==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Advanced Micro Devices Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserCrashHandler.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\AvastBrowserCrashHandler64.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (ATI Technologies Inc.) [Fichier non signé] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastNM.exe (explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <34> (explorer.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe (explorer.exe ->) (MobiSystems, Inc. -> MobiSystems Inc.) C:\Program Files\MobiSystems\OfficeSuite\MobiSystemsUpdate.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIIKE.EXE (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (services.exe ->) () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe (services.exe ->) (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe (services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (services.exe ->) (Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (services.exe ->) (RealVNC Limited -> RealVNC Ltd.) C:\Program Files (x86)\RealVNC\VNC4\winvnc4.exe (services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe (services.exe ->) (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccsvchst.exe <2> (services.exe ->) (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (svchost.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\livecomm.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.19991_none_fa0fb7959b4c8c91\TiWorker.exe (svchost.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-18] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2994928 2013-06-05] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-01-19] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [OfficeSuite] => C:\Program Files\MobiSystems\OfficeSuite\MobiSystemsUpdate.exe [339152 2022-06-14] (MobiSystems, Inc. -> MobiSystems Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-07-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-03-01] (Hewlett-Packard Company -> Hewlett-Packard Company) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-05-03] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1718536 2014-07-24] (CyberLink Corp. -> CyberLink Corp.) HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [GoogleChromeAutoLaunch_372A80B486240514927DE3F8B0D7A97E] => "C:\Users\Héloise\AppData\Local\Chromium\Application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session [666624 2015-07-30] (The Chromium Authors) [Fichier non signé] HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [AvastBrowserAutoLaunch_3E1EAF52EB31B0C934D4E3A5B93A3AD1] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2983680 2022-08-17] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-21-3245499168-2350251440-594027931-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Héloise\AppData\Local\Microsoft\Teams\Update.exe [2508480 2022-07-27] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3245499168-2350251440-594027931-1005\...\Run: [Avast Browser] => C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserUpdateCore.exe [521176 2021-03-02] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-21-3245499168-2350251440-594027931-1005\...\Run: [AvastBrowserAutoLaunch_41F42E4588060852330FD542E30C8FE3] => C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIIKE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EPSON XP-302 303 305 306 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMIKE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [365568 2012-12-01] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.52\Installer\chrmstp.exe [2022-08-31] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\104.0.18088.102\Installer\chrmstp.exe [2022-08-27] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.143\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2013-05-22] (CyberLink Corp. -> CyberLink) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {07058C2E-B672-4ACF-BDBC-3FA3835CAD0D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) S-1-5-21-3245499168-2350251440-594027931-1005 => C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software) Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0B138126-29EC-4788-869E-B8FB5399EEFC} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1344312 2013-09-10] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1A34F697-A564-4403-A5BA-4A0A71B8655C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1151880 2016-07-04] (Hewlett-Packard Company -> HP Inc.) Task: {1F6640A1-BCCD-4A04-A25B-E64924EE530C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2022-01-19] (Avast Software s.r.o. -> AVAST Software) Task: {200BD7D5-C823-43C5-BBEC-D30EA6B50945} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe [54096 2013-06-04] (Symantec Corporation -> Symantec Corporation) Task: {2B766B9D-D434-455D-96FD-CF65A24C5649} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1061752 