Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-07-2022 Exécuté par 33605 (administrateur) sur DESKTOP-BS2FKOR (Hewlett-Packard HP Compaq 6710b) (20-07-2022 07:16:23) Exécuté depuis C:\Users\33605\Desktop Profils chargés: 33605 Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1826 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5> (C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE (C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2> (C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\BridgeCommunication.exe (C:\Windows\ImmersiveControlPanel\SystemSettings.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (C:\Windows\ImmersiveControlPanel\SystemSettings.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <22> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [213760 2022-07-12] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKU\S-1-5-21-1538131444-3341678201-1389239750-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632088 2022-07-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1538131444-3341678201-1389239750-1001\...\Run: [Speech Recognition] => C:\Windows\Speech\Common\sapisvr.exe [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-1538131444-3341678201-1389239750-1001\...\Run: [MicrosoftEdgeAutoLaunch_615C50A5C5DE30A676EE6D8C1122F90A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-07-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1538131444-3341678201-1389239750-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\Canon TS3100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDR.DLL [482816 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\Windows\system32\CNMLMDR.DLL [1302016 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-10] (Google LLC -> Google LLC) Startup: C:\Users\33605\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Envoyer à OneNote.lnk [2022-01-16] ShortcutTarget: Envoyer à OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Le Robert Correcteur.lnk [2021-11-08] ShortcutTarget: Le Robert Correcteur.lnk -> C:\Program Files\Le Robert Correcteur\Le Robert Correcteur.exe (Diagonal -> Diagonal) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1476F041-45FD-425D-9D29-E0A36663A3BE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1148048 2022-06-28] (HP Inc. -> HP Inc.) Task: {18742C96-071F-4A9D-9DB8-297552F4585F} - System32\Tasks\GoogleUpdateTaskMachineCore1d7b62f530d95e7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-29] (Google LLC -> Google LLC) Task: {425F81C5-DFCD-4CBE-84BF-A934EF5DB1AC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64416 2022-07-10] (Microsoft Corporation -> Microsoft Corporation) Task: {5A37705B-38C9-431B-851F-749A03B302DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-29] (Google LLC -> Google LLC) Task: {5C85D958-B64F-4F5F-B403-728E4ED0BA74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-04-29] (Google LLC -> Google LLC) Task: {76F540E7-28B8-4BF7-908B-BA3ACC2513CD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) Task: {78B56449-452A-4395-BA3B-6AD11CA647C1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {82283F2B-72C9-4548-96F6-912DC41B2753} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {8B0BF37E-C3A0-4729-BA6D-20F7AAC53AC5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {8FF4695D-B7F9-48DC-967C-9A70896F32AF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {99B268C4-595D-4C89-B1E8-EA8E09F9A86D} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4938496 2022-07-12] (Avast Software s.r.o. -> AVAST Software) Task: {AACDA411-61A0-4863-BA45-5B0A65775F53} - System32\Tasks\CCleanerSkipUAC - 33605 => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {ADC3F96A-236F-432E-99B3-B2E4571F04C1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8414664 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {AE672BDB-DDDD-4E62-AF0C-D9798DC3750D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1148048 2022-06-28] (HP Inc. -> HP Inc.) Task: {B87CE903-8CDD-42FF-B1AE-00E38D1EBEEC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145312 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {C52F9AB3-67B9-4FDD-AB95-0B46CB4A60F3} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 8710 => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.) Task: {C568CB39-EE54-41BA-8F1A-CA442014AC68} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-15] (Microsoft Corporation -> Microsoft Corporation) Task: {CBB39114-90AB-4626-BB0B-FE920DB135BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-06-28] (HP Inc. -> HP Inc.) Task: {DC90AA37-D4F2-42FA-8AA4-774A79165345} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1538131444-3341678201-1389239750-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-15] (Microsoft Corporation -> Microsoft Corporation) Task: {E50E8EF7-95C2-4ADE-82A3-708C43838BCF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [412744 2022-06-28] (HP Inc. -> HP Inc.) Task: {EA9DAD4F-C074-4795-A60C-C97699400A94} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23378864 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{60bdeb88-5d0e-4929-b45e-1a2a50c6a225}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{96a05199-15d6-4f5e-b602-6544c3b0ea92}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{9fa3de4c-0890-488b-bdcc-f5b0163ff3e6}: [DhcpNameServer] 192.168.0.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\33605\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-20] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2016-04-14] (CANON INC.) [Fichier non signé] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-10] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default [2022-07-20] CHR HomePage: Default -> hxxps://fr.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87fsghjnrl07xn004119¶m1=y6bdVFVIsvuYsgEClQfz8Ew5cthEcmexJ5%2FYr%2BLO5CL%2Foi2rZzqkVvRNUg3Il98Bec9y4VCyMyFeZ0kMJqQsWAbMDfsfrt2snxr3SfwKt2NBb0qL0qhUWgp%2F%2Buvd2idCxInL%2Bf%2FyAwgB7%2B5B7fHKfvkurlQj22Age6xYX2jCzYOXhdWNzYW0OZ8RfLsdvfqtOXN5%2BgrzErXoBXvPidV18%2F%2FFc9YfT1dUvAYcpt2W%2FZY55V3UclwathilmDAb94%2BW1yUYv0vFApdiSSFcpPmDYTXXU2rpFPgse%2FzOWehacIQPDbmyh4C25WWDOtj1nevgUH%2Fhb%2F93FVgdtms9DxnnNyG%2Bnt8U2lX%2FqEXn1PjKA9TJfJWHii9mIX%2FB82xGP3gexCf1iBaP%2B4PuZY3OZ8DbUQ%3D%3D CHR Extension: (PDF Editor for Docs:Edit, Fill, Sign, Print) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjboohgkgchdnfnjiaggdbkdmpieoagi [2021-06-05] CHR Extension: (Vimeo Record - Enregistrement écran et webcam) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejfmffkmeigkphomnpabpdabfddeadcb [2022-07-10] CHR Extension: (Convertio) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2021-06-05] CHR Extension: (Google Docs hors connexion) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-18] CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2022-03-03] CHR Extension: (Google Play) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2021-06-05] CHR Extension: (Grid View pour Google Meet ™) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgbmfbimbcffegjaagiolbjpfbepjogk [2022-03-16] CHR Extension: (Vimeo Video Downloader) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhocaachbdednhakdkhekjleplpoedea [2021-06-05] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-29] CHR Extension: (Smallpdf - Éditez et convertissez des PDF) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfgljdgelakfkefopgklcohadegdpjf [2022-07-19] CHR Profile: C:\Users\33605\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-10] CHR Profile: C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-07-19] CHR Extension: (Slides) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-07] CHR Extension: (Docs) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-07] CHR Extension: (Google Drive) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-07] CHR Extension: (YouTube) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-07] CHR Extension: (Sheets) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-07] CHR Extension: (Google Docs hors connexion) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-07] CHR Extension: (Gmail) - C:\Users\33605\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-07] CHR Profile: C:\Users\33605\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-10] CHR HKLM\...\Chrome\Extension: [jelhjlihbglokmcmbpdjkiiilecidfog] - C:\Program Files\Le Robert Correcteur\Adaptateurs\Adaptateur Google Chrome.crx [2017-09-21] CHR HKLM-x32\...