cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-01-2023
Exécuté par guyde (administrateur) sur DESKTOP-OIN5HEP (ASUSTeK COMPUTER INC. X751LAB) (18-01-2023 19:07:15)
Exécuté depuis C:\Users\guyde\Desktop
Profils chargés: guyde
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2486 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(explorer.exe ->) (Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <31>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\guyde\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\ASUSWSLoader.exe [63272 2015-12-24] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-25] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [MoneyAgent] => C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe [204800 2003-06-18] (Microsoft Corp.) [Fichier non signé]
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIN9E.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [com.squirrel.lifesize_app.Lifesize] => C:\Users\guyde\AppData\Local\lifesize_app\update.exe [1843880 2020-04-17] (Lifesize, Inc. -> GitHub)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [Lifesize App Service] => C:\Users\guyde\AppData\Local\lifesize_app\Lifesize.exe [577704 2020-06-05] (Lifesize, Inc. -> Lifesize)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [ApowerManager] => C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe [56449584 2020-09-29] (Apowersoft Ltd -> Apowersoft Ltd.)
HKU\S-1-5-21-2720209156-77458600-115180239-1001\...\Run: [MicrosoftEdgeAutoLaunch_62F17B9FEDD345798ACD3BBE10C8C39B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-15] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON ET-2500 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBN9E.DLL [180224 2014-03-04] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Fichier non signé]
HKLM\...\Print\Monitors\UDC: C:\WINDOWS\system32\udcpm.dll [44784 2017-12-28] (fCoder SIA -> fCoder Group, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\100.0.4896.127\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-18] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {074122B5-7488-4AC2-A342-77855DB87B8A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1CCB17C0-0B4A-4B5C-8B77-13FF6CD58D78} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-12-09] (Piriform Software Ltd -> Piriform)
Task: {2FDE6D98-6E5A-41C2-B63E-45694077048C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-05] (Google Inc -> Google Inc.)
Task: {36E411B7-3CE8-47D5-B3C6-C689C26BA997} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [Fichier non signé]
Task: {39CD21EB-35CB-4512-AA79-269F27FC6E2F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {40C16C89-5B22-4B8C-9C81-473B802B8152} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5AC6EA59-E5C4-4C20-AFEE-6E2D4218A91F} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {5BE260A7-0D3C-4824-8A24-43D6C50FA653} - System32\Tasks\EPSON ET-2500 Series Update {D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {61F7D000-F4EE-4231-BB06-AF53DC800375} - System32\Tasks\EPSON ET-2500 Series Update {AE6CDA46-DD8A-4F61-95D4-546B510034B3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {62596163-5549-497F-A233-8FE9031D9DD0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {632F22E2-3967-4962-A981-354999CF6408} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1422edaa-cae2-4812-b1a3-969cfc8aef30" --version "6.07.10191" --silent
Task: {6430CC72-EBF8-4F8C-AF87-2CCE1878ED23} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1616160 2016-01-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [Fichier non signé]
Task: {6B3268BF-E924-42B6-910E-28C88951A8CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6DDB196B-EFD3-4BEE-BCD4-A04F3359350F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {722F4C64-E90F-4B04-B889-81F6915A8E43} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [585000 2016-09-21] (Dropbox, Inc -> )
Task: {A5752098-97E3-4925-BAEF-B9B8AB21EE5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA5FD7CB-87C1-4BEC-9B02-904F1AAFB151} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {AD05EB4F-5E68-4EAC-B0DA-33D86495B2A3} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {B923CAF2-9263-4BF7-A07B-356E32AA38C9} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {C17A7C42-4E33-4F08-8E32-8847AD32D6BA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Pas de fichier)
Task: {D09BDB45-A65E-4018-8CAA-D27D720737DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-05] (Google Inc -> Google Inc.)
