Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2023 Exécuté par mamyjojo (administrateur) sur R2D2-C3PO (LENOVO 20240) (06-10-2023 07:42:15) Exécuté depuis C:\Users\mamyjojo\Desktop\FRST64.exe Profils chargés: mamyjojo Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.3516 (X64) Langue: Français (France) Navigateur par défaut: Edge Mode d'amorçage: Normal ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe ->) (Druide informatique inc. -> Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes32\MoteurIntegration.exe (C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\setup\instup.exe (Druide informatique inc. -> Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <18> (Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe (Lenovo -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (svchost.exe ->) (Druide informatique inc. -> Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-06-14] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-06-14] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [AgentAntidote32] => C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1142496 2013-04-15] (Druide informatique inc. -> Druide informatique inc.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [255896 2023-10-03] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4992920 2023-08-24] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409936 2018-02-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [PowerDVD17Agent] => C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe [527400 2017-03-17] (CyberLink Corp. -> CyberLink Corp.) HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [126200 2018-12-12] (Intel(R) Driver & Support Assistant -> Intel) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2020-01-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [570408 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION HKLM\Software\Policies\...\system: [AllowClipboardHistory] 0 HKLM\Software\Policies\...\system: [EnableCloudClipboard] 0 HKLM\Software\Policies\...\system: [CloudClipboardAutomaticUpload] 0 HKLM\Software\Policies\...\system: [EnableActivityFeed] 0 HKLM\Software\Policies\...\system: [PublishUserActivities] 0 HKLM\Software\Policies\...\system: [UploadUserActivities] 0 HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE [283232 2014-12-12] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [LMDVoxPro] => C:\Program Files (x86)\Micro Application\Votre PC parle\LMDVoxLight.exe [255488 2008-11-24] (L'Aventure Multimedia) [Fichier non signé] HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation -> AppEx Networks Corporation) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114000240 2021-10-28] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [MicrosoftEdgeAutoLaunch_467AB64CEA951B06B34636D17AB4B9C3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-29] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Run: [AvastBrowserAutoLaunch_1A1FD3A0A47A071252FF85B037621E9D] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2692464 2022-04-06] (Avast Software s.r.o. -> AVAST Software) HKU\S-1-5-21-2032230879-3381235887-3064623641-1002\...\Policies\Explorer: [] HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\LMUD1O4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1O4C.DLL [283152 2016-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.) HKLM\...\Print\Monitors\Epson Inbox Language Monitor01: C:\WINDOWS\system32\EP0SLM01.DLL [77824 2009-07-14] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [Fichier non signé] HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\WINDOWS\system32\hpinkstsD711LM.dll [393352 2017-03-27] (Hewlett Packard -> HP Inc.) HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\PCL hpz3lw72: C:\WINDOWS\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\PDF Suite 2021 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\suite_pdfpmon_v.4.12.26.3.dll [932984 2022-12-04] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com)) HKLM\...\Print\Monitors\PDF-XChange5-ABBYY-FR15: C:\WINDOWS\system32\pxc50pmaf15.dll [57328 2018-12-04] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-11] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\100.0.15718.76\Installer\chrmstp.exe [2022-04-22] (Avast Software s.r.o. -> AVAST Software) HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2019-05-22] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) Startup: C:\Users\mamyjojo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lanceur.lnk [2019-11-24] ShortcutTarget: Lanceur.lnk -> C:\Program Files (x86)\Micro Application\LauncherMA.exe (Micro Application) [Fichier non signé] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {E4124E4F-2543-450A-ADBA-4AB7DDD41325} - System32\Tasks\{8CD8B754-FE23-45FE-9CF2-7D112B0FC7C3} => c:\program files (x86)\google\chrome\application\chrome.exe [2673480 2022-07-02] (Google LLC -> Google LLC) -> hxxp://ui.skype.com/ui/0/7.23.0.105/fr/go/help.faq.installer?LastError=1601 