2018-06-28] (HP Inc. -> HP Inc.) Task: {2DEDA8D6-0E3B-4893-9061-D7FEEB718E91} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2250576 2022-05-27] (Avast Software s.r.o. -> Avast Software) Task: {45F35097-C9B9-4F8C-9CD8-1B5312A2D3B8} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-3245499168-2350251440-594027931-1005Core => C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-02] (Avast Software s.r.o. -> AVAST Software) Task: {62DCA8D7-DA6C-4EF4-A964-3E1244FF6154} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2014-10-28] (CyberLink Corp. -> CyberLink Corp.) Task: {7D196D87-DB48-4DCA-9F26-950C8A3267AD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-15] (Google Inc -> Google Inc.) Task: {7D35D395-4927-419E-9407-BFD66672AB14} - System32\Tasks\pricemeterwatcher => C:\Users\Héloise\AppData\Local\PriceMeter\pricemeterw.exe (Pas de fichier) Task: {7D612A11-810E-487D-8D5B-5405840D3080} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\SymErr.exe [54096 2013-06-04] (Symantec Corporation -> Symantec Corporation) Task: {89A0D9A3-EED2-4082-BA5F-8271419D9041} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.) Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {915A1F13-6EF7-443D-B72F-F0DEB748936E} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\WSCStub.exe [2059272 2015-07-27] (Symantec Corporation -> Symantec Corporation) Task: {956F1B10-07F2-4D49-BE46-76FD597D5A3D} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2059272 2015-07-27] (Symantec Corporation -> Symantec Corporation) Task: {96749168-827E-48B1-BE1B-46CA8F1D66A0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208760 2018-06-27] (HP Inc. -> HP Inc.) Task: {99F0B8A7-BB8C-4BE1-B93A-D7F0D4356AA4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2983680 2022-08-17] (Avast Software s.r.o. -> AVAST Software) Task: {A09C5F39-D3D4-493F-A388-7003B2D0109D} - System32\Tasks\pricemetertask => C:\Users\Héloise\AppData\Local\PriceMeter\TEMP\pricemeter.exe (Pas de fichier) <==== ATTENTION Task: {A1D7D181-0FDD-44A8-8B2B-5D8724965150} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-15] (Google Inc -> Google Inc.) Task: {A29ED696-1E69-4997-8B41-A2E2DD122505} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-3245499168-2350251440-594027931-1005UA => C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-03-02] (Avast Software s.r.o. -> AVAST Software) Task: {A84E99AE-04B4-471E-8C48-1F9607E6BFC6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2016-11-07] (HP Inc. -> HP Inc.) Task: {B11ECAE6-9493-4758-9FE2-6CEE3C6351ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1151880 2016-07-04] (Hewlett-Packard Company -> HP Inc.) Task: {BF39CEA7-143C-4E5B-BA59-3F96DC85B0B3} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {C42F67D0-A5B6-4D70-BFB8-1DFF090A35F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [107072 2016-05-09] (Hewlett-Packard Company -> Hewlett-Packard) Task: {C6769BBE-B709-47B9-A343-833F5497D510} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2983680 2022-08-17] (Avast Software s.r.o. -> AVAST Software) Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {D4B5403D-39D7-4B98-B01B-1A1C41D48F60} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2994928 2013-06-05] (Synaptics Incorporated -> Synaptics Incorporated) Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {ED84A6C4-4A2E-468E-9335-E6350619291C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1151880 2016-07-04] (Hewlett-Packard Company -> HP Inc.) Task: {F54B2946-0A30-4427-9A16-1FFA31DC2DF2} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2022-01-19] (Avast Software s.r.o. -> AVAST Software) Task: {FE816F75-5D23-40A6-81A6-909142EB851C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4969240 2022-01-19] (Avast Software s.r.o. -> AVAST Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{82D48583-B463-43DA-BB88-A49DD1875F82}: [DhcpNameServer] 89.2.0.1 89.2.0.2 Tcpip\..\Interfaces\{C93EADBD-15DE-476F-824F-72E4A074FB2A}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Héloise\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-19] FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\coFFPlgn FF Extension: (Norton Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\coFFPlgn [2022-07-01] [] [non signé] FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\IPSFF FF Extension: (Norton Vulnerability Protection) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\IPSFF [2014-02-07] [] [non signé] FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.) [Fichier non signé] FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2022-01-19] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1189.1\npAvastBrowserUpdate3.dll [2022-01-19] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] (WildTangent Inc -> ) FF Plugin HKU\S-1-5-21-3245499168-2350251440-594027931-1005: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-02] (Avast Software s.r.o. -> AVAST Software) FF Plugin