Task: {E580C849-5018-4B86-A230-B751CCC6592E} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122168 2015-03-10] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {F14841B1-99E0-4394-B15C-BAFEE6CB693D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {FDDFB047-AA3F-463D-BBCC-3E0D396B060F} - System32\Tasks\CCleanerSkipUAC - guyde => C:\Program Files\CCleaner\CCleaner.exe [32602448 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\EPSON ET-2500 Series Update {AE6CDA46-DD8A-4F61-95D4-546B510034B3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE:/EXE:{AE6CDA46-DD8A-4F61-95D4-546B510034B3} /F:UpdateWORKGROUP\DESKTOP-OIN5HEP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON ET-2500 Series Update {D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSN9E.EXE:/EXE:{D143F82F-DB9F-4CF7-B8CC-84B68EF16C7D} /F:UpdateWORKGROUP\DESKTOP-OIN5HEP$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2dc46862-f390-4018-be3b-1aacc1a41fc0}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d57d7a26-9421-4aee-b045-18aeb1bcf145}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ec97db53-fede-40be-ae7a-9ec42fd69a53}: [DhcpNameServer] 192.168.1.1

Edge:
=======
DownloadDir: C:\Users\guyde\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\guyde\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-18]

FireFox:
========
FF DefaultProfile: dhtly5z9.default
FF ProfilePath: C:\Users\guyde\AppData\Roaming\Mozilla\Firefox\Profiles\dhtly5z9.default [2022-09-05]
FF ProfilePath: C:\Users\guyde\AppData\Roaming\Mozilla\Firefox\Profiles\gcfoyv7q.default-release-1639159460977 [2023-01-17]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-12-07] [] [non signé]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-07-10] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files (x86)\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.15 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] (WildTangent Inc -> )
FF Plugin-x32: Soda PDF Desktop -> C:\Program Files (x86)\Soda PDF Desktop\np-previewer.dll [2017-11-07] (LULU Software -> LULU Software)

Chrome:
=======
CHR Profile: C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default [2023-01-18]
CHR HomePage: Default -> orange.fr
CHR Extension: (FoE - Assistant) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkagcmloachflbbkfmfiggipaelfamdf [2023-01-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-04]
CHR Extension: (Signal Spam) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2022-11-02]
CHR Extension: (Orange page d'accueil) - C:\Users\guyde\AppData\Local\Google\Chrome\User Data\Default\Extensions\onghofjobpgcdeeifjfbcfepkchnenoh [2022-12-31]
CHR HKLM-x32\...\Chrome\Extension: [onghofjobpgcdeeifjfbcfepkchnenoh]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S4 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSWinService.exe [75264 2015-12-24] (ASUS Cloud Corporation) [Fichier non signé]
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S4 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [26512 2022-08-17] (CHENGDU YIWO Tech Development Co., Ltd. -> )
S4 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [677880 2017-05-12] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent Inc -> WildTangent)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5247\wtoolex\wpsupdatesvr.exe [133480 2016-03-24] (Zhuhai Kingsoft Office Software Co.,Ltd -> Zhuhai Kingsoft Office Software Co.,Ltd)
S4 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S4 Soda PDF Desktop; C:\Program Files\Soda PDF Desktop\ws.exe [2778352 2017-11-07] (LULU Software -> LULU Software)