Task: {A3C69701-D36A-415F-BDA2-6F317E5EE063} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {0D83DB95-523F-4081-9273-A1FB6C759E60} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-14] (Adobe Inc. -> Adobe) Task: {C6FCB42D-5D0D-41C6-8FEE-45A822B5C50B} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-projetsensible@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {AD9ACEE0-246B-4E1C-A8AF-FA4DFD0C5F18} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {B0D36F46-1006-447A-9704-C1B525768232} - System32\Tasks\AMD RELAUNCHER => C:\AMD\Radeon-Software-Adrenalin-2020-22.6.1-Win10-Win11-64Bit-LegacyASICs-June23-2022-LEGACY\Bin64\InstallManagerApp.exe [1707056 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {D3B09A89-58E5-4D23-ACA3-C5C1066DD6B5} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe (Pas de fichier) Task: {6D6E6DD0-D259-4812-B88C-7AB8E0003757} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {093937FD-AB9A-48D9-8788-422E5823E901} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5135256 2023-10-03] (Avast Software s.r.o. -> AVAST Software) Task: {AB67C8BD-807E-4258-9176-0F206EA49A16} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2692464 2022-04-06] (Avast Software s.r.o. -> AVAST Software) Task: {7CF59F75-37CE-4720-B48F-26BEECEA0BDC} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2692464 2022-04-06] (Avast Software s.r.o. -> AVAST Software) Task: {0C80B4F9-CB48-4657-8CC9-2EFEDB38953F} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4758936 2023-08-24] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (l'élément de données a 99 caractères en plus). Task: {8EA37272-9BAD-4B8B-920B-4AF4C1647A00} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7212952 2023-08-17] (Avast Software s.r.o. -> Avast Software) Task: {52FD33EF-7610-4995-BF3B-615A33728A5A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-09] (Avast Software s.r.o. -> Avast Software) Task: {9D69F005-FF2E-4C75-8E23-5D8FCEB1B231} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-09] (Avast Software s.r.o. -> AVAST Software) Task: {7CDE167B-393C-4489-81A6-50DA1DC7F74A} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-09] (Avast Software s.r.o. -> AVAST Software) Task: {0FD9A461-9796-4A6C-AC33-C2F700AFF7E9} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\2 => C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe [1291488 2013-04-15] (Druide informatique inc. -> Druide informatique inc.) Task: {2F855185-7C45-4D47-949F-1B9D67646AC6} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\3 => "C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon (Pas de fichier) Task: {168CA27B-6978-4B1A-A77F-710CD8C8320F} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\4 => C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [113664 2005-03-16] (Adobe Systems, Inc.) [Fichier non signé] Task: {61F859C1-F678-476C-B67B-70A28E7C2689} - System32\Tasks\AviraSystemSpeedupUpdate => "C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe" /VERIFY /VERYSILENT /NOSTART /NODOTNET /NORESTART (Pas de fichier) Task: {CA8D1108-A69B-4B57-9863-4342D2AF0911} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {C6D7AC5A-09A5-4E69-8246-A0EBD3621FED} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "92ddd076-d34d-4df0-a693-03ffdd0cfae2" --version "6.16.10662" --silent Task: {F9669E88-E1A0-49C5-896D-6E09D9EF8F13} - System32\Tasks\CCleanerSkipUAC - mamyjojo => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {34F00264-32FF-429E-BDC6-03AA1FFD872A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5329280 2023-10-05] (Microsoft Windows -> Microsoft Corporation) Task: {19EF9B7B-C732-41A5-9166-693A94414C11} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-22] (Google Inc -> Google Inc.) Task: {1D652023-376C-4992-A4FB-96BB519C9473} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-01-22] (Google Inc -> Google Inc.) Task: {3B27ED64-05D5-4120-A5FB-28ECB3DF6CD0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {EDE733FC-793D-4C5C-B22E-32FD9F2AB074} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {C246A93D-A0B1-44A4-92B9-D7AA36935B5F} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier) Task: {B611DBA5-AB22-440D-9D8B-35FD71C07397} - System32\Tasks\KpRm-quarantines\KpRm-quarantines-20200117192425 => C:\KPRM\tasks-quarantines\kprm-quarantines.exe [2813352 2020-01-17] (kernel-panik -> kernel-panik) [Fichier non signé] Task: {D8A2E218-0767-40EE-8797-8DCE1C7B6ABE} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [35584 2014-07-30] (LENOVO -> ) Task: {9C506E94-9486-4D7B-9243-5168701C5A58} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2032230879-3381235887-3064623641-1002 => C:\Users\mamyjojo\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {2BBFECE4-927C-475A-A589-7DF6FA3F9819} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264000 2017-02-14] (Lenovo -> ) Task: {93969404-0DAB-4E72-98CA-EBCB227710EA} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321280 