Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-09-2021 02 Exécuté par mon (administrateur) sur CMOH (MSI MS-7699) (23-09-2021 00:25:11) Exécuté depuis C:\Users\mon\Desktop Profils chargés: mon Platform: Windows 7 Home Premium N Service Pack 1 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <120> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Image-Line) [Fichier non signé] C:\Program Files (x86)\Image-Line\FL Studio 20BIS\FL64.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avpui.exe (Learnpulse SAS -> Learnpulse) C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FXSSVC.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare software CO., LIMITED -> Wondershare) HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-847412122-3613364229-1939289013-1000\...\Run: [Screenpresso] => C:\Users\mon\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [16882416 2021-08-06] (Learnpulse SAS -> Learnpulse) HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-01-13] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\System32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\HP C611 Status Monitor: C:\Windows\System32\hpinkstsC611LM.dll [333344 2013-05-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet 4630 series): C:\Windows\System32\HPDiscoPMC611.dll [763912 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-15] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome Startup: C:\Users\mon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk [2021-08-28] ShortcutAndArgument: Alertes de surveillance de l'encre - HP Officejet 4630 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet 4630 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN444392490628;CONNECTION=USB;MONITOR=1; Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1C6D9B2F-328B-48D0-A159-FA6C4689838A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7347928 2017-02-08] (Piriform Ltd -> Piriform Ltd) Task: {3D9D1CAD-DB54-4452-A14C-F88EC2E2A574} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3DECA236-2DC9-4C4C-A272-985DAEB80EFB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4A1361C9-E6E8-4DB0-AE47-FD99117360B9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1542080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4F13501B-52E4-4840-BD92-3910BE56F304} - System32\Tasks\HPCustPartic.exe_{ACBEDD4C-7C06-440E-BD2E-815121DA1076} => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) Task: {6B0343F2-51A0-4DD7-9581-63599FD11979} - System32\Tasks\AdobeAAMUpdater-1.0-mon-PC-mon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {713FA77D-D358-4171-B62D-ADD2F3F96696} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8207BC22-9C15-4517-BC40-73A58A8C07DA} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-30] (AVG Technologies USA, LLC -> AVG Technologies) Task: {86795BA1-D20B-415E-A519-EACDF05ADAE2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC) Task: {8A07D386-7B37-4CDC-BD2B-2C704DA3EDED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [960448 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A9392F29-310B-4A72-A6CD-EA2F26B84E48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [655296 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B4BB44D2-AE8A-48F6-A3CA-EC789039959A} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728000 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B6309AE2-57FD-419D-9855-898B776AC531} - System32\Tasks\HPCustParticipation HP Officejet 4630 series => C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5745672 2014-07-21] (Hewlett Packard -> Hewlett-Packard Development Company, LP) Task: {DB6F9F29-95CC-449B-9738-0E1281C8D89F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC) Task: {EED40F34-2885-4818-B696-3BAE56CF9D92} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {F244E365-3DF6-4F29-B02E-0AB0C6822311} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{1D107173-5407-43E9-BB24-2E5FB493B098}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{A4983D26-298D-4536-A3F6-76300EC9D9F5}: [NameServer] 8.8.8.8,8.8.4.4 Edge: ======= Edge Profile: C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-23] Edge HomePage: Default -> hxxp://google/ Edge Extension: (Kaspersky Protection) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-06-29] Edge Extension: (Kaspersky Protection 20.0) - C:\Users\mon\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-06-29] Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKU\S-1-5-21-847412122-3613364229-1939289013-501\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] FireFox: ======== FF DefaultProfile: j4g180nl.default FF ProfilePath: C:\Users\mon\AppData\Roaming\Mozilla\Firefox\Profiles\j4g180nl.default [2021-09-22] FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-09-01] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-09-01] <==== ATTENTION Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default [2021-09-23] CHR Notifications: Default -> hxxps://bricolage.linternaute.com; hxxps://digitalpainting.school; hxxps://drive.google.com; hxxps://forum-auto.caradisiac.com; hxxps://fr.aliexpress.com; hxxps://mail.google.com; hxxps://outlook.live.com; hxxps://web.whatsapp.com; hxxps://www.zbrushcentral.com CHR Session Restore: Default -> est activé. CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01] CHR Extension: (Dark Reader) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2021-09-21] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-10] CHR Extension: (Video Speed Controller) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2021-08-28] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\mon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-12] CHR Profile: C:\Users\mon\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-26] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKU\S-1-5-21-847412122-3613364229-1939289013-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg] CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1364904 2017-12-19] (Autodesk, Inc. -> Autodesk Inc.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [Fichier non signé] R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2021-04-08] (Shenzhen Moyea Software -> Leawo Software) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé] S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-06-08] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-03-01] (Kaspersky Lab -> AO Kaspersky Lab) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-07-29] (Malwarebytes Inc -> Malwarebytes) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [118184 2018-05-14] (Alcorlink Corp. -> ) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [657696 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1400600 2021-03-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [245752 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [283144 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [108600 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [216576 2021-09-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtpt64.sys [16384 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbs64.sys [14848 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmdm64.sys [17408 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [216056 2020-08-18] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-11] (Malwarebytes Inc -> Malwarebytes) R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [23552 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corp.) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.) U3 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-23 00:25 - 2021-09-23 00:28 - 000023748 _____ C:\Users\mon\Desktop\FRST.txt 2021-09-22 23:21 - 2021-09-23 00:26 - 000000000 ____D C:\FRST 2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe 2021-09-22 22:10 - 2021-09-22 22:10 - 000361077 _____ C:\Users\mon\Desktop\ZHPDiag.txt 2021-09-22 21:51 - 2021-09-22 21:51 - 000000000 ____D C:\Users\mon\AppData\Local\ZHP 2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe 2021-09-19 13:19 - 2021-09-20 12:35 - 000262144 ____H C:\Windows\MEMORY.DMP 