Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022 Exécuté par guyde (administrateur) sur DESKTOP-OIN5HEP (ASUSTeK COMPUTER INC. X751LAB) (04-09-2022 16:01:10) Exécuté depuis C:\Users\guyde\Desktop Profils chargés: guyde Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1889 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-4cc6e984.exe ->) (Accès refusé) [Fichier non signé] C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\F01A1514-6DD1-4B3C-89B6-651445A68337\MpSigStub.exe (C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\mpam-4cc6e984.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe (services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe (services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe <2> (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1852_none_7de3b01c7cacf858\TiWorker.exe (svchost.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerReactivator.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe [63272 2015-12-24] (ASUS Cloud Corporation -> ) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [MoneyAgent] => C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe [204800 2003-06-18] (Microsoft Corp.) [Fichier non signé] HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIN9E.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [com.squirrel.lifesize_app.Lifesize] => C:\Users\guyde\AppData\Local\lifesize_app\update.exe [1843880 2020-04-17] (Lifesize, Inc. -> GitHub) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [Lifesize App Service] => C:\Users\guyde\AppData\Local\lifesize_app\Lifesize.exe [577704 2020-06-05] (Lifesize, Inc. -> Lifesize) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [ApowerManager] => C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe [56449584 2020-09-29] (Apowersoft Ltd -> Apowersoft Ltd.) HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [MicrosoftEdgeAutoLaunch_62F17B9FEDD345798ACD3BBE10C8C39B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795384 2022-09-01] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\EPSON ET-2500 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBN9E.DLL [180224 2014-03-04] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\UDC: C:\WINDOWS\system32\udcpm.dll [44784 2017-12-28] (fCoder SIA -> fCoder Group, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\100.0.4896.127\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-09-03] (Google LLC -> Google LLC) ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {074122B5-7488-4AC2-A342-77855DB87B8A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {08AE9DCA-E610-4E9E-8423-2361D6CCE74E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform) Task: {185F2027-B3E9-4FF3-BA8E-12F5F9DEBC42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2FDE6D98-6E5A-41C2-B63E-45694077048C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-05] (Google Inc -> Google Inc.) Task: {30E2A3B1-CBE4-4417-8218-D68A4E886851} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {36E411B7-3CE8-47D5-B3C6-C689C26BA997} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signé] Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {5AC6EA59-E5C4-4C20-AFEE-6E2D4218A91F} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {5BE260A7-0D3C-4824-8A24-43D6C50FA653} - System32\Tasks\EPSON ET-2500 Series Update {D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {61F7D000-F4EE-4231-BB06-AF53DC800375} - System32\Tasks\EPSON ET-2500 Series Update {AE6CDA46-DD8A-4F61-95D4-546B510034B3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1616160 2016-01-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé] Task: {722F4C64-E90F-4B04-B889-81F6915A8E43} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [585000 2016-09-21] (Dropbox, Inc -> ) Task: {728E3948-1CF7-4BEE-8D07-CB3E98774F1F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {A2AB61D5-D872-47C1-967A-EAD1E3C91A7B} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [1049608 2017-07-03] (ASUSTek Computer Inc. -> ASUSTek Computer Inc) Task: {AA5FD7CB-87C1-4BEC-9B02-904F1AAFB151} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek) Task: {AD05EB4F-5E68-4EAC-B0DA-33D86495B2A3} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B923CAF2-9263-4BF7-A07B-356E32AA38C9} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {C9E1D71C-579E-4575-862E-DF602E13F06C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D09BDB45-A65E-4018-8CAA-D27D720737DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-05] (Google Inc -> Google Inc.) Task: {DD089D9F-1AB4-4C07-ADC3-65E3026D4107} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E580C849-5018-4B86-A230-B751CCC6592E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {F14841B1-99E0-4394-B15C-BAFEE6CB693D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {FDDFB047-AA3F-463D-BBCC-3E0D396B060F} - System32\Tasks\CCleanerSkipUAC - guyde => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {FE6F72B1-F1E0-4DD3-9E5C-A8CA06361E85} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\EPSON ET-2500 Series Update {AE6CDA46-DD8A-4F61-95D4-546B510034B3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE:/EXE:{AE6CDA46-DD8A-4F61-95D4-546B510034B3} /F:UpdateWORKGROUP\DESKTOP-OIN5HEP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON ET-2500 Series Update {D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE:/EXE:{D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D} /F:UpdateWORKGROUP\DESKTOP-OIN5HEP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d0511f02-a6be-43cc-8f65-b48f039f6ae5}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d57d7a26-9421-4aee-b045-18aeb1bcf145}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\guyde\Downloads Edge DefaultProfile: Default Edge Profile: C:\Users\guyde\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-04] FireFox: ======== FF DefaultProfile: dhtly5z9.default FF ProfilePath: C:\Users\guyde\AppData\Roaming\Mozilla\Firefox\Profiles\dhtly5z9.default [2020-03-30] FF ProfilePath: C:\Users\guyde\AppData\Roaming\Mozilla\Firefox\Profiles\gcfoyv7q.default-release-1639159460977 [2022-09-02] FF Homepage: Mozilla\Firefox\Profiles\gcfoyv7q.default-release-1639159460977 -> hxxps://www.orange.fr/portail?utm_source=oi&utm_medium=v4.0.0.1&utm_campaign=sp&utm_content=promoHP FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-12-07] [] [non signé] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] (WildTangent Inc -> ) FF Plugin-x32: Soda PDF Desktop -> C:\Program Files (x86)\Soda PDF Desktop\np-previewer.dll [2017-11-07] (LULU Software -> LULU Software) Chrome: ======= CHR Profile: C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default [2022-09-04] CHR DownloadDir: C:\Users\guyde\Desktop CHR HomePage: Default -> orange.fr CHR NewTab: Default -> Not-active:"chrome-extension://onghofjobpgcdeeifjfbcfepkchnenoh/newtab.html" CHR Extension: (FoE - Assistant) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2022-09-03] CHR Extension: (Google Docs hors connexion) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-03] CHR Extension: (Extension de sécurité 16.1 pour l'antivirus) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgleflkdamakpmckkidkcmnmdikbbmok [2022-05-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-04] CHR Extension: (Signal Spam) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2022-09-03] CHR Extension: (Orange page d'accueil) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2022-05-04] CHR Extension: (Extension de sécurité 20.0 pour l'antivirus) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkfabndaepgjlmdjjokdnknhkpgccdfd [2022-05-04] CHR HKLM\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok CHR HKLM-x32\...\Chrome\Extension: [kgleflkdamakpmckkidkcmnmdikbbmok] - hxxps://chrome.google.com/webstore/detail/kgleflkdamakpmckkidkcmnmdikbbmok CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) S4 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Fichier non signé] R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S4 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) S4 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [677880 2017-05-12] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent Inc -> WildTangent) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe [133480 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd) S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S4 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2778352 2017-11-07] (LULU Software -> LULU Software) S4 Soda PDF Desktop Creator; C:\Program Files\Soda PDF Desktop\creator\common\creator-ws.exe [756464 2017-11-07] (LULU Software -> LULU Software) S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14718784 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-05-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS) R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287744 2022-05-07] (Microsoft Corporation) [Fichier non signé] R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-05-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-05-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-05-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-03 23:47 - 2022-09-03 23:47 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2022-09-03 23:47 - 2022-09-03 23:47 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2022-09-03 23:47 - 2022-09-03 23:47 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-09-03 23:47 - 2022-09-03 23:47 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-09-03 23:47 - 2022-09-03 23:47 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-09-03 23:47 - 2022-09-03 23:47 