2017-02-14] (Lenovo -> Lenovo) Task: {30606AEC-CA88-448E-97C7-44A1AB8BFF50} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10175808 2017-02-14] (Lenovo -> Lenovo) Task: {E352CF1E-E131-4B68-AC61-0BBD3B0D1689} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10175808 2017-02-14] (Lenovo -> Lenovo) Task: {D079009F-2A0B-4BFC-A1F7-52DD905DCD9E} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10175808 2017-02-14] (Lenovo -> Lenovo) Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D8D38E50-5561-49FE-8AF0-C04585A5D49B} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe [71680 2021-05-29] (Microsoft Windows -> Microsoft Corporation) -> C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {FA32E126-BE92-4C49-B5F1-150C5B396FCE} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe join (Pas de fichier) Task: {99E4FC79-B088-4728-80F8-6D3825056C60} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => "C:\Program Files (x86)\Safer-Networking Ltd\Spybot Anti-Beacon\Spybot3AntiBeacon.exe" /apply /silent /atlogon (Pas de fichier) Task: {5BA4FCB6-D533-417C-A496-62B274AAA998} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated) Task: {A6759FD3-91BE-41DB-9948-3F7C1E5982E1} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> ) Task: {6C968561-5BB6-4AF4-BE2B-8DF6E6913747} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758488 2019-08-01] (Lenovo -> ) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{3d74411e-20d7-47ae-b522-8bec1359f2ac}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{f1571912-f764-4362-8645-6985e1e80eef}: [DhcpNameServer] 192.168.1.254 Edge: ======= DownloadDir: C:\Users\mamyjojo\Downloads Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)] Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)] Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)] Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)] Edge DefaultProfile: Default Edge Profile: C:\Users\mamyjojo\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-06] Edge Notifications: Default -> hxxps://web.whatsapp.com Edge Extension: (Google Docs hors connexion) - C:\Users\mamyjojo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-03] Edge Extension: (Edge relevant text changes) - C:\Users\mamyjojo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-03] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF ProfilePath: C:\Users\mamyjojo\AppData\Roaming\Mozilla\Firefox\Profiles\vEcRx5if.default [2020-01-14] FF Extension: (Avira Password Manager) - C:\Users\mamyjojo\AppData\Roaming\Mozilla\Firefox\Profiles\vEcRx5if.default\Extensions\passwordmanager@avira.com [2020-01-14] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_314.dll [2020-01-14] (Adobe Inc. -> ) FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_314.dll [2020-01-14] (Adobe Inc. -> ) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-09] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-09] (Avast Software s.r.o. -> AVAST Software) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Pas de fichier] Chrome: ======= CHR Profile: C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default [2023-10-03] CHR Extension: (Slides) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-17] CHR Extension: (Docs) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-17] CHR Extension: (Google Drive) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-17] CHR Extension: (YouTube) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-17] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-04-05] CHR Extension: (Logitech Smooth Scrolling) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2021-05-17] CHR Extension: (Sheets) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-17] CHR Extension: (Google Docs hors connexion) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-05] CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-04-05] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-17] CHR Extension: (Gmail) - C:\Users\mamyjojo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-17] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2013-04-15] CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] - C:\Program Files (x86)\Druide\Antidote 8\Texteurs\GoogleChrome\Installation.Antidote.GoogleChrome.crx [2013-04-15] Opera: ======= OPR Profile: C:\Users\mamyjojo\AppData\Roaming\Opera Software\Opera Stable [2023-10-03] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 ABBYY.Licensing.FineReader.15.