Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2022 Exécuté par Evan Devos (administrateur) sur PC-EVAN (essentiel b SmartMOUV series) (29-08-2022 20:26:06) Exécuté depuis C:\Users\Evan Devos\Desktop Profils chargés: Evan Devos Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1586 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avpui.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\setup\instup.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe (explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12123.5.56009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe <3> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <12> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Intel(R) Biometric and Context Agent -> Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe (services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (svchost.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe (svchost.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1852_none_7de3b01c7cacf858\TiWorker.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392 2015-01-12] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1391472 2014-12-04] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320360 2014-06-25] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944648 2015-06-29] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [212816 2022-06-13] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [110344 2014-09-17] (CyberLink Corp. -> CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [492808 2014-09-17] (CyberLink Corp. -> CyberLink Corp.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [kpm_tray.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [610120 2020-10-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [GoogleChromeAutoLaunch_0682005596210D9216FFD2A6A9E88032] => "C:\Users\Evan Devos\AppData\Local\Chromium\Application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" [667136 2015-08-11] (The Chromium Authors) [Fichier non signé] HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [GameCenter] => C:\Users\Evan Devos\AppData\Local\GameCenter\GameCenter.exe [11391872 2022-08-24] (My.Com B.V. -> MY.COM B.V.) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32706512 2022-08-24] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [ProductAuthenticationService] => C:\Users\Evan Devos\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2021-04-07] (DVJ LIMITED -> DVJ LIMITED) <==== ATTENTION HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRIE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\Run: [MicrosoftEdgeAutoLaunch_D77CBC38180A97B44293F2A94D2EE19B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827104 2022-08-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Evan Devos\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Evan Devos\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier) HKU\S-1-5-21-3162194502-1086202597-488239392-1001\...\RunOnce: [Uninstall 22.166.0807.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Evan Devos\AppData\Local\Microsoft\OneDrive\22.166.0807.0002" (Pas de fichier) HKLM\...\Windows x64\Print Processors\Canon MG5500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBU.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5500 series: C:\WINDOWS\system32\CNMLMBU.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\EPSON XP-540 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBRIE.DLL [182784 2015-12-09] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\WINDOWS\system32\hpinkstsB111LM.dll [328552 2012-01-11] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\WINDOWS\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\99.0.4844.51\Installer\chrmstp.exe [2022-03-04] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2016-07-22] (McAfee, Inc. -> McAfee, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2014-10-03] (CyberLink Corp. -> CyberLink) HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2014-10-03] (CyberLink Corp. -> CyberLink) Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter Startup: C:\Users\Evan Devos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2018-11-04] ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Restriction ? <==== ATTENTION Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {032ED236-7E72-4083-A812-BD224B56D0AF} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {05E0E754-A7BA-41A5-9529-E1547B45861B} - System32\Tasks\CCleanerSkipUAC - Evan Devos => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {070ADAF2-7840-4FBC-85D9-72BDB31BFDD3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {0FAC6A91-8F1B-4FF6-92FA-990953B22CAA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {1AECD93C-BB39-43A4-94AC-D7F8AFE57EEF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {1B5F3B69-C59F-400D-8F9C-330E78DE86D3} - System32\Tasks\EPSON XP-540 Series Update {DED7EA83-0D6C-43E2-B3BA-0E4A7833E744} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {24D9C7EA-D5F2-4F93-8D73-AFD8127FA46C} - System32\Tasks\UpdateTask => C:\Users\EVANDE~1\AppData\Local\{6B215~1\UNINST~1.EXE /Check (Pas de fichier) Task: {28E689D5-4C81-48E8-8A93-EA305EECB746} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier) Task: {42243AC5-7915-4B81-958D-654433E3DC8D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {4C0B8FCC-0451-407F-8503-FF3F5332D8DE} - \WPD\SqmUpload_S-1-5-21-3162194502-1086202597-488239392-1001 -> Pas de fichier <==== ATTENTION Task: {4D5E9BF5-AE9A-44BF-9079-7F1DE50E735C} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {4F0A972F-BDE3-48FD-8776-676FE3C6FB14} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {5181B99A-327A-4994-8D53-07FFE63E203D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {6B9867F0-5A48-4EC1-992C-1E4021378909} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-06-18] (Google Inc -> Google LLC) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6EAC8FE8-DCE4-4F69-BF05-6C1E45E2420B} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [517080 2014-10-03] (CyberLink Corp. -> CyberLink Corp.) Task: {7458C273-05B4-4DA6-8141-205FAA37A0B0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {79E23C08-C2C7-4B92-9D9A-F1E03E175CAA} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {7C1E8D06-577B-47AD-9363-D51B217D33E0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {7EDC2D68-334D-4A20-99EB-E94F7D0C474E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {82AD4761-CB97-4D8F-94A6-06D3092698DF} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [585600 2014-04-07] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {922701B3-3221-4C27-9153-04A254D61188} - \McAfee\McAfee Idle Detection Task -> Pas de fichier <==== ATTENTION Task: {979B3517-9609-4EFF-8DCA-4301A34F8BD1} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {9BA6F6B3-207D-42CF-81EF-591BBA025D1F} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {9F53C2FB-9D6E-48E0-8CB3-56CDA9A11C62} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {A2E1951A-D295-4C54-BC50-DA1FC5DDC27D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {AAC8A20C-9CA1-41DC-840D-9F488656C8D5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {AD401AD1-32E3-4639-9F67-885348EF671C} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [85768 2014-09-17] (CyberLink Corp. -> CyberLink Corp.) Task: {B20712E7-76E2-4533-82CE-8260C2D3D7F0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {C48777C5-92A3-4CAD-AE55-C558F075245A} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4925264 2022-06-13] (Avast Software s.r.o. -> AVAST Software) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D82D410B-5710-4DAE-82D3-BD9CEE00822C} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {DF34A168-45FA-4779-B6CF-BA2022BEED6F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-06-18] (Google Inc -> Google LLC) Task: {E94498AD-7294-4E6E-810F-2CE2ADB4C7F8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {EF05CD0C-AA2F-4E54-B9E8-F85CB44D679F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {F80E7D54-A1B6-475B-BF05-2101A6A63702} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {FD5904A9-E4B8-4D36-A26C-02E743FC8055} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-540 Series Update {DED7EA83-0D6C-43E2-B3BA-0E4A7833E744}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRIE.EXE:/EXE:{DED7EA83-0D6C-43E2-B3BA-0E4A7833E744} /F:UpdateWORKGROUP\PC-EVAN$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe Task: C:\WINDOWS\Tasks\UpdateTask.job => C:\Users\EVANDE~1\AppData\Local\{6B215~1\UNINST~1.EXE ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{577e56bc-0891-467c-b7e0-75d8581c1905}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{dbee3bc4-9d8b-444b-8bc5-311aa0b6dacf}: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{e2414baf-a42a-4e2f-893a-7d954e9c9579}: [DhcpNameServer] 192.168.1.254 Edge: ======= DownloadDir: C:\Users\Evan Devos\Downloads Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\Evan Devos\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-29] Edge Notifications: Default -> hxxps://date.date4fun.com; hxxps://if.adxpartner.com; hxxps://www.casualdating.com FireFox: ======== FF DefaultProfile: pde65kjg.default-1638205615059 FF ProfilePath: C:\Users\Evan Devos\AppData\Roaming\Mozilla\Firefox\Profiles\pde65kjg.default-1638205615059 [2022-08-29] FF Notifications: Mozilla\Firefox\Profiles\pde65kjg.default-1638205615059 -> hxxps://onepiece-streaming.co FF HKLM\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2020-03-08] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\FFExt\light_plugin_firefox\addon.xpi FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-01-14] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-01-14] <==== ATTENTION Chrome: ======= CHR Profile: C:\Users\Evan Devos\AppData\Local\Google\Chrome\User Data\Default [2022-08-24] CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms} CHR Extension: (Kaspersky Protection 19.0) - C:\Users\Evan Devos\AppData\Local\Google\Chrome\User Data\Default\Extensions\amkpcclbbgegoafihnpgomddadjhcadd [2021-06-19] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Evan Devos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-28] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Evan Devos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-08] CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8432776 