HKU\S-1-5-21-3245499168-2350251440-594027931-1005: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Users\Isabelle\AppData\Local\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-03-02] (Avast Software s.r.o. -> AVAST Software) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Héloise\AppData\Local\Google\Chrome\User Data\Default [2022-09-01] CHR Notifications: Default -> hxxps://www.instagram.com CHR Extension: (Norton Security Toolbar) - C:\Users\Héloise\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2016-01-25] CHR Extension: (Norton Identity Safe) - C:\Users\Héloise\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-12-17] CHR Extension: (Simple Files Downloader) - C:\Users\Héloise\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpndcdieibcjamippljnmmiibeaimfof [2022-06-22] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Héloise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-12] CHR HKLM\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx [2014-12-16] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\Exts\Chrome.crx [2014-12-16] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [103424 2013-04-17] () [Fichier non signé] R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [Fichier non signé] R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8480848 2022-01-19] (Avast Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [452888 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [452888 2022-01-19] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193872 2022-01-19] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\104.0.18088.102\elevation_service.exe [2010024 2022-08-17] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-06-26] (CyberLink Corp. -> CyberLink) R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-06-26] (CyberLink Corp. -> CyberLink) R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Fichier non signé] R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29760 2016-07-04] (Hewlett-Packard Company -> HP Inc.) R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-05-03] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation -> Symantec Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer -> TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation) R2 WinVNC4; C:\Program Files (x86)\RealVNC\VNC4\WinVNC4.exe [439632 2008-10-15] (RealVNC Limited -> RealVNC Ltd.) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36784 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2022-01-19] (Avast Software s.r.o. -> AVAST Software) R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\BASHDefs\20140121.001\BHDrvx64.sys [1526488 2014-01-21] (Symantec Corporation -> Symantec Corporation) R3 ccSet_NIS; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation -> Symantec Corporation) S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-02-06] (Symantec Corporation -> Symantec Corporation) S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-02-06] (Symantec Corporation -> Symantec Corporation) [Fichier non signé] R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\IPSDefs\20140212.001\IDSvia64.sys [521944 2014-02-06] (Symantec Corporation -> Symantec Corporation) S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\VirusDefs\20140213.002\ENG64.SYS [126040 2014-02-06] (Symantec Corporation -> Symantec Corporation) S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\VirusDefs\20140213.002\EX64.SYS [2099288 2014-02-06] (Symantec Corporation -> Symantec Corporation) R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [288840 2013-04-11] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S3 SRTSP; C:\WINDOWS\System32\Drivers\NISx64\1406000.01B\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation -> Symantec Corporation) R3 SRTSPX; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation -> Symantec Corporation) R3 SymDS; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation -> Symantec Corporation) R3 SymEFA; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation -> Symantec Corporation) S4 SymELAM; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\SymELAM.sys [23448 2012-11-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-02-07] (Symantec Corporation -> Symantec Corporation) R3 SymIRON; C:\WINDOWS\system32\drivers\NISx64\1406000.01B\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation -> Symantec Corporation) R1 SymNetS; C:\WINDOWS\System32\Drivers\NISx64\1406000.01B\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation -> Symantec Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-01 12:54 - 2022-09-01 12:56 - 000032127 _____ C:\Users\Héloise\Desktop\FRST.txt 2022-09-01 12:53 - 2022-09-01 12:55 - 000000000 ____D C:\FRST 2022-09-01 12:52 - 2022-09-01 12:52 - 002371072 _____ (Farbar) C:\Users\Héloise\Downloads\FRST64.exe 2022-09-01 12:52 - 2022-09-01 12:52 - 002371072 _____ (Farbar) C:\Users\Héloise\Desktop\FRST64.exe 2022-09-01 12:50 - 2022-09-01 12:50 - 