Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Laurence (administrateur) sur DESKTOP-THCLFV0 (LENOVO 80WK) (28-09-2022 17:30:33)
Exécuté depuis C:\Users\Laurence\OneDrive\Bureau
Profils chargés: Laurence
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2075 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\Farm2Desktop\Farm2Launch.exe ->) () [Fichier non signé] C:\Program Files\Farm2Desktop\Farmville Two.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) () [Fichier non signé] C:\Program Files\Farm2Desktop\Farm2Launch.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIVAE.EXE <3>
(explorer.exe ->) (Zynga Inc.) [Fichier non signé] C:\Program Files\Farm2Desktop\Farm2Notification\Farm2TaskbarNotifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(services.exe ->) () [Fichier non signé] C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Laurence\AppData\Local\Microsoft\OneDrive\22.186.0904.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Laurence\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Farmville Two Launcher] => C:\Program Files\Farm2Desktop\Farm2Launch.exe [312832 2021-05-17] () [Fichier non signé]
HKLM\...\Run: [Farmville Two Notifications] => C:\Program Files\Farm2Desktop\Farm2Notification\Farm2TaskbarNotifier.exe [385536 2021-05-17] (Zynga Inc.) [Fichier non signé]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [MicrosoftEdgeAutoLaunch_46600F6C432566C4A56A31D4B9AF69AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795376 2022-09-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON XP-452 455 Series 64MonitorBE: C:\Windows\system32\E_YLMBVAE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\Windows\system32\rdpcredentialprovider.dll [2022-09-22] (Microsoft Windows -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0112EA26-C25F-4A0A-86F1-19211CC1DBE3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1D273FDA-B986-48CF-A6F2-7736F43481A9} - System32\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {260A6F55-7766-44C2-A6DD-8C7D07B6C1C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2A043FD7-0B01-4D9B-9D78-D7D1EB792043} - System32\Tasks\EPSON XP-452 455 Series Update {6F68A36D-1195-4132-9334-3295D133DFCA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {4E68F90B-7705-4101-8AE0-3230AFD501DF} - System32\Tasks\EPSON XP-452 455 Series Update {5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {898ED321-B687-4B94-80CD-A45866435526} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FF8D3BA-A9B9-4205-937B-F4ADFA31322C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-01] (Google LLC -> Google LLC)
Task: {928D224E-B6D3-47A9-95B3-F42F409CA5AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C0A95AFE-9D03-43A0-AB26-81FEEE13F86F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-01] (Google LLC -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {6F68A36D-1195-4132-9334-3295D133DFCA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{6F68A36D-1195-4132-9334-3295D133DFCA} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{E1DEBB8C-8973-4FB7-9856-AFC26913908E} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2e2f2c74-73a7-4f23-b9ce-20b9ed323d3d}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-28]
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.sephora.fr
Edge HomePage: Default -> hxxp://www.google.fr/
Edge StartupUrls: Default -> "hxxp://www.google.fr/"
Edge Extension: (Microsoft Defender Browser Protection) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkbeeeffjjeopflfhgeknacdieedcoml [2021-05-21]
Edge Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hgfjoaookbahbhinopgfoiajfijfcdhm [2022-09-24]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
Edge Extension: (ClearURLs) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mdkdmaickkfdekbjdoojfalpbkgaddei [2022-08-01]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2022-09-26]
FireFox:
========
FF DefaultProfile: m511elb7.default
FF ProfilePath: C:\Users\Laurence\AppData\Roaming\Mozilla\Firefox\Profiles\m511elb7.default [2022-09-26]
FF ProfilePath: C:\Users\Laurence\AppData\Roaming\Mozilla\Firefox\Profiles\suml7en9.default-release [2022-09-26]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default [2022-09-28]
CHR Notifications: Default -> hxxps://www.e.leclerc; hxxps://www.facebook.com
CHR Extension: (Google Docs hors connexion) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-05]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-09-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-01]
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-26]
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-26]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-11-13] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UpdateService; C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe [1024512 2021-05-17] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 BHTPCRDR; C:\Windows\System32\drivers\bhtpcrdr.sys [174960 2017-06-30] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKsl22e4e9e7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{39369FEC-5854-4CE5-9B90-58438A7D5A19}\MpKslDrv.sys [228600 2022-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-27 18:50 - 2022-09-27 18:50 - 000011730 _____ C:\Users\Laurence\Downloads\PaiementTiers27062022.pdf