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [576336 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [576336 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-12-14] (Avast Software s.r.o. -> AVAST Software) S4 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\avp.exe [619640 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-06-21] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-06-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Biometric and Context Agent -> Intel(R) Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-10-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [819040 2022-08-24] (McAfee, LLC -> McAfee, LLC) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2014-11-06] (CyberLink Corp. -> CyberLink) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-22] (McAfee, Inc. -> McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-22] (McAfee, Inc. -> McAfee, Inc.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-22] (McAfee, Inc. -> McAfee, Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [38912 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [382624 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255136 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102048 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25048 2022-06-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R3 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [45072 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271600 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548968 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-06-13] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [662160 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218608 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [321912 2022-06-13] (Avast Software s.r.o. -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé] R3 clwvd6; C:\WINDOWS\System32\drivers\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657176 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1400584 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [188648 2022-08-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [263888 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-04-17] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [309104 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115744 2021-04-07] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [224880 2021-04-26] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-14] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R3 RadioSwitchHid; C:\WINDOWS\System32\drivers\RadioSwitchDrv_x64.sys [23728 2014-07-31] (Inventec Corporation -> Radio Switch Mini HID Driver) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-29 20:26 - 2022-08-29 20:30 - 000039041 _____ C:\Users\Evan Devos\Desktop\FRST.txt 2022-08-29 20:24 - 2022-08-29 20:28 - 000000000 ____D C:\FRST 2022-08-29 20:22 - 2022-08-29 20:22 - 002371072 _____ (Farbar) C:\Users\Evan Devos\Desktop\FRST64.exe 2022-08-29 20:16 - 2022-08-29 20:16 - 000492386 _____ C:\Users\Evan Devos\Desktop\ZHPDiag.txt 2022-08-29 20:16 - 2022-08-29 20:16 - 000000000 ___HD C:\$WinREAgent 2022-08-29 20:15 - 2022-08-29 20:15 - 000000135 _____ C:\Users\Evan 2022-08-29 19:37 - 2022-08-29 20:16 - 000000000 ____D C:\Users\Evan Devos\AppData\Roaming\ZHP 2022-08-29 19:37 - 2022-08-29 19:37 - 000000874 _____ C:\Users\Evan Devos\Desktop\ZHPSuite.lnk 2022-08-29 19:37 - 2022-08-29 19:37 - 000000000 ____D C:\Users\Evan Devos\AppData\Local\ZHP 2022-08-29 19:06 - 2022-08-29 19:06 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-08-29 17:54 - 2022-08-29 17:54 - 003505864 _____ (Nicolas Coolman) C:\Users\Evan Devos\Desktop\ZHPSuite.exe 2022-08-24 19:46 - 2022-08-24 19:46 - 000000000 ____D C:\ProgramData\Piriform 2022-08-24 18:51 - 2022-08-24 18:57 - 000000000 ____D C:\Users\Evan Devos\Desktop\archivage PC evan 2022-08-24 18:24 - 2022-08-24 18:25 - 000132022 _____ C:\Users\Evan Devos\Desktop\attestation_admission_evan 2022-2023.pdf 2022-08-24 18:06 - 2022-08-29 19:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-06-28 13:13 - 2022-06-28 13:13 - 000025048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-06-13 17:21 - 2022-06-13 17:18 - 000269136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-06-13 17:21 - 2022-06-13 17:18 - 000218608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-08-29 20:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-29 20:20 - 2022-02-16 12:30 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-29 20:18 - 2016-11-24 18:13 - 000000000 ____D C:\Users\Evan Devos\AppData\LocalLow\Mozilla 2022-08-29 20:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-29 20:02 - 2021-06-18 15:34 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-29 20:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-29 19:59 - 2021-12-14 17:32 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3162194502-1086202597-488239392-1001 2022-08-29 19:58 - 2021-10-15 17:13 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3162194502-1086202597-488239392-1001 2022-08-29 19:58 - 2021-10-14 19:54 - 000002436 _____ C:\Users\Evan Devos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-29 