FFD0-6CA6-4F87-9E90-56942A3D1E92} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {BB851357-EA44-4931-8668-C1B0F7E35FE3} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) Task: {bc16fed7-6f02-4493-bda5-992efc2c5bd8} - pas de chemin du fichier Task: {BDE30690-2746-4BD8-805B-41E0A8205DBF} - \WPD\SqmUpload_S-1-5-21-2518016042-4239179178-4311613-1001 -> Pas de fichier <==== ATTENTION Task: {C0D2CF67-3FCD-4A3D-932F-AE2C7A10E0B9} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [735400 2012-10-23] (Sony Corporation -> Sony Corporation) Task: {C2A42B87-3FE0-493A-A6AE-F093DB662B06} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [976552 2012-08-14] (Sony Corporation -> Sony Corporation) Task: {C687F765-1DF5-4C61-9D65-32FB0B6FCE00} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2277640 2021-07-02] (Avast Software s.r.o. -> AVAST Software) Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D0D707E1-36F6-4D55-BBBF-3E739FFA47B6} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe Task: {D110A9DD-9C28-4DD8-853F-1F0D28AD7527} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {D89E0CFF-2475-4C52-8C47-98793EAD9DA1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe) Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {DBDABD4C-1368-4247-8EE9-5BA31269FFDC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {E412CE36-CB3C-41D7-A43E-4693B9812DD1} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusCreate => C:\Program Files\Sony\BP Checker\BPChecker.exe [47672 2016-11-29] (Sony Corporation -> Sony Corporation) Task: {E466F3FA-724F-4E6E-89CC-BD52B7B8DB3E} - System32\Tasks\Sony Corporation\BP Checker\CheckBPStatusLogon => C:\Program Files\Sony\BP Checker\BPChecker.exe [47672 2016-11-29] (Sony Corporation -> Sony Corporation) Task: {E5AF35B6-F470-408B-9B8D-02BD5E3269B2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {E74C2AD2-5E6F-449F-BD66-5D565B4C2066} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-07-16] (Piriform Software Ltd -> Piriform) Task: {EFA21DA3-F84B-47C3-9DDC-0BA60850F807} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [1005144 2016-03-04] (Sony Corporation -> Sony Corporation) Task: {F498EA94-DDCE-4D05-AD57-2277FEEFBB39} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [538280 2012-09-06] (Sony Corporation -> Sony Corporation) Task: {FC4B5CC2-A9F4-4CE8-B0C2-8C9033307108} - System32\Tasks\HPCustParticipation HP DeskJet 3630 series => C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPCustPartic.exe [6016008 2015-04-09] (Hewlett Packard -> Hewlett-Packard Development Company, LP) Task: {FE2A4CBA-2548-4CBE-91BC-4360A1E73575} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Wartelle\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{d6a5909c-3c05-4e4d-bdd5-21cb85d44e76}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{d96160ff-eea4-4f64-990c-fd3ef63a695f}: [DhcpNameServer] 43.198.130.246 43.198.130.247 Edge: ======= Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge Profile: C:\Users\Wartelle\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-04] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Wartelle\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-08-03] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: b82ppfea.default-1516616748086 FF ProfilePath: C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086 [2021-08-04] FF Homepage: Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086 -> hxxps://r.orange.fr/r/Oodc_oi_promoHP?ref=O_OI_defaultPage_FFe64_w10e64_promoHP FF Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-06-24] FF Extension: (Infos Social) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\plugin@plghowtwifr.xpi [2019-03-04] FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\sp@avast.com.xpi [2020-10-29] FF Extension: (Avast Online Security) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\wrc@avast.com.xpi [2020-04-30] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json] FF Extension: (albator mothership) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\{13c9e1a1-aefc-49fe-9102-b71ed518df73}.xpi [2021-08-03] FF Extension: (Malwarebytes Browser Guard) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-07-27] FF Extension: (African Heat) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\{84241115-0cc0-4794-be6e-654715867435}.xpi [2021-08-03] FF Extension: (Albator) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\{84ded0d8-821e-4f37-8259-cc6753eec912}.xpi [2021-08-03] FF Extension: (Beach chairs - Jen) - C:\Users\Wartelle\AppData\Roaming\Mozilla\Firefox\Profiles\b82ppfea.default-1516616748086\Extensions\{d131036c-f86e-42b1-8386-9a4f47596b24}.xpi [2021-08-03] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_403.dll [2020-08-11] (Adobe Inc. -> ) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_403.dll [2020-08-11] (Adobe Inc. -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default [2021-08-03] CHR HomePage: Default -> orange.fr CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default CHR DefaultSearchKeyword: Default -> Yahoo CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10 