2022-09-25 13:58 - 2022-09-28 17:30 - 000000000 ____D C:\FRST
2022-09-22 18:25 - 2022-09-22 18:25 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000012251 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-09-22 18:19 - 2022-09-22 18:19 - 000000000 ___HD C:\$WinREAgent
2022-09-20 13:00 - 2022-09-20 13:00 - 000217918 _____ C:\Users\Laurence\Downloads\Aon_Fiche_Tiers_Payant.pdf
2022-09-15 11:25 - 2022-09-15 11:25 - 000018901 _____ C:\Users\Laurence\Downloads\ReleveMensuelAout2022.pdf
2022-09-13 19:30 - 2022-09-13 19:30 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-09-13 19:30 - 2022-09-13 19:30 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-09-13 19:30 - 2022-09-13 19:30 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-09-05 17:11 - 2022-09-08 17:27 - 000000951 _____ C:\Windows\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}.job
2022-09-05 17:11 - 2022-09-05 17:11 - 000004156 _____ C:\Windows\system32\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-28 17:28 - 2021-06-01 17:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-28 17:27 - 2021-05-21 16:03 - 000000000 ___RD C:\Users\Laurence\OneDrive
2022-09-28 17:27 - 2021-05-21 16:02 - 000000000 __SHD C:\Users\Laurence\IntelGraphicsProfiles
2022-09-28 17:06 - 2021-05-21 15:33 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-28 17:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-28 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-28 11:49 - 2020-11-19 01:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-28 11:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-27 20:34 - 2020-11-19 00:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-26 20:53 - 2021-05-21 15:00 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2022-09-26 20:53 - 2019-12-07 16:49 - 000756416 _____ C:\Windows\system32\perfh00C.dat
2022-09-26 20:53 - 2019-12-07 16:49 - 000142186 _____ C:\Windows\system32\perfc00C.dat
2022-09-26 20:53 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-09-26 20:47 - 2021-05-22 13:01 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-26 20:47 - 2021-05-21 15:01 - 000000000 ____D C:\Intel
2022-09-26 20:47 - 2021-05-21 14:52 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-26 20:47 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-26 20:47 - 2019-12-07 11:03 - 001048576 _____ C:\Windows\system32\config\BBI
2022-09-26 19:39 - 2020-11-19 00:28 - 000257912 _____ C:\Windows\system32\FNTCACHE.DAT
2022-09-26 18:44 - 2022-06-16 18:34 - 000000000 ____D C:\Users\Laurence\AppData\Local\ElevatedDiagnostics
2022-09-26 18:34 - 2022-03-21 12:10 - 000000000 ____D C:\Users\Laurence\AppData\LocalLow\Temp
2022-09-25 16:40 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-09-24 16:43 - 2021-05-21 16:02 - 000000000 ____D C:\Users\Laurence\AppData\Local\D3DSCache
2022-09-24 16:10 - 2021-12-11 23:38 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2331780552-4226520943-2247428736-1003
2022-09-24 16:10 - 2021-05-21 16:03 - 000003386 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2331780552-4226520943-2247428736-1003
2022-09-24 16:10 - 2021-05-21 16:02 - 000002430 _____ C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-23 16:49 - 2021-05-21 16:02 - 000000000 ____D C:\Users\Laurence\AppData\Local\Packages
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-09-22 18:27 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-09-22 18:27 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-09-22 18:25 - 2020-11-19 01:31 - 003012608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-09-16 23:40 - 2021-06-01 17:17 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2022-09-13 19:21 - 2021-05-21 15:03 - 000000000 ____D C:\Windows\system32\MRT
2022-09-13 19:20 - 2021-05-21 15:03 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-09-07 20:07 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-08-31 20:15 - 2020-12-20 16:49 - 000048896 _____ (Lenovo Group Ltd.) C:\Windows\system32\Drivers\AcpiVpc.sys
2022-08-29 23:14 - 2021-06-01 17:16 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-29 23:14 - 2021-06-01 17:16 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Laurence (administrateur) sur DESKTOP-THCLFV0 (LENOVO 80WK) (28-09-2022 17:30:33)
Exécuté depuis C:\Users\Laurence\OneDrive\Bureau
Profils chargés: Laurence
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.2075 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\Farm2Desktop\Farm2Launch.exe ->) () [Fichier non signé] C:\Program Files\Farm2Desktop\Farmville Two.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) () [Fichier non signé] C:\Program Files\Farm2Desktop\Farm2Launch.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIVAE.EXE <3>