\Chrome\Extension: [jelhjlihbglokmcmbpdjkiiilecidfog] - C:\Program Files\Le Robert Correcteur\wow64\Adaptateurs\Adaptateur Google Chrome.crx [2017-09-21] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8486968 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [590080 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2009344 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [589056 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-02-21] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111288 2022-07-20] (Microsoft Corporation -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncHelper.exe [3381632 2022-07-15] (Microsoft Corporation -> Microsoft Corporation) R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [765000 2022-06-28] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [763480 2022-06-28] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [760392 2022-06-28] (HP Inc. -> HP Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [763992 2022-06-28] (HP Inc. -> HP Inc.) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8683336 2022-07-19] (Malwarebytes Inc. -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\OneDriveUpdaterService.exe [3822496 2022-07-15] (Microsoft Corporation -> Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [235584 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [385560 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [258072 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [104976 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [25048 2022-06-27] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [47976 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [274536 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [553928 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [113984 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [89056 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [860416 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [668208 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [221528 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324864 2022-07-12] (Avast Software s.r.o. -> AVAST Software) R3 BCM43XX; C:\Windows\System32\drivers\bcmwl63al.sys [5170176 2019-12-07] (Microsoft Windows -> Broadcom Corporation) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-07-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-07-20 07:16 - 2022-07-20 07:17 - 000024562 _____ C:\Users\33605\Desktop\FRST.txt 2022-07-20 07:03 - 2022-07-20 07:03 - 000280201 _____ C:\Users\Public\Desktop\ZHPDiag.txt 2022-07-20 06:24 - 2022-07-20 06:29 - 000000000 ____D C:\Users\33605\Desktop\piratage pcastuces 2022-07-20 06:23 - 2022-07-20 06:23 - 000000000 ___HD C:\$AV_ASW 2022-07-20 06:22 - 2022-07-20 07:13 - 000000000 ____D C:\Users\33605\Desktop\word 2022-07-20 06:19 - 2022-07-20 06:21 - 000000000 ____D C:\Users\33605\Desktop\xls 2022-07-19 16:36 - 2022-07-19 16:36 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-07-19 16:36 - 2022-07-19 16:36 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-07-19 16:35 - 2022-07-19 17:44 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-07-19 16:35 - 2022-07-19 16:35 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-07-19 16:35 - 2022-07-19 16:35 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-07-19 16:34 - 2022-07-19 16:34 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-07-19 16:33 - 2022-07-19 16:33 - 002556344 _____ (Malwarebytes) C:\Users\33605\Desktop\MBSetup (1).exe 2022-07-19 16:24 - 2022-07-19 16:24 - 000000000 ____D C:\Users\33605\AppData\Local\mbam 2022-07-19 16:21 - 2022-07-19 16:34 - 000000000 ____D C:\Program Files\Malwarebytes 2022-07-19 16:20 - 2022-07-19 16:20 - 002556344 _____ (Malwarebytes) C:\Users\33605\Desktop\MBSetup.exe 2022-07-19 16:01 - 2022-07-19 16:05 - 000000000 ____D C:\AdwCleaner 2022-07-19 16:00 - 2022-07-19 15:58 - 008551608 _____ (Malwarebytes) C:\Users\33605\Desktop\adwcleaner_8.3.2 - Copie.exe 2022-07-19 15:58 - 2022-07-19 15:58 - 008551608 _____ (Malwarebytes) C:\Users\33605\Desktop\adwcleaner_8.3.2.exe 2022-07-19 11:03 - 2022-07-19 11:03 - 000000875 _____ C:\Users\33605\Desktop\ZHPCleaner.lnk 2022-07-19 11:02 - 2022-07-19 11:02 - 003301616 _____ (Nicolas Coolman) C:\Users\33605\Desktop\ZHPCleaner.exe 2022-07-19 06:41 - 2022-07-19 06:41 - 000000000 ____D C:\Users\33605\Desktop\Wub 2022-07-19 06:40 - 2022-07-19 06:40 - 001036134 _____ C:\Users\33605\Desktop\Wub.zip 2022-07-18 18:39 - 2022-07-20 07:16 - 000000000 ____D C:\FRST 2022-07-18 