CHR Extension: (Slides) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-24] CHR Extension: (Docs) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-24] CHR Extension: (Google Drive) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-25] CHR Extension: (YouTube) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-20] CHR Extension: (Recherche Google) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-21] CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-01-25] CHR Extension: (Sheets) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-24] CHR Extension: (Google Docs hors connexion) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-25] CHR Extension: (Avast Online Security) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-01-25] CHR Extension: (Yahoo Partner) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2017-08-17] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-01-25] CHR Extension: (Yahoo Partner) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpedbdniajflhgfoipnjkednnlkngbj [2017-08-17] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-25] CHR Extension: (Orange page d'accueil) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2021-01-25] CHR Extension: (Gmail) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-25] CHR Extension: (Chrome Media Router) - C:\Users\Wartelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [njpedbdniajflhgfoipnjkednnlkngbj] CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; c:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-11] (Adobe Inc. -> Adobe) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8249936 2021-06-30] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [625432 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [373528 2021-06-30] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\91.1.10672.125\elevation_service.exe [1421288 2021-07-02] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-07-16] (Malwarebytes Inc -> Malwarebytes) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé] S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation -> Sony Corporation) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation -> Sony Corporation) S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation) [Fichier non signé] R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1744872 2019-11-08] (Sony Corporation -> Sony Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\NisSrv.exe [3285864 2020-02-29] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MsMpEng.exe [103168 2020-02-29] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-12-28] (Atheros) [Fichier non signé] ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [216928 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [366616 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250392 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [182600 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [524400 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851192 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [471920 2021-06-30] (Avast Software s.r.o. -> AVAST Software) S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215384 2021-06-30] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327536 2021-06-30] (Avast Software s.r.o. -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-08-04] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-24] (Malwarebytes Inc -> Malwarebytes) S3 semav6thermal64ro; C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [13792 2015-07-30] (SEMA Software -> ) R3 SFEP; C:\WINDOWS\System32\drivers\SFEP.sys [14336 2012-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation) R3 SOWS; C:\WINDOWS\System32\drivers\sows.sys [24280 2012-06-11] (WDKTestCert kaneda,129651282666891607 -> Sony Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376544 2020-02-29] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-29] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-04 11:10 - 2021-08-04 11:12 - 000040338 _____ C:\Users\Wartelle\Desktop\FRST.txt 2021-08-04 11:06 - 2021-08-04 11:11 - 000000000 ____D C:\FRST 2021-08-04 11:03 - 2021-08-04 11:03 - 002300416 _____ (Farbar) C:\Users\Wartelle\Desktop\FRST64.exe 2021-08-04 10:58 - 2021-08-04 10:57 - 000366671 _____ C:\Users\Wartelle\Desktop\ZHPDiag.txt 2021-08-04 10:42 - 2021-08-04 10:57 - 000000000 ____D C:\Users\Wartelle\AppData\Roaming\ZHP 2021-08-04 10:42 - 2021-08-04 10:42 - 000000902 _____ C:\Users\Wartelle\Desktop\ZHPSuite.lnk 2021-08-04 10:42 - 2021-08-04 10:42 - 000000000 ____D C:\Users\Wartelle\AppData\Local\ZHP 2021-08-04 10:41 - 2021-08-04 10:41 - 000000000 ____D C:\Users\Wartelle\Desktop\ZHPSuite 2021-08-04 10:40 - 2021-08-04 10:40 - 003017839 _____ C:\Users\Wartelle\Downloads\ZHPSuite.zip 2021-08-04 10:40 - 2021-08-04 10:40 - 003017839 _____ C:\Users\Wartelle\Desktop\ZHPSuite.zip 2021-08-04 08:00 - 2021-08-04 08:04 - 000000000 ____D C:\Users\Wartelle\Desktop\Nouveau dossier 2021-08-04 07:15 - 2021-08-04 07:15 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-07-31 07:45 - 2021-07-31 07:46 - 000000000 ____D