(explorer.exe ->) (Zynga Inc.) [Fichier non signé] C:\Program Files\Farm2Desktop\Farm2Notification\Farm2TaskbarNotifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(services.exe ->) () [Fichier non signé] C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Laurence\AppData\Local\Microsoft\OneDrive\22.186.0904.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Laurence\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Farmville Two Launcher] => C:\Program Files\Farm2Desktop\Farm2Launch.exe [312832 2021-05-17] () [Fichier non signé]
HKLM\...\Run: [Farmville Two Notifications] => C:\Program Files\Farm2Desktop\Farm2Notification\Farm2TaskbarNotifier.exe [385536 2021-05-17] (Zynga Inc.) [Fichier non signé]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [MicrosoftEdgeAutoLaunch_46600F6C432566C4A56A31D4B9AF69AB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795376 2022-09-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000002] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2331780552-4226520943-2247428736-1003\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIVAE.EXE [416896 2017-09-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON XP-452 455 Series 64MonitorBE: C:\Windows\system32\E_YLMBVAE.DLL [184832 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{f64945df-4fa9-4068-a2fb-61af319edd33}] -> C:\Windows\system32\rdpcredentialprovider.dll [2022-09-22] (Microsoft Windows -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0112EA26-C25F-4A0A-86F1-19211CC1DBE3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1D273FDA-B986-48CF-A6F2-7736F43481A9} - System32\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {260A6F55-7766-44C2-A6DD-8C7D07B6C1C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2A043FD7-0B01-4D9B-9D78-D7D1EB792043} - System32\Tasks\EPSON XP-452 455 Series Update {6F68A36D-1195-4132-9334-3295D133DFCA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {4E68F90B-7705-4101-8AE0-3230AFD501DF} - System32\Tasks\EPSON XP-452 455 Series Update {5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {898ED321-B687-4B94-80CD-A45866435526} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8FF8D3BA-A9B9-4205-937B-F4ADFA31322C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-01] (Google LLC -> Google LLC)
Task: {928D224E-B6D3-47A9-95B3-F42F409CA5AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C0A95AFE-9D03-43A0-AB26-81FEEE13F86F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-06-01] (Google LLC -> Google LLC)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{5C6BEAEB-4E5B-47F0-B27B-A150AB4B117D} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {6F68A36D-1195-4132-9334-3295D133DFCA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{6F68A36D-1195-4132-9334-3295D133DFCA} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSVAE.EXE:/EXE:{E1DEBB8C-8973-4FB7-9856-AFC26913908E} /F:UpdateWORKGROUP\DESKTOP-THCLFV0$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2e2f2c74-73a7-4f23-b9ce-20b9ed323d3d}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-28]
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.sephora.fr
Edge HomePage: Default -> hxxp://www.google.fr/
Edge StartupUrls: Default -> "hxxp://www.google.fr/"
Edge Extension: (Microsoft Defender Browser Protection) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkbeeeffjjeopflfhgeknacdieedcoml [2021-05-21]
Edge Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hgfjoaookbahbhinopgfoiajfijfcdhm [2022-09-24]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-30]
Edge Extension: (ClearURLs) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mdkdmaickkfdekbjdoojfalpbkgaddei [2022-08-01]
Edge Extension: (AdGuard AdBlocker) - C:\Users\Laurence\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pdffkfellgipmhklpdmokmckkkfcopbh [2022-09-26]
FireFox:
========
FF DefaultProfile: m511elb7.default
FF ProfilePath: C:\Users\Laurence\AppData\Roaming\Mozilla\Firefox\Profiles\m511elb7.default [2022-09-26]
FF ProfilePath: C:\Users\Laurence\AppData\Roaming\Mozilla\Firefox\Profiles\suml7en9.default-release [2022-09-26]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-16] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default [2022-09-28]
CHR Notifications: Default -> hxxps://www.e.leclerc; hxxps://www.facebook.com
CHR Extension: (Google Docs hors connexion) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-05]
CHR Extension: (IGRAAL : Cashback & codes promo) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2022-09-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-01]
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-09-26]