S4 Soda PDF Desktop Creator; C:\Program Files\Soda PDF Desktop\creator\common\creator-ws.exe [756464 2017-11-07] (LULU Software -> LULU Software)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [15162168 2022-12-12] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [102144 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S3 RTL8187B; C:\WINDOWS\System32\drivers\rtl8187B.sys [452096 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-09-07] (Microsoft Corporation) [Fichier non signé]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Trois mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-18 19:07 - 2023-01-18 19:10 - 000026202 _____ C:\Users\guyde\Desktop\FRST.txt
2023-01-18 18:59 - 2023-01-18 19:09 - 000000000 ____D C:\FRST
2023-01-18 18:58 - 2023-01-18 18:58 - 002376704 _____ (Farbar) C:\Users\guyde\Desktop\FRST64.exe
2023-01-18 18:57 - 2023-01-18 18:58 - 002376704 _____ (Farbar) C:\Users\guyde\Downloads\FRST64.exe
2023-01-18 18:09 - 2023-01-18 18:09 - 000395665 _____ C:\Users\guyde\Desktop\ZHPDiag.txt
2023-01-18 17:49 - 2023-01-18 17:49 - 000000867 _____ C:\Users\guyde\Desktop\ZHPSuite.lnk
2023-01-18 17:46 - 2023-01-18 17:47 - 003510472 _____ (Nicolas Coolman) C:\Users\guyde\Desktop\ZHPSuite.exe
2023-01-13 02:31 - 2023-01-13 02:31 - 000000000 ___HD C:\$WinREAgent
2023-01-11 21:57 - 2023-01-11 21:57 - 000002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2023-01-11 21:57 - 2023-01-11 21:57 - 000002203 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2023-01-04 16:06 - 2023-01-04 16:06 - 005626560 _____ C:\Users\guyde\Downloads\article cassé.jpeg
2023-01-04 16:06 - 2023-01-04 16:06 - 003988789 _____ C:\Users\guyde\Downloads\Emballage papier.jpeg
2022-12-24 14:02 - 2022-12-24 14:02 - 000000024 _____ C:\Users\guyde\Downloads\output.txt
2022-12-17 15:36 - 2022-12-17 15:36 - 000004300 _____ C:\Users\guyde\Downloads\DELABY (2).pdf
2022-12-14 22:11 - 2023-01-09 14:26 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-12-14 22:11 - 2022-12-31 17:59 - 000003470 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-12-13 19:49 - 2022-12-13 19:49 - 000360454 _____ C:\Users\guyde\Downloads\2022.12.13 Assignation à fin de suppression rente viagèr_e_DELABY- JORDENS_40900.pdf
2022-12-13 10:51 - 2022-12-13 10:51 - 000358853 _____ C:\Users\guyde\Downloads\2022.12.06 Assignation à fin de suppression rente viagèr_e_DELABY- JORDENS_40900.pdf
2022-12-08 19:05 - 2022-12-08 19:05 - 001783345 _____ C:\Users\guyde\Downloads\NOT-7748696-05.pdf
2022-12-08 19:02 - 2022-12-08 19:02 - 006835882 _____ C:\Users\guyde\Downloads\devis.zip
2022-12-08 19:02 - 2022-12-08 19:02 - 000051800 _____ C:\Users\guyde\Downloads\Devis _ Commande - 2022-12-08T155410.706.pdf
2022-12-08 10:29 - 2022-12-08 10:29 - 000018527 _____ C:\Users\guyde\Downloads\2021_12_BPENS_decembre.pdf
2022-12-08 10:29 - 2022-12-08 10:29 - 000015958 _____ C:\Users\guyde\Downloads\2021_01_AFPENS_janvier.pdf
2022-12-07 18:12 - 2022-12-07 18:12 - 000532708 _____ C:\Users\guyde\OneDrive\Documents\Sans titre 21.pdf
2022-12-07 18:12 - 2022-12-07 18:12 - 000421607 _____ C:\Users\guyde\OneDrive\Documents\Sans titre 11.pdf
2022-12-07 18:12 - 2022-12-07 18:12 - 000418517 _____ C:\Users\guyde\OneDrive\Documents\Sans titre 1.pdf
2022-12-07 18:11 - 2022-12-07 18:11 - 000529618 _____ C:\Users\guyde\OneDrive\Documents\Sans titre 2.pdf
2022-12-07 16:30 - 2022-12-07 16:30 - 000905542 _____ C:\Users\guyde\Downloads\formulaire_demande_mdph.pdf
2022-12-07 16:28 - 2022-12-07 16:28 - 002018437 _____ C:\Users\guyde\Downloads\Certificat médical.pdf
2022-12-07 16:14 - 2022-12-07 16:14 - 000352870 _____ C:\Users\guyde\Downloads\2022.12.06 Projet Assignation à fin de suppression rente _viagère_DELABY- JORDENS_40900.pdf
2022-11-29 11:44 - 2022-11-29 11:44 - 002030663 _____ C:\Users\guyde\Downloads\TotalEnergies EGF - Etude, projet solaire de 6 panneaux - DELABY Guy.pdf