C:\Users\Wartelle\Documents\covid 2021-07-23 15:14 - 2021-07-23 15:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-07-23 10:13 - 2021-08-01 07:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2021-07-17 08:09 - 2021-07-17 08:09 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-07-17 08:09 - 2021-07-17 08:09 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-07-17 08:09 - 2021-07-17 08:09 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb 2021-07-17 08:08 - 2021-07-17 08:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-07-17 08:06 - 2021-07-17 08:06 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-07-17 08:02 - 2021-07-17 08:02 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-07-12 07:18 - 2021-07-12 07:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-07-12 07:18 - 2021-07-12 07:18 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-07-12 07:18 - 2021-07-12 07:18 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-07-12 07:17 - 2021-07-12 07:17 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-07-12 07:17 - 2021-07-12 07:17 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-07-12 07:17 - 2021-07-12 07:17 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-07-12 07:13 - 2021-07-12 07:13 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-07-12 07:13 - 2021-07-12 07:13 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-07-12 07:11 - 2021-07-12 07:11 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-07-12 07:11 - 2021-07-12 07:11 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-07-10 11:00 - 2021-07-10 11:07 - 000000000 ____D C:\Users\Wartelle\Downloads\Nouvelles 2021-07-10 10:54 - 2021-07-10 10:55 - 023441420 _____ C:\Users\Wartelle\Downloads\Nouvelles.zip 2021-07-08 10:10 - 2021-07-08 10:10 - 000413221 _____ C:\Users\Wartelle\Downloads\eBL_9450347724993.pdf 2021-07-07 00:17 - 2021-07-07 00:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-07-07 00:17 - 2021-07-07 00:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-07-07 00:15 - 2021-07-07 00:15 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-07-07 00:15 - 2021-07-07 00:15 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-07-07 00:15 - 2021-07-07 00:15 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-07-07 00:15 - 2021-07-07 00:15 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-07-07 00:13 - 2021-07-07 00:13 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-07-07 00:13 - 2021-07-07 00:13 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-07-07 00:12 - 2021-07-07 00:12 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-07-07 00:12 - 2021-07-07 00:12 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-07-07 00:12 - 2021-07-07 00:12 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-07-02 06:51 - 2021-07-02 06:51 - 000139740 _____ C:\Users\Wartelle\Downloads\Evolution_convention_de_compte_Particuliers_20210625_289871023_zcM1ceJ0.pdf 2021-06-30 16:24 - 2021-06-30 16:18 - 000339736 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2021-06-30 16:22 - 2021-06-30 16:19 - 000215384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2021-06-27 10:51 - 2021-06-27 10:51 - 000289796 _____ C:\Users\Wartelle\Documents\Scan wd 12 05 2021.pdf 2021-06-24 10:16 - 2021-06-24 10:16 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-06-06 16:56 - 2021-06-06 16:57 - 011558053 _____ C:\Users\Wartelle\Downloads\Photos pavots.zip 2021-05-29 11:05 - 2021-05-29 11:05 - 000189154 _____ C:\Users\Wartelle\Downloads\Compte-Rendu PDF_1200254773.pdf 2021-05-14 13:08 - 2021-05-16 16:00 - 000000000 ____D C:\Users\Wartelle\Desktop\petits-enfants Gérald 2021-05-13 08:00 - 2021-05-13 08:00 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-05-13 07:59 - 2021-05-13 07:59 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-05-13 07:58 - 2021-05-13 07:58 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-05-13 07:55 - 2021-05-13 07:55 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-05-13 07:55 - 2021-05-13 07:55 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-05-11 07:04 - 2021-05-11 07:04 - 000195918 _____ C:\Users\Wartelle\Downloads\Compte-Rendu PDF_1200236811.pdf 2021-05-10 16:31 - 2021-05-10 16:31 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-05-10 15:59 - 2021-05-10 15:59 - 000079001 _____ C:\Users\Wartelle\Downloads\pdf(1) ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-08-04 11:12 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-04 10:25 - 2020-08-21 17:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-08-04 09:07 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-04 09:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-08-04 07:50 - 2018-04-05 07:04 - 000000000 ____D C:\Users\Wartelle\AppData\Local\AVAST Software 2021-08-04 07:39 - 2020-08-21 18:29 - 000003622 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-04 07:39 - 2020-08-21 18:29 - 000003576 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-04 07:39 - 2020-08-21 18:29 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-08-04 07:39 - 2020-08-21 18:29 - 