19:56 - 2021-10-14 19:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-08-29 19:50 - 2021-12-14 18:37 - 000000000 ____D C:\Users\Evan Devos\AppData\Local\Avast Software 2022-08-29 19:48 - 2020-10-19 12:37 - 000000000 ____D C:\Program Files\CCleaner 2022-08-29 19:36 - 2020-12-12 19:22 - 000000000 ____D C:\Users\Evan Devos\Documents\YouCam 2022-08-29 19:35 - 2020-10-29 20:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-08-29 19:30 - 2015-12-24 17:01 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-08-29 19:28 - 2020-12-12 13:55 - 000000000 ____D C:\Users\Evan Devos\AppData\Local\CrashDumps 2022-08-29 19:17 - 2021-12-14 18:20 - 000000000 ____D C:\ProgramData\Avast Software 2022-08-29 19:16 - 2021-12-14 18:22 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-08-29 19:14 - 2017-09-22 22:20 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-08-29 19:14 - 2015-12-12 14:12 - 000000000 __SHD C:\Users\Evan Devos\IntelGraphicsProfiles 2022-08-29 19:13 - 2021-10-14 19:44 - 000402200 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-08-29 19:12 - 2021-10-15 17:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-08-29 19:12 - 2021-10-14 19:44 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-29 19:12 - 2019-03-02 19:36 - 000000935 _____ C:\WINDOWS\Tasks\EPSON XP-540 Series Update {DED7EA83-0D6C-43E2-B3BA-0E4A7833E744}.job 2022-08-29 19:12 - 2015-12-24 16:19 - 000000302 _____ C:\WINDOWS\Tasks\UpdateTask.job 2022-08-29 19:12 - 2015-12-12 11:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-29 19:11 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-08-29 19:06 - 2021-11-12 18:22 - 000001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-08-29 19:06 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-29 18:45 - 2019-06-15 17:14 - 000000000 ____D C:\Users\Evan Devos\AppData\Local\D3DSCache 2022-08-29 18:33 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-29 18:08 - 2020-06-15 11:41 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-29 18:08 - 2020-06-15 11:41 - 000002284 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-08-29 17:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2022-08-29 17:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2022-08-24 19:35 - 2021-10-15 17:13 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-08-24 19:35 - 2015-12-12 11:31 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-24 19:21 - 2015-12-12 14:24 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-08-24 19:13 - 2021-10-11 00:24 - 000000000 ___DC C:\WINDOWS\Panther 2022-08-24 19:09 - 2014-04-24 18:12 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-08-24 18:34 - 2021-10-15 17:13 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-24 18:21 - 2021-10-15 17:13 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-08-24 18:21 - 2018-05-02 19:53 - 000000000 ____D C:\Users\Evan Devos\AppData\Local\GameCenter ==================== Fichiers à la racine de certains dossiers ======== 2015-12-24 17:20 - 2016-05-21 15:20 - 000000167 _____ () C:\Users\Evan Devos\AppData\Roaming\WB.CFG 2018-04-20 21:34 - 2018-04-20 21:34 - 000000062 _____ () C:\Users\Evan Devos\AppData\Local\TempGameCenter.main.log ==================== SigCheckExt ========================= 2016-07-16 13:42 - 2016-07-16 13:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 13:45 - 2013-08-22 13:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 13:43 - 2013-08-22 13:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-08-01 13:31 - 2016-07-01 05:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-13 15:25 - 2017-03-28 07:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2015-01-22 16:04 - 2014-10-29 03:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2015-01-22 16:03 - 2014-10-29 03:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2015-10-30 09:17 - 2015-10-30 09:17 - 003447296 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPScanTRDrvWn8.dll 2015-10-30 09:17 - 2015-10-30 09:17 - 000303616 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia2DrvRootWn8.dll 2015-06-27 01:03 - 2015-06-27 01:03 - 000206848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4256.dll 2017-03-16 21:12 - 2017-03-04 08:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 13:43 - 2016-07-17 00:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2014-12-24 23:37 - 2014-12-24 23:37 - 000051200 _____ C:\WINDOWS\system32\kdbsdk64.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2015-12-12 13:45 - 2015-07-22 16:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2015-12-12 13:43 - 2015-03-14 03:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2013-08-22 06:17 - 2013-08-22 06:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2017-03-16 21:12 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-07-16 13:44 - 2016-07-17 00:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2014-05-13 15:58 - 2014-05-13 15:58 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll 2014-12-24 23:36 - 2014-12-24 23:36 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll 2015-10-30 09:19 - 2016-09-21 13:59 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 09:19 - 2016-09-21 13:59 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2006-10-26 14:45 - 2006-10-26 14:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE 2022-08-29 20:22 - 2022-08-29 20:22 - 002371072 _____ (Farbar) C:\Users\Evan Devos\Desktop\FRST64.exe 2022-08-29 17:54 - 2022-08-29 17:54 - 003505864 _____ (Nicolas Coolman) C:\Users\Evan Devos\Desktop\ZHPSuite.