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\15\Licensing\NetworkLicenseServer.exe [1045648 2021-09-06] (ABBYY Production LLC -> ABBYY Production LLC) S4 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2016-01-29] (Adobe Systems) [Fichier non signé] S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S4 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-14] (Adobe Inc. -> Adobe) S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-02-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9090968 2023-10-03] (Avast Software s.r.o. -> AVAST Software) S3 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-09] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [776088 2023-10-03] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [796568 2023-10-03] (Avast Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-09] (Avast Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\100.0.15718.76\elevation_service.exe [1972912 2022-04-06] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-07-14] (Avast Software s.r.o. -> AVAST Software) S3 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989536 2020-01-08] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9701784 2023-08-24] (Avast Software s.r.o. -> AVAST Software) S4 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [23288 2018-12-12] (Intel(R) Driver & Support Assistant -> Intel) S4 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (SEIKO EPSON Corporation -> Seiko Epson Corporation) S3 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-07-30] (LENOVO -> LENOVO INCORPORATED.) S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273216 2017-02-14] (Lenovo -> Lenovo) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-05] (Malwarebytes Inc. -> Malwarebytes) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Fichier non signé] S4 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-06-17] (Nitro PDF Software -> Nitro PDF Software) S4 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71832 2015-11-05] (Nitro Software, Inc. -> Nalpeiron Ltd.) S4 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37504 2017-06-20] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Fichier non signé] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-10-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-10-09] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 22556595; C:\WINDOWS\system32\drivers\22556595.sys [255928 2019-06-25] (Malwarebytes Corporation -> Malwarebytes) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240176 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392984 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297992 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-11-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39760 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275168 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559696 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950696 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [708048 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213192 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-10-03] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) S3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink Corp. -> CyberLink) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) S3 KMWDFILTER; C:\WINDOWS\System32\drivers\KMWDFILTER.sys [30208 2009-04-29] (MLK Technologies Limited -> Windows (R) Codename Longhorn DDK provider) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2022-12-06] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.) R3 Sftfs; C:\WINDOWS\system32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftplay; C:\WINDOWS\system32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) R3 Sftvol; C:\WINDOWS\system32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [31232 2011-07-01] (OpenVPN Technologies, Inc. -> The OpenVPN Project) R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-10-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-10-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-10-09] (Microsoft Windows -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Trois mois (créés) (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-06 07:42 - 2023-10-06 07:48 - 000040680 _____ C:\Users\mamyjojo\Desktop\FRST.txt 2023-10-06 07:26 - 2023-10-06 07:46 - 000000000 ____D C:\FRST 2023-10-06 07:25 - 2023-10-06 07:25 - 002382848 _____ (Farbar) C:\Users\mamyjojo\Desktop\FRST64.exe 2023-10-05 19:56 - 2023-10-05 19:58 - 000000919 _____ C:\Users\mamyjojo\Desktop\ZHPDiag.lnk 2023-10-05 19:52 - 2023-10-05 19:52 - 000000000 ____D C:\Users\mamyjojo\AppData\Local\Backup 2023-10-05 17:22 - 2023-10-05 22:14 - 000000000 ____D C:\Users\mamyjojo\AppData\Local\Malwarebytes 2023-10-05 16:37 - 2023-10-05 16:37 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2023-10-05 14:21 - 2023-10-05 14:21 - 000000000 ___HD C:\$WinREAgent 2023-10-03 19:06 - 2023-10-03 19:06 - 000000000 ____D C:\Users\mamyjojo\AppData\LocalLow\AMD 2023-10-03 19:01 - 2023-10-03 19:01 - 000000000 ____D C:\WINDOWS\system32\AMD 2023-10-03 19:01 - 2023-10-03 19:01 - 000000000 ____D C:\Users\mamyjojo\AppData\Local\AMD 2023-10-03 19:01 - 2023-10-03 19:01 - 000000000 ____D C:\Program Files\AMD 2023-10-03 18:28 - 2023-10-03 10:17 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2023-10-03 16:36 - 2023-10-03 16:36 - 000003538 _____ C:\WINDOWS\system32\Tasks\AMD RELAUNCHER 