2022-11-27 10:45 - 2022-11-27 10:45 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-11-27 10:45 - 2022-11-27 10:45 - 000002023 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-11-27 10:35 - 2022-11-27 10:44 - 000193951 _____ C:\Users\guyde\OneDrive\Documents\courrier fete enfants décembre 2022 - Réponse.pdf
2022-11-27 10:27 - 2022-11-27 10:27 - 000162020 _____ C:\Users\guyde\Downloads\courrier fete enfants décembre 2022 - Copie.pdf
2022-11-27 10:25 - 2022-11-27 10:25 - 000240834 _____ C:\Users\guyde\Downloads\courrier fete enfants décembre 2022.odt
2022-11-27 10:25 - 2022-11-27 10:25 - 000240834 _____ C:\Users\guyde\Downloads\courrier fete enfants décembre 2022 (1).odt
2022-11-22 14:18 - 2022-11-22 14:18 - 002866501 _____ C:\Users\guyde\Downloads\Votre Projet Solaire, et si nous passions à l'étape suivante _.zip
2022-11-22 14:08 - 2022-11-22 14:08 - 000563640 _____ C:\Users\guyde\Downloads\devis delaby.pdf
2022-11-22 14:06 - 2022-11-22 14:06 - 002514921 _____ C:\Users\guyde\Downloads\docs delaby.pdf
2022-11-14 13:24 - 2022-11-15 10:02 - 000000000 ____D C:\Program Files\RUXIM
2022-11-05 14:02 - 2022-11-05 14:02 - 000002766 _____ C:\Users\guyde\Desktop\ZHPCleaner (R).txt
2022-11-05 13:35 - 2022-11-05 13:35 - 000002722 _____ C:\Users\guyde\Desktop\ZHPCleaner (S).txt
2022-11-05 13:05 - 2023-01-18 17:49 - 000000000 ____D C:\Users\guyde\AppData\Local\ZHP
2022-11-05 13:05 - 2022-11-05 13:05 - 000000877 _____ C:\Users\guyde\Desktop\ZHPCleaner.lnk
2022-11-05 13:03 - 2022-11-05 13:05 - 003305160 _____ (Nicolas Coolman) C:\Users\guyde\Downloads\zhpcleaner_2022-10-18-81_fr_433513.exe
2022-10-28 16:48 - 2022-10-28 16:48 - 000188521 _____ C:\Users\guyde\Desktop\Facture n°. 2423 datée du 27102022_40644.pdf
2022-10-28 16:48 - 2022-10-28 16:48 - 000092856 _____ C:\Users\guyde\Desktop\2022.10.27 Lettre à Madame JORDENS_DELABY- JORDENS_40598._pdf
2022-10-28 16:47 - 2022-10-28 16:48 - 000096615 _____ C:\Users\guyde\Desktop\2022.09.23 Lettre à Madame JORDENS_DELABY- JORDENS_40239._pdf
2022-10-28 16:47 - 2022-10-28 16:47 - 000170500 _____ C:\Users\guyde\Desktop\Facture n°. 2316 datée du 19072022_39847.pdf
2022-10-28 16:46 - 2022-10-28 16:46 - 000118427 _____ C:\Users\guyde\Desktop\2022.07.18 Projet Lettre à Madame JORDENS_DELABY- JORDENS__39817.pdf
2022-10-28 16:45 - 2022-10-28 16:45 - 000244439 _____ C:\Users\guyde\Desktop\2022.06.30 Proposition Convention d’honoraires_DELABY- J_ORDENS_38721.pdf
2022-10-28 16:45 - 2022-10-28 16:45 - 000243978 _____ C:\Users\guyde\Desktop\Convention d’honoraires procédure_DELABY- JORDENS_39553_.pdf
2022-10-28 16:44 - 2022-10-28 16:44 - 001667553 _____ C:\Users\guyde\Desktop\Revenus Evelyne Jordens 2020.pdf
2022-10-28 16:43 - 2022-10-28 16:43 - 000192793 _____ C:\Users\guyde\Desktop\2022.05.23 Lettre à Monsieur Guy DELABY_DELABY- JORDENS_3_9220.pdf
2022-10-28 16:43 - 2022-10-28 16:43 - 000180556 _____ C:\Users\guyde\Desktop\Facture n°. 2228 datée du 23052022_39222.pdf
2022-10-28 16:42 - 2022-10-28 16:42 - 000231970 _____ C:\Users\guyde\Desktop\2022.04.14 Proposition Convention d’honoraires_DELABY- J_ORDENS_38721.pdf
2022-10-24 17:39 - 2022-10-24 17:39 - 001395098 _____ C:\Users\guyde\Desktop\Bon pour accord offre TOTALENERGIES - Guy DELABY (signed).zip
2022-10-24 17:35 - 2022-10-24 17:35 - 000951274 _____ C:\Users\guyde\Desktop\TotalEnergies - Devis, rapport du projet solaire de 13 panneaux - DELABY Guy.pdf

==================== Trois mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2023-01-18 19:08 - 2021-12-13 04:27 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2720209156-77458600-115180239-1001
2023-01-18 19:08 - 2021-09-25 12:30 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2720209156-77458600-115180239-1001