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-09-03 23:47 - 2022-09-03 23:47 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-09-03 23:46 - 2022-09-03 23:46 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-09-03 23:46 - 2022-09-03 23:46 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-09-03 23:46 - 2022-09-03 23:46 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-09-03 23:46 - 2022-09-03 23:46 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-09-03 23:46 - 2022-09-03 23:46 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-09-03 23:45 - 2022-09-03 23:45 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-09-03 23:45 - 2022-09-03 23:45 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-09-03 23:45 - 2022-09-03 23:45 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-09-03 23:43 - 2022-09-03 23:43 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-09-03 23:43 - 2022-09-03 23:43 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-09-03 22:30 - 2022-09-03 22:30 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-09-03 22:29 - 2022-09-03 22:29 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-09-03 22:28 - 2022-09-03 22:28 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-09-03 22:28 - 2022-09-03 22:28 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2022-09-03 22:27 - 2022-09-03 22:27 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-09-03 22:26 - 2022-09-03 22:26 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-09-03 22:26 - 2022-09-03 22:26 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-09-03 22:26 - 2022-09-03 22:26 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-09-03 18:42 - 2022-09-03 18:42 - 000081908 _____ C:\Users\guyde\Desktop\Shortcut.txt 2022-09-03 18:24 - 2022-09-03 18:42 - 000059944 _____ C:\Users\guyde\Desktop\Addition.txt 2022-09-03 18:14 - 2022-09-03 18:14 - 000000000 ___HD C:\$WinREAgent 2022-09-03 18:03 - 2022-09-04 16:21 - 000026492 _____ C:\Users\guyde\Desktop\FRST.txt 2022-09-03 18:01 - 2022-09-04 16:07 - 000000000 ____D C:\FRST 2022-09-03 17:57 - 2022-09-03 17:57 - 002371072 _____ (Farbar) C:\Users\guyde\Desktop\FRST64.exe 2022-09-02 18:29 - 2022-09-02 18:29 - 000000000 ____D C:\ProgramData\Piriform ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2022-09-04 16:31 - 2020-06-29 23:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-09-04 16:31 - 2020-06-29 23:23 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-09-04 16:28 - 2020-09-07 12:32 - 000003800 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2022-09-04 16:28 - 2020-09-07 12:32 - 000003576 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2022-09-04 16:28 - 2016-03-24 14:06 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2022-09-04 16:28 - 2016-03-24 14:06 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2022-09-04 16:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-09-04 16:26 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-09-04 16:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-09-04 16:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-09-04 16:10 - 2016-12-05 17:49 - 000000000 ____D C:\Program Files (x86)\Google 2022-09-04 15:57 - 2017-06-08 19:40 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-09-04 15:57 - 2016-12-04 18:18 - 000000000 __SHD C:\Users\guyde\IntelGraphicsProfiles 2022-09-04 12:44 - 2019-11-26 11:21 - 000000000 ____D C:\Program Files\CCleaner 2022-09-04 12:29 - 2020-09-07 11:32 - 000000000 ____D C:\Users\guyde 2022-09-04 12:28 - 2020-09-07 11:48 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-09-04 12:28 - 2019-12-07 16:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat 2022-09-04 12:28 - 2019-12-07 16:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat 2022-09-04 12:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-09-04 12:20 - 2020-09-07 12:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-09-04 12:20 - 2020-09-07 11:25 - 000560144 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-09-04 12:20 - 2020-09-07 11:24 - 000008192 ___SH C:\DumpStack.log.tmp 2022-09-04 12:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-09-04 12:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-09-04 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-09-04 12:13 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-09-04 12:13 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-09-04 12:13 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-09-04 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-09-04 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-09-04 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-09-04 12:10 - 2020-09-07 11:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-09-04 11:58 - 2020-09-07 12:32 - 000002926 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher 2022-09-04 11:58 - 2020-09-07 12:32 - 000002406 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice 2022-09-04 11:58 - 2020-09-07 12:32 - 000002400 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus 2022-09-04 11:58 - 2020-09-07 12:32 - 000002362 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2022-09-04 11:58 - 2020-09-07 12:32 - 000002274 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON 2022-09-04 11:57 - 2020-09-07 12:32 - 000002984 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3 2022-09-04 11:57 - 2020-09-07 12:32 - 000002348 _____ C:\WINDOWS\system32\Tasks\RtHDVBg 2022-09-04 11:53 - 2020-03-30 17:24 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-09-04 11:53 - 2020-03-30 17:24 - 000000995 _____ C:\Users\Public\Desktop\Firefox.lnk 2022-09-04 11:53 - 2016-12-05 19:22 - 000000000 ____D C:\Users\guyde\AppData\Roaming\Orange 2022-09-04 11:49 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-09-04 11:49 - 2018-09-18 10:40 - 000000000 ____D C:\Program Files (x86)\Suite de Sécurité Orange 2022-09-04 11:49 - 2016-12-06 11:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2022-09-04 11:47 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-09-04 11:42 - 2022-05-16 18:05 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-09-04 11:42 - 2017-10-18 16:52 - 000000000 ____D C:\Program Files\Common Files\AV 2022-09-04 11:29 - 2016-12-04 18:18 - 000000184 _____ C:\Users\guyde\AppData\Roaming\sp_data.sys 2022-09-03 22:26 - 2020-09-07 11:29 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-09-03 17:33 - 2019-09-05 01:28 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture 2022-09-03 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2022-09-03 15:51 - 2016-12-04 22:29 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-09-03 15:50 - 2016-12-04 22:28 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-09-03 10:49 - 2020-10-08 18:58 - 000002098 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-09-03 10:49 - 2020-10-08 18:58 - 000002057 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-09-03 01:38 - 2020-09-07 12:32 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-09-02 18:31 - 2020-09-07 12:32 - 000002274 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260 2022-09-02 18:27 - 2016-03-24 14:06 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2022-09-02 18:26 - 2021-01-22 11:21 - 000000799 _____ C:\Users\Public\Desktop\Speccy.lnk 2022-09-02 18:23 - 2021-01-22 11:16 - 000001661 _____ C:\Users\Public\Desktop\Recuva.lnk 2022-09-02 18:23 - 2021-01-22 11:16 - 000000000 ____D C:\Program Files\Recuva 2022-09-02 17:37 - 2021-12-13 05:27 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2720209156-77458600-115180239-1001 2022-09-02 17:37 - 2021-09-25 13:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2720209156-77458600-115180239-1001 2022-09-02 17:37 - 2020-09-07 11:32 - 000002415 _____ C:\Users\guyde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-09-02 17:33 - 2020-09-07 12:32 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-09-02 17:33 - 2020-09-07 12:32 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-09-02 17:32 - 2020-09-07 12:32 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA ==================== Fichiers à la racine de certains dossiers ======== 2016-12-04 18:18 - 2022-09-04 11:29 - 000000184 _____ () C:\Users\guyde\AppData\Roaming\sp_data.sys 2021-12-29 19:12 - 2021-12-29 19:12 - 000005453 _____ () C:\Users\guyde\AppData\Local\recently-used.xbel 2017-11-02 18:49 - 2018-03-07 08:42 - 000007406 _____ () C:\Users\guyde\AppData\Local\SquareClock.Production_Home_ConforamaIcon.ico ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de d‚marrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {1d0f2f94-cdf0-11ec-8b12-806e6f6e6963} {1d0f2f95-cdf0-11ec-8b12-806e6f6e6963} {1d0f2f96-cdf0-11ec-8b12-806e6f6e6963} timeout 2 Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Application logicielle (101fffff) -------------------------------- identificateur {1d0f2f94-cdf0-11ec-8b12-806e6f6e6963} description UEFI:CD/DVD Drive Application logicielle (101fffff) -------------------------------- identificateur {1d0f2f95-cdf0-11ec-8b12-806e6f6e6963} description UEFI:Removable Device Application logicielle (101fffff) -------------------------------- identificateur {1d0f2f96-cdf0-11ec-8b12-806e6f6e6963} description UEFI:Network Device Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {b8abf475-8950-11e8-a320-b59913c48516} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b8abf476-8950-11e8-a320-b59913c48516} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b8abf476-8950-11e8-a320-b59913c48516} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} integrityservices Enable ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================