2023-10-03 15:26 - 2023-10-03 15:54 - 485595672 _____ (AMD Inc.) C:\Users\mamyjojo\Downloads\radeon-software-adrenalin-2020-22.6.1-win10-win11-64bit-legacyasics-june23-2022-legacy.exe 2023-10-01 20:22 - 2023-10-01 20:23 - 000000000 ____D C:\WINDOWS\system32\spool\prtprocs\x64\10 2023-08-25 20:03 - 2023-08-25 20:03 - 000000000 ____D C:\WINDOWS\system32\spool\prtprocs\x64\9 2023-08-25 20:03 - 2023-08-25 20:03 - 000000000 ____D C:\WINDOWS\system32\spool\prtprocs\x64\8 2023-08-25 20:02 - 2023-08-25 20:02 - 000000000 ____D C:\WINDOWS\system32\spool\prtprocs\x64\7 ==================== Trois mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2023-10-06 07:58 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-06 07:49 - 2014-04-10 18:29 - 000000000 ____D C:\Users\mamyjojo\AppData\Roaming\Microsoft\Word 2023-10-06 07:29 - 2013-06-14 01:58 - 000000000 ____D C:\ProgramData\Temp 2023-10-06 06:54 - 2021-05-29 14:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-10-06 03:25 - 2020-10-09 16:40 - 000000000 ____D C:\ProgramData\Avast Software 2023-10-06 03:20 - 2021-05-29 16:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-06 03:20 - 2021-05-29 14:52 - 000008192 ___SH C:\DumpStack.log.tmp 2023-10-06 03:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-10-06 02:50 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-10-06 00:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-10-06 00:40 - 2021-05-29 16:37 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2023-10-06 00:40 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-10-06 00:36 - 2021-05-29 14:52 - 000636648 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-10-05 22:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-10-05 21:18 - 2019-04-10 08:32 - 000000000 ____D C:\Users\mamyjojo\AppData\Roaming\ZHP 2023-10-05 19:57 - 2015-12-03 19:19 - 000000000 ___RD C:\Users\mamyjojo\Desktop\Mes Documents 2023-10-05 19:09 - 2020-01-12 15:10 - 000000000 ____D C:\Users\mamyjojo\AppData\LocalLow\IGDump 2023-10-05 19:02 - 2022-12-04 21:41 - 000000000 ____D C:\Program Files\PDF Suite 2021 2023-10-05 19:02 - 2022-12-04 21:41 - 000000000 ____D C:\Program Files (x86)\PDF Suite 2021 2023-10-05 17:08 - 2020-12-07 20:30 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2023-10-05 17:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-10-05 17:06 - 2019-07-11 18:22 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2023-10-05 16:57 - 2021-05-29 16:37 - 000004174 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{E9C00E3D-4F2F-420B-AA02-9F280FFFD4F5} 2023-10-05 16:37 - 2021-05-29 14:58 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-10-05 15:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-10-05 15:24 - 2018-06-10 18:04 - 000000000 ____D C:\Users\mamyjojo\AppData\Local\D3DSCache 2023-10-05 14:01 - 2021-05-29 15:41 - 001775904 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-10-05 14:01 - 2019-12-07 16:49 - 000792888 _____ C:\WINDOWS\system32\perfh00C.dat 2023-10-05 14:01 - 2019-12-07 16:49 - 000150018 _____ C:\WINDOWS\system32\perfc00C.dat 2023-10-03 19:29 - 2017-06-13 12:16 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2023-10-03 18:37 - 2022-11-28 23:14 - 000002087 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2023-10-03 18:37 - 2020-10-18 16:50 - 000002099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk 2023-10-03 18:06 - 2018-07-11 10:11 - 000000000 ____D C:\ProgramData\Packages 2023-10-03 16:17 - 2014-04-09 20:56 - 000000000 ____D C:\AMD 2023-10-03 15:23 - 2018-11-12 11:20 - 000000000 ____D C:\Users\mamyjojo\AppData\Local\CrashDumps 2023-10-03 14:47 - 2023-01-06 13:33 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-10-03 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-10-03 14:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-10-03 14:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-10-03 14:38 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-10-03 14:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2023-10-03 14:34 - 2021-05-29 15:10 - 000000000 ____D C:\Users\mamyjojo 2023-10-03 14:28 - 2023-01-06 13:33 - 000003108 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-10-03 14:28 - 2021-11-13 12:08 - 000002320 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - mamyjojo 2023-10-03 14:27 - 2018-05-10 19:07 - 000000000 ____D C:\Users\mamyjojo\Documents\CCleaner.reg 2023-10-03 11:12 - 2018-11-30 11:07 - 000000000 ____D C:\Program Files\CCleaner 2023-10-03 10:43 - 2020-07-24 10:44 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-03 10:43 - 2020-07-24 10:44 - 000002291 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-10-03 10:41 - 2021-05-29 16:37 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-10-03 10:18 - 2020-10-09 16:43 - 000708048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000297992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000275168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000096064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2023-10-03 