2023-01-18 19:08 - 2020-09-07 10:32 - 000002415 _____ C:\Users\guyde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-18 18:47 - 2019-11-26 10:21 - 000000000 ____D C:\Program Files\CCleaner
2023-01-18 18:41 - 2016-12-05 16:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-18 18:25 - 2020-09-07 10:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-18 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-18 18:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-18 18:09 - 2019-04-14 18:17 - 000000000 ____D C:\Users\guyde\AppData\Roaming\ZHP
2023-01-18 09:50 - 2020-10-08 17:58 - 000002098 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-18 09:50 - 2020-10-08 17:58 - 000002057 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-17 17:55 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-17 17:54 - 2016-03-24 13:06 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-01-17 17:53 - 2020-05-12 15:22 - 000000000 ____D C:\Users\guyde\AppData\Local\TeamViewer
2023-01-17 17:52 - 2020-05-02 18:19 - 000001137 _____ C:\Users\Public\Desktop\VLC media player.lnk
2023-01-17 17:27 - 2020-09-06 11:46 - 000000000 ____D C:\WINDOWS\Minidump
2023-01-17 10:54 - 2020-06-29 22:23 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-17 10:54 - 2020-06-29 22:23 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-17 10:50 - 2020-09-07 11:32 - 000003800 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2023-01-17 10:50 - 2020-09-07 11:32 - 000003474 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2023-01-17 10:50 - 2016-03-24 13:06 - 000001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2023-01-17 10:50 - 2016-03-24 13:06 - 000001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2023-01-17 10:41 - 2022-09-05 14:50 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-01-17 10:41 - 2016-12-04 17:18 - 000000000 __SHD C:\Users\guyde\IntelGraphicsProfiles
2023-01-17 10:40 - 2020-09-07 10:32 - 000000000 ____D C:\Users\guyde
2023-01-17 10:35 - 2020-09-07 11:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-17 10:35 - 2020-09-07 10:24 - 000008192 ___SH C:\DumpStack.log.tmp
2023-01-17 10:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-16 10:53 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-01-16 10:43 - 2020-09-07 10:25 - 000560304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-16 10:40 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-01-16 10:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-16 10:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-16 10:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-16 10:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-15 09:49 - 2020-09-07 11:32 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-01-13 17:11 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-13 13:42 - 2020-09-07 10:29 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-01-12 16:47 - 2016-12-04 21:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-12 10:33 - 2016-12-04 21:28 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-11 21:57 - 2020-08-14 18:16 - 000000000 ____D C:\Program Files\Google
2023-01-07 15:56 - 2020-09-07 10:48 - 001770910 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-07 15:56 - 2019-12-07 15:49 - 000794488 _____ C:\WINDOWS\system32\perfh00C.dat
2023-01-07 15:56 - 2019-12-07 15:49 - 000150602 _____ C:\WINDOWS\system32\perfc00C.dat
2023-01-05 22:33 - 2020-09-07 11:32 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-05 22:33 - 2020-09-07 11:32 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-28 17:49 - 2022-01-16 17:43 - 000000000 ____D C:\Users\guyde\AppData\Local\PDF Pro
2022-12-28 17:48 - 2022-01-15 17:01 - 000000000 ___RD C:\Users\guyde\OneDrive\Documents\PDF Pro