000359961 _____ C:\Users\Public\Desktop\ZHPDiag.txt 2022-09-01 12:31 - 2022-09-01 12:50 - 000000000 ____D C:\Users\Héloise\AppData\Roaming\ZHP 2022-09-01 12:31 - 2022-09-01 12:31 - 000000876 _____ C:\Users\Héloise\Desktop\ZHPSuite.lnk 2022-09-01 12:31 - 2022-09-01 12:31 - 000000000 ____D C:\Users\Héloise\AppData\Local\ZHP 2022-09-01 12:31 - 2022-09-01 12:29 - 003506376 _____ (Nicolas Coolman) C:\Users\Héloise\Desktop\ZHPSuite.exe 2022-09-01 12:29 - 2022-09-01 12:29 - 003506376 _____ (Nicolas Coolman) C:\Users\Héloise\Downloads\ZHPSuite.exe 2022-08-31 21:55 - 2022-08-31 21:56 - 037192656 _____ (Telegram FZ-LLC ) C:\Users\Héloise\Downloads\tsetup-x64.4.1.0.exe 2022-08-27 16:06 - 2022-08-27 16:06 - 000175094 _____ C:\Users\Héloise\Desktop\Ton-bilan-bien-être houssine.odt 2022-08-27 15:50 - 2022-08-27 15:50 - 000175086 _____ C:\Users\Héloise\Desktop\Ton-bilan-bien-êtremonica.odt 2022-08-27 12:37 - 2022-08-27 12:37 - 109252932 _____ C:\Users\Héloise\Downloads\Prez Fit Vibes Montev 1.pptx 2022-08-27 12:34 - 2022-08-27 12:35 - 000173075 _____ C:\Users\Héloise\Desktop\Ton-bilan-bien-être.odt 2022-08-27 12:09 - 2022-08-27 12:09 - 003404234 _____ C:\Users\Héloise\Desktop\Prez Fit Vibes Montev 1.pdf 2022-07-01 21:50 - 2022-07-01 21:50 - 000175534 _____ C:\Users\Héloise\Desktop\Ton-bilan-bien-être-1-1 ARLAND.odt 2022-07-01 19:16 - 2022-07-01 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2022-07-01 19:16 - 2022-07-01 19:16 - 000000000 ____D C:\Program Files\7-Zip 2022-06-22 14:56 - 2022-06-22 14:56 - 000000000 ___HD C:\$AV_ASW 2022-06-22 14:54 - 2022-06-22 14:56 - 000000000 ____D C:\Users\Héloise\Desktop\Microsoft Office Professional Plus 2019 2022-06-22 14:53 - 2022-06-22 14:53 - 013965839 _____ C:\Users\Héloise\Downloads\Microsoft Office Professional Plus 2019 (1).zip 2022-06-22 13:49 - 2022-06-22 13:49 - 003331296 _____ (MobiSystems) C:\Users\Héloise\Downloads\OfficeSuiteSetup_IID_3c46471c-7f45-4eb4-991d-373d468355d2.exe 2022-06-22 13:23 - 2022-06-22 13:23 - 001423688 _____ C:\Users\Héloise\Downloads\MSTeamsSetupx64_s_8DA544156BACC96-7-0_c_l_.exe 2022-06-22 12:57 - 2022-07-27 22:58 - 000002355 _____ C:\Users\Héloise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2022-06-22 12:57 - 2022-06-22 12:57 - 000000000 ____D C:\Users\Héloise\AppData\Roaming\Teams 2022-06-22 12:56 - 2022-06-22 13:24 - 000000000 ____D C:\Users\Héloise\AppData\Local\SquirrelTemp 2022-06-19 07:55 - 2022-06-19 07:55 - 000000000 ____H C:\Users\Héloise\BIT5418.tmp ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-01 12:06 - 2014-02-06 23:35 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-01 11:09 - 2014-02-06 22:17 - 000000000 ____D C:\Users\Héloise\Documents\Youcam 2022-09-01 11:08 - 2014-02-06 22:15 - 000003944 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{BDBED45B-5F00-4876-AFB7-BC4C333BE7D7} 2022-09-01 11:04 - 2015-03-31 09:47 - 000000000 ___RD C:\Users\Héloise\OneDrive 2022-08-31 22:54 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-08-31 22:01 - 2014-02-06 23:35 - 000003504 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-08-31 22:01 - 2014-02-06 23:35 - 000003376 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-08-27 15:38 - 2018-05-08 22:37 - 000004168 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-08-27 14:17 - 2014-02-06 22:23 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3245499168-2350251440-594027931-1002 2022-08-27 12:12 - 2022-01-19 18:39 - 000003732 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) 2022-08-27 12:12 - 2022-01-19 18:39 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk 2022-08-27 12:12 - 2022-01-19 18:39 - 000002411 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk ==================== Fichiers à la racine de certains dossiers ======== 2016-05-06 12:02 - 2016-05-06 12:02 - 002433043 _____ () C:\Users\Héloise\AppData\Roaming\sb93.dat 2014-06-02 22:58 - 2016-12-09 10:58 - 000000284 _____ () C:\Users\Héloise\AppData\Roaming\WB.CFG ==================== SigCheckExt ========================= 2014-04-08 23:43 - 2012-11-12 15:15 - 000558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2014-04-08 23:43 - 2012-11-12 20:41 - 000535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2014-04-08 23:43 - 2012-10-22 17:19 - 000219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2014-04-08 23:43 - 2012-11-12 15:15 - 000558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2014-04-08 23:43 - 2012-11-12 20:41 - 000535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2014-04-08 23:43 - 2012-10-22 17:19 - 000219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2013-07-19 23:00 - 2011-08-24 09:52 - 000117248 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPMUIDir.exe 2012-07-25 22:22 - 2012-07-26 05:07 - 004722176 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 006549504 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 000188416 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 000206336 