10:18 - 2020-10-09 16:43 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2023-10-03 10:17 - 2020-10-09 16:43 - 000559696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2023-10-03 10:17 - 2020-10-09 16:43 - 000039760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2023-10-03 10:16 - 2020-10-18 16:48 - 000031528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2023-10-03 10:16 - 2020-10-09 16:43 - 000950696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2023-10-03 10:16 - 2020-10-09 16:43 - 000240176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2023-10-03 10:15 - 2020-10-09 16:43 - 000392984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2023-09-24 11:04 - 2014-04-11 12:30 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-24 10:27 - 2014-04-11 12:30 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-09-24 09:46 - 2020-10-05 09:18 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Fichiers à la racine de certains dossiers ======== 2021-05-09 10:37 - 2021-05-09 10:37 - 003275416 _____ (Nicolas Coolman) C:\Users\mamyjojo\ZHPDiag3.exe 2023-01-28 17:36 - 2023-01-28 17:36 - 000962120 _____ (CybelSoft) C:\Program Files\DCCrypt.dll 2023-01-28 17:38 - 2023-01-28 17:38 - 007158856 _____ (CybelSoft) C:\Program Files\DCEngine.dll 2023-01-28 17:40 - 2023-01-28 17:40 - 010004552 _____ (CybelSoft) C:\Program Files\DriversCloud.exe 2015-08-10 17:08 - 2015-08-10 17:08 - 000000124 _____ () C:\Program Files\DriversCloud.html 2023-01-28 17:40 - 2023-01-28 17:40 - 003379960 _____ (SQLite Development Team) C:\Program Files\sqlite3x64.dll 2018-02-02 12:20 - 2018-02-02 12:20 - 000000042 _____ () C:\Users\mamyjojo\AppData\Roaming\pacpath.ini 2018-12-15 19:18 - 2018-12-15 19:18 - 000000004 _____ () C:\Users\mamyjojo\AppData\Roaming\ppllan.ini 2018-12-15 19:32 - 2018-12-15 19:32 - 000000039 _____ () C:\Users\mamyjojo\AppData\Roaming\pplsetting.ini 2020-02-18 14:47 - 2020-02-18 14:47 - 000154732 _____ () C:\Users\mamyjojo\AppData\Local\ars.cache 2020-02-18 14:48 - 2020-02-18 14:48 - 000417560 _____ () C:\Users\mamyjojo\AppData\Local\census.cache 2020-02-18 12:22 - 2020-02-18 12:22 - 000000036 _____ () C:\Users\mamyjojo\AppData\Local\housecall.guid.cache 2018-10-15 09:32 - 2018-10-30 09:59 - 000004096 ____H () C:\Users\mamyjojo\AppData\Local\keyfile3.drm 2018-10-10 19:35 - 2018-10-10 19:35 - 000000173 _____ () C:\Users\mamyjojo\AppData\Local\msmathematics.qat.mamyjojo 2014-04-17 16:33 - 2014-06-13 12:49 - 000000369 _____ () C:\Users\mamyjojo\AppData\Local\RegisteredPackageInformation.xml ==================== SigCheckExt ========================= 2016-07-16 13:42 - 2016-07-16 13:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll 2013-08-22 13:45 - 2013-08-22 13:45 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 13:43 - 2013-08-22 13:43 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-security-cryptoapi-l1-1-0.dll 2016-07-13 16:08 - 2016-07-01 05:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe 2015-10-30 09:19 - 2015-10-30 09:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll 2017-04-15 09:57 - 2017-03-28 07:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2016-07-24 12:20 - 2016-07-24 12:20 - 000103424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\DelayAPO.dll 2015-07-13 12:00 - 2014-10-29 03:59 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe 2015-07-13 12:16 - 2014-10-29 03:54 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll 2017-12-05 17:38 - 2012-11-12 16:15 - 000558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2017-12-05 17:38 - 2012-11-12 21:41 - 000535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2017-12-05 17:38 - 2012-10-22 18:19 - 000219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enpres.dll 2017-12-05 17:38 - 2012-11-12 16:15 - 000558592 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2017-12-05 17:38 - 2012-11-12 21:41 - 000535552 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2017-12-05 17:38 - 2012-10-22 18:19 - 000219648 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enspres.dll 2009-07-14 02:40 - 2009-07-14 02:40 - 000077824 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\EP0SLM01.DLL 2013-08-22 13:42 - 2013-08-22 13:42 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 13:42 - 2013-08-22 13:42 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000032768 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbmiapi.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000033280 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboid.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009216 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpboidps.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000057344 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbpro.dll 2010-07-23 09:55 - 2010-07-23 09:55 - 000009728 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\hpbprops.dll 2010-01-19 15:12 - 2010-01-19 15:12 - 000070144 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPBWSDR.DLL 2009-11-27 12:15 - 2009-11-27 12:15 - 000228864 _____ (hp) C:\WINDOWS\system32\hplbddrv.