18:32 - 2022-07-18 18:38 - 002369536 _____ (Farbar) C:\Users\33605\Desktop\FRST64.exe 2022-07-18 15:18 - 2022-07-20 07:03 - 000000000 ____D C:\Users\33605\AppData\Roaming\ZHP 2022-07-18 15:18 - 2022-07-19 21:04 - 000000865 _____ C:\Users\33605\Desktop\ZHPSuite.lnk 2022-07-18 15:18 - 2022-07-19 11:03 - 000000000 ____D C:\Users\33605\AppData\Local\ZHP 2022-07-18 06:42 - 2022-07-18 06:42 - 003487984 _____ (Nicolas Coolman) C:\Users\33605\Desktop\ZHPSuite.exe 2022-07-16 21:33 - 2022-07-16 21:33 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-16 21:33 - 2022-07-16 21:33 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-16 21:33 - 2022-07-16 21:33 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-16 21:33 - 2022-07-16 21:33 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-16 21:33 - 2022-07-16 21:33 - 000011811 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-07-16 21:32 - 2022-07-16 21:32 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-16 21:32 - 2022-07-16 21:32 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-16 21:32 - 2022-07-16 21:32 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-07-16 21:32 - 2022-07-16 21:32 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-16 21:08 - 2022-07-16 21:08 - 000000000 ___HD C:\$WinREAgent 2022-07-12 21:30 - 2022-07-12 21:30 - 000270592 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2022-07-12 21:30 - 2022-07-12 21:30 - 000221528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2022-07-11 22:19 - 2022-07-11 22:19 - 000000000 ____D C:\Users\33605\AppData\Roaming\IsolatedStorage 2022-07-11 22:19 - 2022-07-11 22:19 - 000000000 ____D C:\ProgramData\IsolatedStorage 2022-07-10 07:50 - 2022-07-12 11:28 - 002158046 _____ C:\Users\33605\Documents\Duplicate Cleaner log.txt 2022-07-10 06:50 - 2022-07-10 06:50 - 000000000 ____D C:\SWSetup 2022-07-10 06:43 - 2022-07-10 06:43 - 000258364 _____ C:\Users\33605\Documents\faire part evelyne.pdf 2022-07-10 06:36 - 2022-07-10 06:36 - 000000000 ____D C:\HP 2022-07-10 06:29 - 2022-07-20 06:20 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-07-10 06:29 - 2022-07-11 22:27 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2022-07-10 06:29 - 2022-07-10 06:29 - 000002904 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - 33605 2022-07-10 06:29 - 2022-07-10 06:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-07-10 06:28 - 2022-07-20 06:25 - 000000000 ____D C:\Program Files\CCleaner 2022-07-03 15:36 - 2022-07-03 15:36 - 000000000 ____D C:\Users\33605\Documents\AnyTech365 - Remote Support 2022-07-03 15:30 - 2022-07-03 15:30 - 000000000 ____D C:\Users\33605\AppData\Local\Deployment 2022-07-03 15:30 - 2022-07-03 15:30 - 000000000 ____D C:\Users\33605\AppData\Local\Apps\2.0 2022-07-03 08:07 - 2022-07-03 08:08 - 000172928 _____ C:\Windows\system32\ammntdrv.sys 2022-07-03 08:07 - 2022-07-03 08:08 - 000032176 _____ C:\Windows\system32\amwrtdrv.sys 2022-07-03 08:07 - 2019-05-14 11:28 - 000051120 _____ C:\Windows\system32\ambakdrv.sys 2022-07-02 08:36 - 2022-07-02 08:36 - 000722511 _____ C:\reflectv8.0-6758-x64-0.dmp 2022-07-01 06:34 - 2022-07-01 06:34 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Sécurité.lnk 2022-06-30 07:39 - 2022-06-30 07:39 - 000000000 ____D C:\Users\33605\AppData\LocalLow\Temp 2022-06-29 11:19 - 2021-06-29 14:27 - 000076344 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUDSKCP.sys 2022-06-29 11:19 - 2021-06-29 14:27 - 000033712 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUEUMDK.sys 2022-06-27 22:16 - 2022-06-27 22:16 - 000025048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys 2022-06-27 08:40 - 2022-07-19 17:36 - 000000000 ____D C:\Users\33605\Desktop\luc 2022-06-26 08:25 - 2022-06-26 08:25 - 000479744 _____ C:\Windows\system32\AssignedAccessCsp.dll 2022-06-26 08:25 - 2022-06-26 08:25 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll 2022-06-26 08:24 - 2022-06-26 08:24 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-06-26 08:24 - 2022-06-26 08:24 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-06-26 08:22 - 2022-06-26 08:22 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-06-24 07:42 - 2022-07-20 06:23 - 000000000 ____D C:\Users\33605\Desktop\sculpture enfants 2022-06-09 07:00 - 2022-06-09 07:00 - 000000000 ____D C:\Users\33605\AppData\Local\WhyNotWin11 