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll 2012-11-27 02:18 - 2012-11-27 02:18 - 000050688 _____ C:\WINDOWS\system32\kdbsdk64.dll 2014-04-08 23:45 - 2006-12-19 18:20 - 000077824 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EBAPI.dll 2014-04-08 23:45 - 2007-09-07 17:33 - 000135168 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EEBAPI.dll 2014-04-08 23:45 - 2006-12-19 18:31 - 000110592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EEBDSCVR.dll 2014-04-08 23:45 - 2003-12-17 01:01 - 000055808 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EEBSDKIF.dll 2014-04-08 23:45 - 2007-03-28 18:26 - 000065536 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EEBUtil.dll 2012-07-25 22:22 - 2012-06-02 16:32 - 004338688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll 2012-07-25 22:22 - 2012-06-02 16:32 - 004896768 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll 2012-07-25 22:22 - 2012-06-02 16:32 - 000147456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll 2012-07-25 22:22 - 2012-06-02 16:32 - 000208896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll 2012-11-27 02:18 - 2012-11-27 02:18 - 000038912 _____ C:\WINDOWS\SysWOW64\kdbsdk32.dll 2022-09-01 12:52 - 2022-09-01 12:52 - 002371072 _____ (Farbar) C:\Users\Héloise\Desktop\FRST64.exe 2022-09-01 12:31 - 2022-09-01 12:29 - 003506376 _____ (Nicolas Coolman) C:\Users\Héloise\Desktop\ZHPSuite.exe 2014-02-13 22:42 - 2014-02-13 22:43 - 014768072 _____ C:\Users\Héloise\Downloads\761_avast_Free_Antivirus.exe 2014-04-07 23:05 - 2014-04-07 23:06 - 022560768 _____ C:\Users\Héloise\Downloads\epson376212eu.exe 2014-04-08 23:30 - 2014-04-08 23:31 - 047493120 _____ C:\Users\Héloise\Downloads\epson377972eu.exe 2022-09-01 12:52 - 2022-09-01 12:52 - 002371072 _____ (Farbar) C:\Users\Héloise\Downloads\FRST64.exe 2015-07-21 21:32 - 2015-07-21 21:32 - 001635544 _____ C:\Users\Héloise\Downloads\setup_Livre_photo_Pixum.exe 2022-09-01 12:29 - 2022-09-01 12:29 - 003506376 _____ (Nicolas Coolman) C:\Users\Héloise\Downloads\ZHPSuite.exe 2020-03-28 17:51 - 2020-03-28 17:51 - 132856894 _____ C:\Users\Isabelle\Downloads\Apache_OpenOffice_4.1.7_Win_x86_install_fr (1).exe 2020-03-28 17:11 - 2020-03-28 17:12 - 132856894 _____ C:\Users\Isabelle\Downloads\Apache_OpenOffice_4.1.7_Win_x86_install_fr.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {2a75496e-578e-11e3-be6f-806e6f6e6963} {efa49bee-57e1-11e3-b91f-c03c45e3ea99} {efa49bef-57e1-11e3-b91f-c03c45e3ea99} timeout 0 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {c29fb677-57a4-11e3-be73-a0d3c164284c} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {2a75496e-578e-11e3-be6f-806e6f6e6963} description Internal Hard Disk or Solid State Disk Application logicielle (101fffff) -------------------------------- identificateur {6e6767c5-8f61-11e3-be76-a0d3c164284c} description Internal Hard Disk or Solid State Disk Application logicielle (101fffff) -------------------------------- identificateur {efa49bee-57e1-11e3-b91f-c03c45e3ea99} description USB Drive (UEFI) Application logicielle (101fffff) -------------------------------- identificateur {efa49bef-57e1-11e3-b91f-c03c45e3ea99} description Internal CD/DVD ROM Drive (UEFI) Chargeur de d‚marrage Windows ----------------------------- identificateur {c29fb674-57a4-11e3-be73-a0d3c164284c} device ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c29fb675-57a4-11e3-be73-a0d3c164284c} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[\Device\HarddiskVolume1]\Recovery\WindowsRE\Winre.wim,{c29fb675-57a4-11e3-be73-a0d3c164284c} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 8.1 locale fr-FR inherit {bootloadersettings} recoverysequence {c29fb679-57a4-11e3-be73-a0d3c164284c} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {c29fb677-57a4-11e3-be73-a0d3c164284c} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {c29fb679-57a4-11e3-be73-a0d3c164284c} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{c29fb67a-57a4-11e3-be73-a0d3c164284c} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{c29fb67a-57a4-11e3-be73-a0d3c164284c} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {c29fb677-57a4-11e3-be73-a0d3c164284c} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {c29fb679-57a4-11e3-be73-a0d3c164284c} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {efa49bf2-57e1-11e3-b91f-c03c45e3ea99} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {c29fb674-57a4-11e3-be73-a0d3c164284c} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {c29fb675-57a4-11e3-be73-a0d3c164284c} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume1 ramdisksdipath \Recovery\WindowsRE\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {c29fb676-57a4-11e3-be73-a0d3c164284c} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {c29fb67a-57a4-11e3-be73-a0d3c164284c} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi LastRegBack: 2022-07-27 23:18 ==================== Fin de FRST.txt ========================