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000079872 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZidr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZinw12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipm12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPZipr12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000045056 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzipt12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000030208 _____ (Hewlett-Packard) C:\WINDOWS\system32\hpzisn12.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 007300096 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 007228416 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll 2017-05-16 17:22 - 2017-03-04 08:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-07-16 13:43 - 2016-07-17 00:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll 2015-09-10 09:39 - 2015-07-22 16:19 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll 2015-07-13 11:42 - 2015-03-14 03:51 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll 2018-05-12 10:23 - 1997-05-29 17:26 - 000316416 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUn040c.exe 2014-06-30 11:00 - 1998-10-29 15:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe 2014-06-30 11:02 - 1995-08-01 04:44 - 000212480 _____ (Eastman Kodak) C:\WINDOWS\PCDLIB32.DLL 2016-06-09 18:47 - 2016-06-09 17:18 - 000024064 _____ C:\WINDOWS\zoek-delete.exe 2013-08-22 06:17 - 2013-08-22 06:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-fibers-l2-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-core-psm-appnotify-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-devices-config-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-mm-misc-l1-1-1.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-rtcore-ntuser-winevent-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:14 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-security-cryptoapi-l1-1-0.dll 2015-03-17 02:34 - 2015-03-17 02:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll 2016-03-04 17:30 - 1998-07-13 04:00 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CmCtlFR.DLL 2016-07-16 13:43 - 2016-07-16 13:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll 2015-10-30 09:19 - 2015-10-30 09:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll 2005-03-22 06:15 - 2005-03-22 06:15 - 000434176 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EPSMTL32.DLL 2005-04-14 14:51 - 2005-04-14 14:51 - 001138688 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EPSMTL64W_000.DLL 2005-03-22 06:15 - 2005-03-22 06:15 - 000409600 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EPSPTDVE_000.EXE 2005-04-14 14:51 - 2005-04-14 14:51 - 000126464 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\SysWOW64\EPSUI64W_000.EXE 2013-08-22 06:14 - 2013-08-22 06:14 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-msa-ui-l1-1-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-misc-l1-2-0.dll 2013-08-22 06:14 - 2013-08-22 06:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-rtcore-ntuser-dpi-l1-1-0.dll 2016-01-29 13:58 - 2004-08-17 03:40 - 000016384 _____ C:\WINDOWS\SysWOW64\FileOps.exe 2018-03-13 13:50 - 2002-11-21 23:13 - 003907640 _____ C:\WINDOWS\SysWOW64\gsdll32.dll 2018-03-13 13:50 - 2005-10-25 20:17 - 003194880 _____ C:\WINDOWS\SysWOW64\gsdll321.dll 2012-09-05 13:35 - 2012-09-05 13:35 - 000446464 _____ (eHelp Corporation.) C:\WINDOWS\SysWOW64\HHActiveX.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000050688 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZidr12.dll 2010-08-06 11:13 - 2010-08-06 11:13 - 000034816 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\HPZipr12.dll 2012-06-24 01:24 - 2012-06-24 01:24 - 005892608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll 2012-07-25 22:22 - 2012-06-24 01:24 - 005895680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll 2017-03-16 20:07 - 2017-03-04 08:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-07-16 13:44 - 2016-07-17 00:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll 2015-03-17 02:34 - 2015-03-17 02:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL 2015-03-17 02:34 - 2015-03-17 02:34 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll 2016-03-04 17:30 - 2010-05-21 18:35 - 001105920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC80.DLL 2015-10-30 09:19 - 2016-09-15 06:55 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-10-30 09:19 - 2016-09-15 06:55 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2001-08-28 14:00 - 2001-08-28 14:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll 2013-06-14 01:58 - 2010-05-11 14:17 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll 2016-03-04 