2022-06-01 07:04 - 2022-06-01 07:04 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk 2022-06-01 07:04 - 2022-06-01 07:04 - 000002241 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk 2022-05-30 16:03 - 2022-07-15 15:52 - 000015643 ____H C:\Users\33605\Desktop\~WRL3638.tmp 2022-05-30 06:44 - 2022-05-30 06:44 - 000000770 _____ C:\Users\33605\Documents\Téléchargements - Raccourci.lnk 2022-05-28 22:05 - 2022-07-19 06:57 - 000060845 ____H C:\Users\33605\AppData\Local\IconCache.db.backup 2022-05-28 21:41 - 2022-07-17 07:48 - 000525984 _____ C:\Windows\system32\FNTCACHE.DAT 2022-05-23 17:12 - 2022-05-24 07:56 - 039068262 ____H C:\Users\33605\Desktop\~WRL0738.tmp 2022-05-23 11:00 - 2022-05-23 11:00 - 000531256 _____ C:\Users\33605\Documents\gene joelle.pdf 2022-05-22 20:55 - 2022-05-22 20:55 - 000000000 ___HD C:\OneDriveTemp 2022-05-19 17:53 - 2022-05-19 17:53 - 000266707 _____ C:\Users\33605\Documents\facture paella.pdf 2022-05-18 16:22 - 2022-05-18 16:22 - 000261934 _____ C:\Users\33605\Documents\budget previsionel 2022.pdf 2022-05-15 18:47 - 2022-05-15 18:47 - 000188928 _____ C:\Windows\system32\uwfcfgmgmt.dll 2022-05-15 18:46 - 2022-05-15 18:46 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-05-13 18:01 - 2022-05-13 18:01 - 002809740 _____ C:\Users\33605\Documents\3008 cle pour assurance.pdf 2022-05-13 17:59 - 2022-05-13 17:59 - 001332354 _____ C:\Users\33605\Documents\cle 3008.pdf 2022-05-07 17:28 - 2022-05-07 17:28 - 000781271 _____ C:\Users\33605\Documents\asuur 07 05.pdf 2022-05-07 09:36 - 2022-05-07 09:36 - 000566740 _____ C:\Users\33605\Documents\asttestation trx.pdf 2022-05-04 07:45 - 2022-05-04 07:45 - 000616522 _____ C:\Users\33605\Documents\devis ad hoc 672 22b2.pdf 2022-04-30 06:45 - 2022-04-30 06:45 - 000662046 _____ C:\Users\33605\Documents\devis ad hoc.pdf 2022-04-28 10:09 - 2022-04-28 10:09 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-04-25 06:53 - 2022-07-03 08:40 - 000001024 ____H C:\SYSTAG.BIN 2022-04-25 06:52 - 2022-07-04 06:59 - 000000432 _____ C:\Windows\SysWOW64\winsevr.dat 2022-04-25 06:52 - 2022-04-26 21:09 - 000000208 _____ C:\Windows\SysWOW64\AbBakConfig.dat 2022-04-25 06:52 - 2022-04-25 06:52 - 000000000 ____D C:\ProgramData\Aomei 2022-04-25 06:49 - 2022-04-25 06:55 - 000000000 ____D C:\ProgramData\AomeiBR 2022-04-22 09:39 - 2022-04-22 09:39 - 000355012 _____ C:\Users\33605\Documents\facture journée enfants.pdf 2022-04-22 08:54 - 2022-04-22 08:54 - 000895974 _____ C:\Users\33605\Documents\FACTURES CLe.pdf 2022-04-21 21:20 - 2022-05-28 08:15 - 000000000 ____D C:\Windows\Minidump 2022-04-21 15:36 - 2022-04-21 15:36 - 000011716 _____ C:\Users\33605\Documents\FICHIER.xlsx 2022-04-21 07:43 - 2022-04-21 07:43 - 000225671 _____ C:\Users\33605\Documents\facture choco.pdf 2022-04-21 07:17 - 2022-04-21 07:17 - 005703625 _____ C:\Users\33605\Documents\vehicule 3008.pdf ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-07-20 07:11 - 2021-05-27 10:30 - 000000000 ____D C:\Program Files\Microsoft Office 2022-07-20 07:03 - 2021-04-29 07:55 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-20 06:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-20 06:22 - 2022-02-21 18:10 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2022-07-20 06:22 - 2021-10-29 17:41 - 000004178 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{A28DAFA9-ECC5-4CAE-BD40-75FA8ED337C1} 2022-07-20 06:18 - 2022-02-21 18:08 - 000000000 ____D C:\ProgramData\Avast Software 2022-07-20 06:17 - 2021-04-25 17:49 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-20 06:17 - 2020-11-19 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-19 21:41 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-07-19 21:34 - 2022-04-01 07:10 - 000000000 ____D C:\Program Files (x86)\VideoLAN 2022-07-19 18:43 - 2021-04-25 18:00 - 000000000 ____D C:\Users\33605 2022-07-19 18:15 - 2020-11-19 00:44 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-19 16:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-07-19 16:05 - 2021-10-30 05:39 - 000000000 ____D C:\Users\33605\AppData\Roaming\Hewlett-Packard 2022-07-19 16:05 - 2021-10-30 05:31 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2022-07-19 16:05 - 2021-10-30 05:30 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2022-07-19 15:50 - 2022-02-07 17:34 - 000002392 _____ C:\Users\33605\Desktop\coleg - Chrome.lnk 2022-07-19 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2022-07-18 06:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-17 22:08 - 2021-10-30 05:31 - 000000000 ____D C:\Windows\system32\Tasks\Hewlett-Packard 2022-07-17 08:04 - 2021-04-27 10:03 - 000000000 ____D C:\Windows\system32\MRT 2022-07-17 07:56 - 2021-04-27 10:03 - 146546848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-07-17 07:56 - 2021-04-25 17:58 - 001771910 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-17 07:56 - 2019-12-07 16:50 - 000793254 _____ C:\Windows\system32\perfh00C.dat 2022-07-17 07:56 - 2019-12-07 16:50 - 000150384 _____ C:\Windows\system32\perfc00C.dat 2022-07-17 07:56 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-07-17 07:52 - 2022-02-21 18:16 - 000000000 ____D C:\Users\33605\AppData\Local\CrashDumps 2022-07-17 07:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-16 21:41 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-07-16 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-07-16 21:40 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-07-16 21:32 - 2020-11-19 01:46 - 003010560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-07-15 07:17 - 2021-06-15 07:33 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-07-15 06:47 - 2020-11-19 01:47 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-15 06:47 - 2020-11-19 01:47 - 000002280 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-07-15 06:43 - 2021-12-13 09:32 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1538131444-3341678201-1389239750-1001 2022-07-15 06:43 - 2021-06-03 11:39 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-07-15 06:43 - 2021-06-03 11:39 - 000002170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-15 06:30 - 2021-11-05 08:11 - 000000432 __RSH C:\ProgramData\ntuser.pol 2022-07-14 11:05 - 2022-04-06 07:22 - 000000000 ____D C:\Users\33605\Desktop\photos samsung au 06 04 2022 2022-07-12 21:30 - 2022-02-21 18:09 - 000860416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000668208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000553928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000385560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000324864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000274536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000258072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000235584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000113984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000104976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000089056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2022-07-12 21:30 - 2022-02-21 18:09 - 000047976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2022-07-11 07:49 - 2021-09-10 15:26 - 000000000 ____D C:\Program Files\HP 2022-07-11 06:49 - 2021-04-25 18:03 - 000000000 ____D C:\Users\33605\AppData\Local\Packages 2022-07-10 09:34 - 2022-04-11 17:39 - 000000000 ____D C:\Users\33605\AppData\Roaming\Molotov 2022-07-10 08:19 - 2021-07-04 22:25 - 000000000 ____D C:\CLEF USB 2022-07-10 06:54 - 2021-10-30 05:44 - 000000000 ____D C:\Users\33605\AppData\Local\Hewlett-Packard 2022-07-10 06:54 - 2021-09-10 15:26 - 000000000 ____D C:\Program Files (x86)\HP 2022-07-10 06:54 - 2021-09-10 15:25 - 000000000 ____D C:\Users\33605\AppData\Local\HP 2022-07-10 06:54 - 2021-05-27 21:35 - 000000000 ____D C:\ProgramData\HP 2022-07-10 06:39 - 2021-04-29 07:57 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-07-10 06:39 - 2021-04-29 07:57 - 000002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-07-02 06:40 - 2021-07-21 07:34 - 002870784 _____ C:\Users\33605\Documents\comptes analytiques 2020 JUILLET.xls 2022-07-01 17:54 - 2022-02-21 18:10 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2022-07-01 17:54 - 2021-10-01 06:47 - 000003324 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d7b62f530d95e7 2022-07-01 17:54 - 2021-09-10 15:26 - 000002654 _____ C:\Windows\system32\Tasks\HPCustParticipation HP OfficeJet Pro 8710 2022-07-01 17:54 - 2021-08-15 21:41 - 000003424 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7900dc173934d 2022-07-01 17:54 - 2021-04-29 07:56 - 000003518 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-07-01 17:54 - 