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {53a11907-5885-11e4-9ad1-806e6f6e6963} {458078e9-2855-11ec-831b-806e6f6e6963} {458078ea-2855-11ec-831b-806e6f6e6963} {458078eb-2855-11ec-831b-806e6f6e6963} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {96275880-2d1e-11ec-91fc-87120ac95b0d} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {2aabc730-b13f-11e4-8606-806e6f6e6963} description EFI DVD/CDROM (TSSTcorp CDDVDW SU-208GB) badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {41fe199c-b167-11e4-8720-806e6f6e6963} description EFI Network 0 for IPv4 (7C-D3-0A-01-85-8A) badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {458078e9-2855-11ec-831b-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {458078ea-2855-11ec-831b-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {458078eb-2855-11ec-831b-806e6f6e6963} description EFI Network Application logicielle (101fffff) -------------------------------- identificateur {53a11906-5885-11e4-9ad1-806e6f6e6963} description EFI Network 0 for IPv6 (7C-D3-0A-01-85-8A) badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {53a11907-5885-11e4-9ad1-806e6f6e6963} description Internal EFI Shell badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {7a1500ac-b051-11e4-826f-806e6f6e6963} description EFI USB Device badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {7a1500ad-b051-11e4-826f-806e6f6e6963} description EFI DVD/CDROM badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {7a1500ae-b051-11e4-826f-806e6f6e6963} description EFI Network badmemoryaccess Yes Application logicielle (101fffff) -------------------------------- identificateur {a2577728-96ec-11eb-830a-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {a2577729-96ec-11eb-830a-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {a257772a-96ec-11eb-830a-806e6f6e6963} description EFI Network Application logicielle (101fffff) -------------------------------- identificateur {f66eff40-6243-11ea-82f9-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {f66eff41-6243-11ea-82f9-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {f66eff42-6243-11ea-82f9-806e6f6e6963} description EFI Network Chargeur de d‚marrage Windows ----------------------------- identificateur {8d7f0cc6-879e-47f6-a767-0ed8fd3b0659} device ramdisk=[\Device\HarddiskVolume4]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d} path \windows\system32\winload.efi description MEDION Recovery Environment badmemoryaccess Yes osdevice ramdisk=[\Device\HarddiskVolume4]\Sources\boot.wim,{572bcd56-ffa7-11d9-aae0-0007e994107d} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {96275882-2d1e-11ec-91fc-87120ac95b0d} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {96275880-2d1e-11ec-91fc-87120ac95b0d} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {96275882-2d1e-11ec-91fc-87120ac95b0d} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{96275883-2d1e-11ec-91fc-87120ac95b0d} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{96275883-2d1e-11ec-91fc-87120ac95b0d} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {ab8e8e23-d1dd-11e4-827c-f4066919c77d} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{ab8e8e24-d1dd-11e4-827c-f4066919c77d} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{ab8e8e24-d1dd-11e4-827c-f4066919c77d} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {bac675e5-db55-11e3-825d-cb516fa5464d} device locate=\windows\system32\winload.efi path \windows\system32\winload.efi description Windows 8.1 locale en-gb inherit {bootloadersettings} integrityservices Enable recoveryenabled No badmemoryaccess Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice locate=\windows systemroot \windows resumeobject {bac675e4-db55-11e3-825d-cb516fa5464d} nx OptIn bootmenupolicy Standard Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {96275880-2d1e-11ec-91fc-87120ac95b0d} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {96275882-2d1e-11ec-91fc-87120ac95b0d} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {bac675e4-db55-11e3-825d-cb516fa5464d} device locate=\windows\system32\winresume.efi path \windows\system32\winresume.efi description Windows Resume Application locale en-gb inherit {resumeloadersettings} recoveryenabled No badmemoryaccess Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice locate=\hiberfil.sys filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 badmemoryaccess Yes Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} badmemoryaccess Yes hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {572bcd56-ffa7-11d9-aae0-0007e994107d} description Ramdisk Options badmemoryaccess Yes ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \boot\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {96275883-2d1e-11ec-91fc-87120ac95b0d} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================