CHR Profile: C:\Users\Laurence\AppData\Local\Google\Chrome\User Data\System Profile [2022-09-26]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [145224 2017-11-13] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UpdateService; C:\Program Files\ZyngaUpdateService\ZyngaUpdateService.exe [1024512 2021-05-17] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 BHTPCRDR; C:\Windows\System32\drivers\bhtpcrdr.sys [174960 2017-06-30] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 MpKsl22e4e9e7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{39369FEC-5854-4CE5-9B90-58438A7D5A19}\MpKslDrv.sys [228600 2022-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-27 18:50 - 2022-09-27 18:50 - 000011730 _____ C:\Users\Laurence\Downloads\PaiementTiers27062022.pdf
2022-09-25 13:58 - 2022-09-28 17:30 - 000000000 ____D C:\FRST
2022-09-22 18:25 - 2022-09-22 18:25 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2022-09-22 18:25 - 2022-09-22 18:25 - 000012251 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-09-22 18:19 - 2022-09-22 18:19 - 000000000 ___HD C:\$WinREAgent
2022-09-20 13:00 - 2022-09-20 13:00 - 000217918 _____ C:\Users\Laurence\Downloads\Aon_Fiche_Tiers_Payant.pdf
2022-09-15 11:25 - 2022-09-15 11:25 - 000018901 _____ C:\Users\Laurence\Downloads\ReleveMensuelAout2022.pdf
2022-09-13 19:30 - 2022-09-13 19:30 - 000413696 _____ C:\Windows\system32\AzureCheck.dll
2022-09-13 19:30 - 2022-09-13 19:30 - 000098816 _____ C:\Windows\system32\Drivers\cimfs.sys
2022-09-13 19:30 - 2022-09-13 19:30 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-09-05 17:11 - 2022-09-08 17:27 - 000000951 _____ C:\Windows\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}.job
2022-09-05 17:11 - 2022-09-05 17:11 - 000004156 _____ C:\Windows\system32\Tasks\EPSON XP-452 455 Series Update {E1DEBB8C-8973-4FB7-9856-AFC26913908E}
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-28 17:28 - 2021-06-01 17:16 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-28 17:27 - 2021-05-21 16:03 - 000000000 ___RD C:\Users\Laurence\OneDrive
2022-09-28 17:27 - 2021-05-21 16:02 - 000000000 __SHD C:\Users\Laurence\IntelGraphicsProfiles
2022-09-28 17:06 - 2021-05-21 15:33 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-28 17:06 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-28 16:34 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-28 11:49 - 2020-11-19 01:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-28 11:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-27 20:34 - 2020-11-19 00:28 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-26 20:53 - 2021-05-21 15:00 - 001681370 _____ C:\Windows\system32\PerfStringBackup.INI
2022-09-26 20:53 - 2019-12-07 16:49 - 000756416 _____ C:\Windows\system32\perfh00C.dat
2022-09-26 20:53 - 2019-12-07 16:49 - 000142186 _____ C:\Windows\system32\perfc00C.dat
2022-09-26 20:53 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-09-26 20:47 - 2021-05-22 13:01 - 000000000 ____D C:\Program Files\TeamViewer
2022-09-26 20:47 - 2021-05-21 15:01 - 000000000 ____D C:\Intel
2022-09-26 20:47 - 2021-05-21 14:52 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-26 20:47 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-09-26 20:47 - 2019-12-07 11:03 - 001048576 _____ C:\Windows\system32\config\BBI
2022-09-26 19:39 - 2020-11-19 00:28 - 000257912 _____ C:\Windows\system32\FNTCACHE.DAT
2022-09-26 18:44 - 2022-06-16 18:34 - 000000000 ____D C:\Users\Laurence\AppData\Local\ElevatedDiagnostics
2022-09-26 18:34 - 2022-03-21 12:10 - 000000000 ____D C:\Users\Laurence\AppData\LocalLow\Temp
2022-09-25 16:40 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-09-24 16:43 - 2021-05-21 16:02 - 000000000 ____D C:\Users\Laurence\AppData\Local\D3DSCache
2022-09-24 16:10 - 2021-12-11 23:38 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2331780552-4226520943-2247428736-1003
2022-09-24 16:10 - 2021-05-21 16:03 - 000003386 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2331780552-4226520943-2247428736-1003
2022-09-24 16:10 - 2021-05-21 16:02 - 000002430 _____ C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-23 16:49 - 2021-05-21 16:02 - 000000000 ____D C:\Users\Laurence\AppData\Local\Packages
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-09-22 18:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-09-22 18:27 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2022-09-22 18:27 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2022-09-22 18:25 - 2020-11-19 01:31 - 003012608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-09-16 23:40 - 2021-06-01 17:17 - 000002245 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-09-13 23:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
2022-09-13 19:21 - 2021-05-21 15:03 - 000000000 ____D C:\Windows\system32\MRT
2022-09-13 19:20 - 2021-05-21 15:03 - 141646296 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-09-07 20:07 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-08-31 20:15 - 2020-12-20 16:49 - 000048896 _____ (Lenovo Group Ltd.) C:\Windows\system32\Drivers\AcpiVpc.sys
2022-08-29 23:14 - 2021-06-01 17:16 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-29 23:14 - 2021-06-01 17:16 - 000003466 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================