2021-04-29 07:56 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-07-01 17:54 - 2020-11-19 01:46 - 000003618 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-01 17:54 - 2020-11-19 01:46 - 000003338 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-01 12:22 - 2021-06-12 09:26 - 000000000 ____D C:\ProgramData\CanonIJPLM 2022-07-01 07:06 - 2021-06-16 10:52 - 000000000 ____D C:\Users\33605\Desktop\mes recettes 2022-07-01 07:04 - 2021-06-16 10:58 - 000000000 ____D C:\Users\33605\Desktop\adn geneanet 2022-06-30 07:13 - 2021-04-25 18:09 - 000000000 ___RD C:\Users\33605\OneDrive 2022-06-29 17:22 - 2021-06-01 07:58 - 000000000 ____D C:\Program Files (x86)\EaseUS 2022-06-29 17:22 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Registration 2022-06-29 14:06 - 2021-06-16 11:10 - 000000000 ____D C:\Users\33605\Downloads\Macrium 2022-06-29 11:19 - 2021-06-01 07:58 - 000000000 ____D C:\ProgramData\SystemAcCrux 2022-06-29 09:09 - 2021-04-28 15:12 - 000046740 _____ C:\Users\33605\Desktop\Copie de compte journalier coleg.xlsx 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-06-26 08:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-06-26 08:49 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2022-06-24 07:11 - 2020-11-19 01:48 - 000000000 ____D C:\ProgramData\Packages 2022-06-22 07:36 - 2022-03-07 23:27 - 000000000 ___RD C:\Users\33605\Desktop\COLEG 2022-06-22 07:36 - 2021-11-10 16:10 - 000000000 ____D C:\Users\33605\Desktop\circuit vtt ==================== SigCheckExt ========================= 2021-10-07 10:53 - 1998-07-06 01:00 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CMDLGDE.DLL 2021-10-07 10:53 - 2006-07-20 15:59 - 000086016 _____ (Inner Media, Inc.) C:\Windows\SysWOW64\dzstactx.dll 2021-10-07 10:53 - 2010-12-06 23:17 - 000073728 _____ C:\Windows\SysWOW64\FastCRC.dll 2021-10-07 10:53 - 1998-07-06 18:55 - 000158208 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL 2021-10-07 10:53 - 2004-05-01 19:22 - 000233472 _____ (Activecrypt Software LLC) C:\Windows\SysWOW64\MySSH.dll 2021-10-07 10:53 - 2009-03-05 13:35 - 000155648 _____ (Nicomsoft Ltd.) C:\Windows\SysWOW64\NMan.dll 2021-10-07 10:53 - 2009-08-25 12:34 - 000265216 _____ (Dieter Otter, Tools & Components) C:\Windows\SysWOW64\sevZip30.dll 2021-10-07 10:53 - 2016-02-04 10:50 - 000241664 _____ (Cleware GmbH) C:\Windows\SysWOW64\USBaccess.dll 2021-10-07 10:53 - 2014-08-15 12:54 - 000027136 _____ C:\Windows\SysWOW64\UsbHidApi.dll 2021-10-07 10:53 - 2019-04-25 22:52 - 001121792 _____ (WeOnlyDo Software) C:\Windows\SysWOW64\wodKeys.dll 2021-10-07 10:53 - 2010-12-07 10:18 - 000040960 _____ (ZCronTimer) C:\Windows\SysWOW64\ZCronTimer.dll 2021-10-07 10:53 - 2004-01-22 22:40 - 000036864 _____ (ZDBACKUP) C:\Windows\SysWOW64\ZKrypt.dll 2022-07-18 18:32 - 2022-07-18 18:38 - 002369536 _____ (Farbar) C:\Users\33605\Desktop\FRST64.exe 2022-07-19 11:02 - 2022-07-19 11:02 - 003301616 _____ (Nicolas Coolman) C:\Users\33605\Desktop\ZHPCleaner.exe 2022-07-18 06:42 - 2022-07-18 06:42 - 003487984 _____ (Nicolas Coolman) C:\Users\33605\Desktop\ZHPSuite.exe 2021-06-16 09:47 - 2021-06-16 09:47 - 007130155 _____ (hxxps://winmerge.org ) C:\Users\33605\Downloads\WinMerge-2.16.12-Setup (1).exe 2021-06-13 09:33 - 2021-06-13 09:34 - 007130155 _____ (hxxps://winmerge.org ) C:\Users\33605\Downloads\WinMerge-2.16.12-Setup.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=E: description Windows Boot Manager locale en-us inherit {globalsettings} default {current} resumeobject {f8f4c0ae-e61e-11eb-b0ec-001a4b73604b} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.exe description Windows 10 locale en-us inherit {bootloadersettings} allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {f8f4c0ae-e61e-11eb-b0ec-001a4b73604b} nx OptIn bootmenupolicy Standard bootstatuspolicy IgnoreAllFailures Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {f8f4c0ae-e61e-11eb-b0ec-001a4b73604b} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale en-us inherit {resumeloadersettings} allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=E: path \boot\memtest.exe description Windows Memory Diagnostic locale en-us inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Local Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} ==================== Fin de FRST.txt ========================