000003398 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-04 07:39 - 2020-08-21 18:29 - 000003352 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-04 07:39 - 2020-08-21 18:29 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-08-04 07:39 - 2020-08-21 18:29 - 000002910 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2518016042-4239179178-4311613-1001 2021-08-04 07:39 - 2020-08-21 18:29 - 000002762 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2021-08-04 07:39 - 2020-08-21 18:29 - 000002274 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-08-04 07:39 - 2020-08-21 18:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2021-08-04 07:33 - 2017-03-17 21:39 - 000000000 ____D C:\Program Files\CCleaner 2021-08-04 07:30 - 2014-11-06 20:54 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-04 07:21 - 2014-11-06 21:45 - 000000000 ____D C:\ProgramData\Mozilla 2021-08-04 07:19 - 2016-11-18 14:20 - 000000000 ____D C:\Users\Wartelle\AppData\LocalLow\Mozilla 2021-08-04 07:15 - 2014-11-16 13:30 - 000000000 __SHD C:\Users\Wartelle\IntelGraphicsProfiles 2021-08-04 07:15 - 2014-11-06 20:45 - 000000000 ____D C:\ProgramData\AVAST Software 2021-08-04 07:14 - 2018-09-06 11:08 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-08-04 07:13 - 2020-08-21 18:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-08-04 07:13 - 2020-08-21 17:40 - 000008192 ___SH C:\DumpStack.log.tmp 2021-08-03 20:46 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2021-08-03 19:56 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-08-03 19:43 - 2014-11-06 11:01 - 000000000 ____D C:\Users\Wartelle\AppData\Local\CrashDumps 2021-08-01 08:18 - 2020-06-28 08:02 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-08-01 08:18 - 2020-06-28 08:02 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-08-01 07:06 - 2014-11-06 21:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-07-31 07:47 - 2020-11-25 16:09 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-07-28 07:36 - 2020-08-21 18:29 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-07-24 10:36 - 2020-08-21 17:44 - 000002456 _____ C:\Users\Wartelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-24 10:36 - 2016-03-20 19:18 - 000000000 ___RD C:\Users\Wartelle\OneDrive 2021-07-23 15:13 - 2014-11-06 21:45 - 000001351 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-07-19 15:15 - 2018-04-05 07:14 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2021-07-19 15:15 - 2018-04-05 07:14 - 000002461 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk 2021-07-19 06:32 - 2020-08-21 18:06 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-07-19 06:32 - 2019-12-07 16:49 - 000793016 _____ C:\WINDOWS\system32\perfh00C.dat 2021-07-19 06:32 - 2019-12-07 16:49 - 000150146 _____ C:\WINDOWS\system32\perfc00C.dat 2021-07-19 06:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-07-18 19:37 - 2020-08-21 17:40 - 000290304 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-07-18 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-07-18 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-07-18 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-07-18 19:31 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-17 10:47 - 2014-11-06 11:30 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-07-17 10:33 - 2014-11-06 11:30 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-07-16 07:50 - 2020-08-22 07:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-07-16 07:50 - 2020-08-22 07:06 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-07-15 08:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-07-12 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-07-12 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-07-12 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-07-12 18:50 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-07-12 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-07-12 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-07-12 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-07-12 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-07-11 06:23 - 2018-03-25 12:45 - 000000000 ____D C:\Users\Wartelle\AppData\Local\PlaceholderTileLogoFolder 2021-07-10 11:08 - 2017-12-12 10:49 - 000000000 ____D C:\Users\Wartelle\AppData\Local\Packages 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-07-07 19:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-07-05 16:50 - 2021-01-24 16:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Fichiers à la racine de certains dossiers ======== 2017-12-24 12:13 - 2019-04-13 15:10 - 000000121 _____ () C:\Users\Wartelle\AppData\Roaming\D2Info0 2017-12-24 12:13 - 2019-04-13 15:41 - 000000008 _____ () C:\Users\Wartelle\AppData\Roaming\DofusAppId0_1 2019-04-13 15:10 - 2019-04-13 15:41 - 000000008 _____ () C:\Users\Wartelle\AppData\Roaming\DofusAppId0_2 2015-03-22 20:37 - 2015-03-22 20:37 - 000004608 _____ () C:\Users\Wartelle\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ==================== SigCheckExt ========================= 2016-07-16 13:42 - 2016-07-16 13:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 13:45 - 2013-08-22 13:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 13:43 - 2013-08-22 13:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2012-12-28 13:09 - 2012-12-28 13:09 - 000361600 _____ (Qualcomm Atheros Commnucations) C:\WINDOWS\system32\AthCredentialProvider.dll 2014-11-10 13:34 - 2014-10-22 05:33 - 000581016 _____ C:\WINDOWS\system32\AutoUpdate.exe 2016-07-13 19:43 - 2016-07-01 05:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-13 13:14 - 2017-03-28 07:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2015-03-03 18:59 - 2014-10-29 03:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2015-03-03 20:26 - 2014-10-29 03:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-07-23 10:55 - 2010-07-23 10:55 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll 2010-07-23 10:55 - 2010-07-23 10:55 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll 2010-07-23 10:55 - 2010-07-23 10:55 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll 2010-07-23 10:55 - 2010-07-23 10:55 - 000057344 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll 2010-07-23 10:55 - 2010-07-23 10:55 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll 2010-01-19 16:12 - 2010-01-19 16:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL 2009-11-27 13:15 - 2009-11-27 13:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000079872 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000054784 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll 2017-05-10 20:06 - 2017-03-04 08:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 13:43 - 2016-07-17 00:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2014-11-18 08:38 - 2014-07-10 06:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lockscreencn.dll 2016-04-13 20:05 - 2016-03-29 09:57 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib(1704).dll 2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2015-09-13 20:32 - 2015-07-22 16:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2016-02-13 14:52 - 2016-02-13 14:52 - 001268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources(1705).dll 2015-04-15 12:55 - 2015-03-14 03:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2013-08-22 06:17 - 2013-08-22 06:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2014-11-03 15:23 - 2012-10-10 04:02 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll 2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-08-06 12:13 - 2010-08-06 12:13 - 000050688 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll 2010-08-06 12:13 - 2010-08-06 12:13 - 000034816 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll 2017-03-17 08:21 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-07-16 13:44 - 2016-07-17 00:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2012-04-20 14:59 - 2012-04-20 14:59 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll 2014-11-03 16:24 - 2014-11-03 16:24 - 000074703 _____ C:\WINDOWS\SysWOW64\mfc45.dll 2015-10-30 09:19 - 2016-09-15 07:21 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 09:19 - 2016-09-15 07:21 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2000-04-03 21:05 - 2000-04-03 21:05 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmpgr.dll 2003-03-18 21:14 - 2014-11-20 09:05 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2003-02-21 05:42 - 2014-11-20 09:05 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2021-08-04 11:03 - 2021-08-04 11:03 - 002300416 _____ (Farbar) C:\Users\Wartelle\Desktop\FRST64.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {4f3256c1-6358-11e4-be69-806e6f6e6963} {4f3256c0-6358-11e4-be69-806e6f6e6963} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {dee6142d-e3cc-11ea-8d54-9537f4c5d346} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {4f3256c0-6358-11e4-be69-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {4f3256c1-6358-11e4-be69-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager Chargeur de d‚marrage Windows ----------------------------- identificateur {4772aee7-6358-11e4-be7c-b9078ca9441e} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4772aee8-6358-11e4-be7c-b9078ca9441e} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{4772aee8-6358-11e4-be7c-b9078ca9441e} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {d261afd3-e3c4-11ea-8147-a5ab0d29f6ce} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{d261afd4-e3c4-11ea-8147-a5ab0d29f6ce} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{d261afd4-e3c4-11ea-8147-a5ab0d29f6ce} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {d261afd3-e3c4-11ea-8147-a5ab0d29f6ce} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {dee6142d-e3cc-11ea-8d54-9537f4c5d346} nx OptIn bootmenupolicy Standard Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {dee6142d-e3cc-11ea-8d54-9537f4c5d346} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {d261afd3-e3c4-11ea-8147-a5ab0d29f6ce} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {d261afd4-e3c4-11ea-8147-a5ab0d29f6ce} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================