17:30 - 2010-08-30 12:14 - 001233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4.dll 2011-04-29 15:41 - 2011-04-29 15:41 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll 2014-07-15 17:39 - 2010-08-30 08:34 - 000536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll 2016-03-04 17:30 - 2010-08-30 12:15 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VB6FR.DLL 2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE 2018-01-31 18:18 - 2009-07-14 02:40 - 000038912 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\prtprocs\x64\1_EP0NPP01.DLL 2021-05-09 10:37 - 2021-05-09 10:37 - 003275416 _____ (Nicolas Coolman) C:\Users\mamyjojo\ZHPDiag3.exe 2023-10-06 07:25 - 2023-10-06 07:25 - 002382848 _____ (Farbar) C:\Users\mamyjojo\Desktop\FRST64.exe ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== BCD ================================ Gestionnaire de démarrage du microprogramme ------------------------------------------- identificateur {fwbootmgr} displayorder {bootmgr} {d344c0ec-c198-11e3-b31e-806e6f6e6963} {095c3817-d4cf-11e2-b506-806e6f6e6963} {d344c0ea-c198-11e3-b31e-806e6f6e6963} {d344c0eb-c198-11e3-b31e-806e6f6e6963} timeout 0 Gestionnaire de démarrage Windows --------------------------------- identificateur {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {eb7a6473-c084-11eb-a81f-c381098f8f52} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Application logicielle (101fffff) -------------------------------- identificateur {095c3817-d4cf-11e2-b506-806e6f6e6963} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\LrsBootMgr.efi description Lenovo Recovery System Application logicielle (101fffff) -------------------------------- identificateur {095c3818-d4cf-11e2-b506-806e6f6e6963} description EFI Network 0 for IPv4 (20-89-84-DE-59-81) Application logicielle (101fffff) -------------------------------- identificateur {095c3819-d4cf-11e2-b506-806e6f6e6963} description EFI Network 0 for IPv6 (20-89-84-DE-59-81) Application logicielle (101fffff) -------------------------------- identificateur {7f4e5f27-9175-11e6-bf20-24fd52d073dc} description EFI Network 0 for IPv4 (20-89-84-DE-59-81) Application logicielle (101fffff) -------------------------------- identificateur {7f4e5f28-9175-11e6-bf20-24fd52d073dc} description EFI Network 0 for IPv6 (20-89-84-DE-59-81) Application logicielle (101fffff) -------------------------------- identificateur {d344c0ea-c198-11e3-b31e-806e6f6e6963} description EFI USB Device Application logicielle (101fffff) -------------------------------- identificateur {d344c0eb-c198-11e3-b31e-806e6f6e6963} description EFI DVD/CDROM Application logicielle (101fffff) -------------------------------- identificateur {d344c0ec-c198-11e3-b31e-806e6f6e6963} description EFI Network Chargeur de démarrage Windows ----------------------------- identificateur {e47a0998-d4d0-11e2-b506-b5492eeebbcc} device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{e47a0999-d4d0-11e2-b506-b5492eeebbcc} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{e47a0999-d4d0-11e2-b506-b5492eeebbcc} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de démarrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {eb7a6475-c084-11eb-a81f-c381098f8f52} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {eb7a6473-c084-11eb-a81f-c381098f8f52} nx OptOut bootmenupolicy Standard Chargeur de démarrage Windows ----------------------------- identificateur {eb7a6475-c084-11eb-a81f-c381098f8f52} device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{eb7a6476-c084-11eb-a81f-c381098f8f52} path \windows\system32\winload.efi description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{eb7a6476-c084-11eb-a81f-c381098f8f52} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre à partir de la mise en veille prolongée ------------------------------------------------- identificateur {eb7a6473-c084-11eb-a81f-c381098f8f52} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {eb7a6475-c084-11eb-a81f-c381098f8f52} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Testeur de mémoire Windows -------------------------- identificateur {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostics mémoire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes Paramètres EMS -------------- identificateur {emssettings} bootems No Paramètres du débogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de mémoire RAM ---------------------- identificateur {badmemory} Paramètres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Paramètres du chargeur de démarrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Paramètres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Paramètres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de périphérique ----------------------- identificateur {eb7a6476-c084-11eb-a81f-c381098f8f52} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume6 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Fin de FRST.txt ========================