2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ C:\Users\mon\AppData\Local\recently-used.xbel 2021-09-15 19:22 - 2021-09-15 19:22 - 000283144 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys 2021-09-15 19:21 - 2021-09-15 19:21 - 000245752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys 2021-09-15 19:21 - 2021-09-15 19:21 - 000216576 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys 2021-09-15 19:21 - 2021-09-15 19:21 - 000108600 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys 2021-09-07 23:18 - 2021-09-07 23:42 - 000000276 _____ C:\Users\mon\Desktop\MEMORY.txt 2021-08-27 00:52 - 2021-09-03 13:19 - 000000000 ____D C:\Users\mon\.dvdcss 2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ C:\Users\mon\AppData\Local\kritadisplayrc 2021-08-07 21:50 - 2021-08-07 21:50 - 000000000 ____D C:\Program Files (x86)\winmorphh 2021-08-06 03:20 - 2021-07-06 18:07 - 000493283 _____ C:\Users\mon\Downloads\High-profile-hat_Template.psd 2021-08-06 03:20 - 2021-07-06 18:07 - 000122159 _____ C:\Users\mon\Downloads\High-profile-hat_Template.ai 2021-08-06 01:18 - 2021-08-06 01:18 - 000000000 ____D C:\Users\mon\Downloads\Nouveau dossier (5) 2021-08-01 01:05 - 2021-08-01 01:05 - 000000000 _____ C:\Users\mon\Desktop\Nouveau document texte.txt 2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ C:\Users\mon\AppData\Roaming\PureRef.ini 2021-07-11 20:05 - 2021-07-11 20:05 - 000000000 ___RD C:\Users\mon\Documents\Scanned Documents 2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\Users\Public\Desktop\Kaspersky Password Manager.lnk 2021-07-08 21:41 - 2021-07-08 21:41 - 000001154 _____ C:\ProgramData\Desktop\Kaspersky Password Manager.lnk 2021-07-08 21:40 - 2021-07-08 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Password Manager 2021-06-30 23:39 - 2021-09-20 02:50 - 000001484 _____ C:\Users\mon\Desktop\Installez Kaspersky VPN Secure Connection de version 21.3.10.391.lnk 2021-06-29 23:40 - 2021-06-29 23:40 - 000230441 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL (1).pdf 2021-06-29 23:10 - 2021-06-29 23:10 - 000198846 _____ C:\Users\mon\Documents\QUESTIONNAIRE MEDICAL.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2021-09-23 00:18 - 2017-01-10 17:31 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-22 22:10 - 2019-06-27 23:06 - 000000000 ____D C:\Users\mon\AppData\Roaming\ZHP 2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-09-22 20:02 - 2009-07-14 06:50 - 000027104 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-09-22 12:25 - 2017-01-12 04:19 - 000000000 ____D C:\ProgramData\NVIDIA 2021-09-22 02:14 - 2019-02-02 03:58 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-09-18 22:28 - 2017-01-07 16:19 - 000000000 ____D C:\Users\mon 2021-09-18 02:45 - 2020-04-09 19:23 - 000000000 ____D C:\Users\mon\AppData\Roaming\Adobe 2021-09-18 02:45 - 2017-01-30 23:14 - 000000000 ____D C:\Users\mon\AppData\Local\Adobe 2021-09-17 12:52 - 2021-04-08 22:14 - 000000000 ____D C:\Users\mon\AppData\Roaming\vlc 2021-09-17 12:52 - 2019-12-10 01:03 - 000000000 ____D C:\Users\mon\Documents\My CamStudio Videos 2021-09-17 00:24 - 2020-06-26 13:38 - 000002227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-09-17 00:24 - 2020-06-26 13:38 - 000002186 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk 2021-09-15 22:12 - 2017-01-17 12:22 - 000000000 ____D C:\Windows\system32\MRT 2021-09-15 22:02 - 2017-01-17 12:22 - 135637312 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-09-15 02:17 - 2017-08-30 23:03 - 000000132 _____ C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs 2021-09-07 22:14 - 2018-02-19 00:21 - 000000757 _____ C:\Users\mon\Desktop\futurs achats.txt 2021-08-30 22:45 - 2017-01-12 20:53 - 000803176 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2021-08-28 19:33 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-08-26 21:47 - 2019-06-05 01:41 - 000000000 ____D C:\Users\mon\AppData\Roaming\dvdcss 2021-08-24 00:44 - 2020-12-27 02:58 - 000000000 ____D C:\Users\mon\Documents\KINGSIZEFIGS DOCUMENTATION ==================== Fichiers à la racine de certains dossiers ======== 2020-12-03 03:51 - 2020-12-03 03:51 - 018398304 _____ (Learnpulse) C:\Users\mon\Screenpresso.exe 2021-04-08 22:16 - 2021-04-08 22:16 - 042585440 _____ () C:\Users\mon\vlc-3.0.12-win64.exe 2017-01-12 02:36 - 2018-09-30 20:02 - 000532184 _____ (Alexander Roshal) C:\Program Files (x86)\RarExt.dll 2021-03-29 00:05 - 2021-03-29 00:31 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe OpenEXR Format CS5 Prefs 2017-08-30 23:03 - 2021-09-15 02:17 - 000000132 _____ () C:\Users\mon\AppData\Roaming\Adobe PNG Format CS5 Prefs 2018-04-02 00:56 - 2020-09-05 22:24 - 000065588 _____ () C:\Users\mon\AppData\Roaming\CamData.ini 2018-04-02 00:56 - 2018-04-05 19:06 - 000000096 _____ () C:\Users\mon\AppData\Roaming\CamData.ini.BackupByCamStudioPortable 2018-04-02 00:56 - 2020-09-05 22:24 - 000135089 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini 2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamLayout.ini.BackupByCamStudioPortable 2018-04-02 00:56 - 2020-09-05 22:24 - 002274213 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini 2018-04-02 00:56 - 2018-04-05 19:06 - 000000408 _____ () C:\Users\mon\AppData\Roaming\CamShapes.ini.BackupByCamStudioPortable 2018-04-01 23:03 - 2020-09-05 22:24 - 000004538 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg 2018-04-01 23:03 - 2018-04-05 19:06 - 000004522 _____ () C:\Users\mon\AppData\Roaming\CamStudio.cfg.BackupByCamStudioPortable 2018-04-08 09:12 - 2018-04-08 09:12 - 000006927 _____ () C:\Users\mon\AppData\Roaming\CamStudio.ini 2018-04-08 09:12 - 2013-02-07 07:20 - 000000000 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.Data.ini 2018-04-08 09:12 - 2013-02-07 07:20 - 000001206 _____ () C:\Users\mon\AppData\Roaming\CamStudio.Producer.ini 2021-07-31 13:13 - 2021-07-31 13:13 - 000000691 _____ () C:\Users\mon\AppData\Roaming\PureRef.ini 2018-04-08 09:12 - 2020-09-05 22:24 - 000000096 _____ () C:\Users\mon\AppData\Roaming\version2.xml 2017-08-25 23:37 - 2020-05-07 23:04 - 000001456 _____ () C:\Users\mon\AppData\Local\Adobe Enregistrer pour le Web 12.0 Prefs 2017-01-10 17:36 - 2017-01-10 17:36 - 000000036 _____ () C:\Users\mon\AppData\Local\housecall.guid.cache 2021-02-07 20:01 - 2021-02-07 20:01 - 000000356 _____ () C:\Users\mon\AppData\Local\karboncalligraphyrc 2019-05-16 02:19 - 2019-05-16 02:40 - 000003394 _____ () C:\Users\mon\AppData\Local\kdenliverc 2021-01-12 01:21 - 2021-01-12 01:21 - 000000037 _____ () C:\Users\mon\AppData\Local\klanguageoverridesrc 2021-01-11 22:04 - 2021-08-07 22:08 - 000002586 _____ () C:\Users\mon\AppData\Local\krita-sysinfo.log 2021-01-11 22:04 - 2021-08-07 22:15 - 000158955 _____ () C:\Users\mon\AppData\Local\krita.log 2021-02-07 20:07 - 2021-02-07 20:09 - 000002959 _____ () C:\Users\mon\AppData\Local\kritacrash.log 2021-08-07 22:15 - 2021-08-07 22:15 - 000000152 _____ () C:\Users\mon\AppData\Local\kritadisplayrc 2021-01-11 22:04 - 2021-08-07 22:15 - 000031604 _____ () C:\Users\mon\AppData\Local\kritarc 2021-09-18 22:39 - 2021-09-18 22:39 - 000035641 _____ () C:\Users\mon\AppData\Local\recently-used.xbel 2017-01-07 17:53 - 2017-01-07 17:53 - 000000017 _____ () C:\Users\mon\AppData\Local\resmon.resmoncfg 2019-05-16 02:19 - 2019-05-16 02:19 - 000000533 _____ () C:\Users\mon\AppData\Local\user-places.xbel 2019-05-16 02:19 - 2019-05-16 02:19 - 000000000 _____ () C:\Users\mon\AppData\Local\user-places.xbel.tbcache ==================== FLock ============================== 2021-09-20 12:35 C:\Windows\MEMORY.DMP ==================== SigCheckExt ========================= 2012-05-04 16:37 - 2012-05-04 16:37 - 016209920 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2012-05-04 16:38 - 2012-05-04 16:38 - 000074240 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll 2012-05-04 16:37 - 2012-05-04 16:37 - 000061952 _____ C:\Windows\system32\OVDecode64.dll 2011-11-15 19:58 - 2011-11-15 19:58 - 000146432 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerAg.dll 2011-11-15 19:58 - 2011-11-15 19:58 - 003507712 _____ (Multicore Ware) C:\Windows\system32\SlotMaximizerBe.dll 2012-05-04 16:36 - 2012-05-04 16:36 - 012992000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2019-11-13 21:03 - 2006-04-30 06:33 - 000053248 _____ () C:\Windows\SysWOW64\CommonDL.dll 2006-02-28 13:41 - 2006-02-28 13:41 - 000061440 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dns-sd.exe 2006-02-28 13:41 - 2006-02-28 13:41 - 000053248 _____ (Apple Computer, Inc.) C:\Windows\SysWOW64\dnssd.dll 2017-01-12 02:00 - 2006-05-03 21:14 - 000372736 _____ (Intel Corporation) C:\Windows\SysWOW64\ijl15.dll 2019-05-16 01:18 - 2015-02-27 11:33 - 000244776 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgaout.dll 2019-05-16 01:18 - 2015-02-27 11:33 - 000020520 _____ (MainConcept GmbH) C:\Windows\SysWOW64\mcmpgvout.dll 2019-11-13 21:03 - 2011-05-06 11:37 - 000224768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcm90.dll 2019-11-13 21:03 - 2005-09-29 23:39 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll 2003-04-18 16:29 - 2003-04-18 16:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll 2012-05-04 16:37 - 2012-05-04 16:37 - 000064000 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll 2012-05-04 16:37 - 2012-05-04 16:37 - 000054784 _____ C:\Windows\SysWOW64\OVDecode.dll 2019-01-06 23:46 - 2006-06-20 10:56 - 000225280 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll 2011-11-15 19:57 - 2011-11-15 19:57 - 000122880 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerAg.dll 2011-11-15 19:57 - 2011-11-15 19:57 - 002463744 _____ (Multicore Ware) C:\Windows\SysWOW64\SlotMaximizerBe.dll 2013-09-18 13:17 - 2013-09-18 13:17 - 000234496 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec32.dll 2013-09-18 13:18 - 2013-09-18 13:18 - 000270848 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec64.dll 2013-11-26 09:41 - 2013-11-26 09:41 - 000602624 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid.dll 2013-11-26 09:41 - 2013-11-26 09:41 - 000630272 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid64.dll 2007-04-03 06:31 - 2007-04-03 06:31 - 000077312 _____ (Twain Working Group) C:\Windows\SysWOW64\TWAIN_32.DLL 2007-04-03 06:31 - 2007-04-03 06:31 - 000048560 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_16.EXE 2007-04-03 06:31 - 2007-04-03 06:31 - 000069632 _____ (Twain Working Group) C:\Windows\SysWOW64\TWUNK_32.EXE 2017-01-12 02:00 - 2006-05-03 21:13 - 000119568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb6fr.DLL 2021-04-08 23:17 - 2019-12-16 14:08 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmasf.dll 2021-04-08 23:17 - 2019-12-16 14:08 - 002330624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvcore.dll 2020-11-01 21:10 - 2020-11-01 21:11 - 012939302 _____ (POS-X ) C:\Users\Invité\Downloads\Thermal_Printer_Drivers_4.57.exe 2021-09-22 23:18 - 2021-09-22 23:18 - 002304512 _____ (Farbar) C:\Users\mon\Desktop\FRST64.exe 2021-09-22 21:43 - 2021-09-22 21:49 - 003476120 _____ (Nicolas Coolman) C:\Users\mon\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=C: description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale fr-FR inherit {bootloadersettings} recoverysequence {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17} recoveryenabled Yes osdevice partition=C: systemroot \Windows resumeobject {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17} nx OptIn Chargeur de d‚marrage Windows ----------------------------- identificateur {2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17} device ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\Winre.wim,{2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17} systemroot \windows nx OptIn winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {2f6be0e6-d4e3-11e6-892c-f2e0ba8e7d17} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=C: path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems Yes ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {2f6be0e9-d4e3-11e6-892c-f2e0ba8e7d17} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\2f6be0e8-d4e3-11e6-892c-f2e0ba8e7d17\boot.sdi LastRegBack: 2021-04-20 04:26 ==================== Fin de FRST.txt ========================