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-12-19 00:45 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-12-19 00:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps

==================== Fichiers à la racine de certains dossiers ========

2016-12-04 17:18 - 2022-09-04 10:29 - 000000184 _____ () C:\Users\guyde\AppData\Roaming\sp_data.sys
2022-10-02 17:35 - 2022-10-02 17:35 - 000005595 _____ () C:\Users\guyde\AppData\Local\recently-used.xbel
2017-11-02 17:49 - 2018-03-07 07:42 - 000007406 _____ () C:\Users\guyde\AppData\Local\SquareClock.Production_Home_ConforamaIcon.ico

==================== SigCheckExt =========================

2016-07-16 12:42 - 2016-07-16 12:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2016-12-04 21:14 - 2016-07-01 04:57 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2015-10-30 08:19 - 2015-10-30 08:19 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafCdp.dll
2017-04-13 20:53 - 2017-03-28 06:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 002642944 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 12:43 - 2016-07-16 23:45 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flashlight.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 12:42 - 2016-07-16 12:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 12:43 - 2016-07-16 12:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2015-10-30 08:19 - 2015-10-30 08:19 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafCdp.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 12:44 - 2016-07-16 23:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2015-05-22 01:00 - 2015-05-22 01:00 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
2016-12-04 21:13 - 2015-10-30 03:40 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-12-04 21:13 - 2015-10-30 03:30 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2003-06-18 12:00 - 2003-06-18 12:00 - 001050384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet35.dll
2003-06-18 12:00 - 2003-06-18 12:00 - 000149776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint35.dll
2003-06-18 12:00 - 2003-06-18 12:00 - 000024848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter35.dll
2003-06-18 12:00 - 2003-06-18 12:00 - 000415504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl35.dll
2003-04-18 16:46 - 2003-04-18 16:46 - 001233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4.dll
2003-04-18 16:29 - 2003-04-18 16:29 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml4r.dll
2019-11-21 17:05 - 2000-10-02 10:40 - 000119568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vb6fr.dll
2022-09-26 16:14 - 2022-09-26 16:15 - 002072392 _____ C:\Users\guyde\Desktop\DRW_Trial_RSS_new_Installer_20220926.4749.exe
2023-01-18 18:58 - 2023-01-18 18:58 - 002376704 _____ (Farbar) C:\Users\guyde\Desktop\FRST64.exe
2023-01-18 17:46 - 2023-01-18 17:47 - 003510472 _____ (Nicolas Coolman) C:\Users\guyde\Desktop\ZHPSuite.exe
2017-02-06 23:01 - 2017-02-06 23:05 - 070398489 _____ () C:\Users\guyde\Downloads\cata_setup.exe
2017-11-14 17:37 - 2017-11-14 17:37 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D (1).exe
2018-02-02 17:40 - 2018-02-02 17:40 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D (2).exe
2018-03-07 07:38 - 2018-03-07 07:38 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D (3).exe
2018-03-07 07:38 - 2018-03-07 07:38 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D (4).exe
2018-03-07 07:39 - 2018-03-07 07:39 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D (5).exe
2017-11-02 17:45 - 2017-11-02 17:45 - 000370696 _____ (SquareClock SAS) C:\Users\guyde\Downloads\Conforama_Cuisine_3D.exe
2023-01-18 18:57 - 2023-01-18 18:58 - 002376704 _____ (Farbar) C:\Users\guyde\Downloads\FRST64.exe
2021-01-22 16:00 - 2021-01-22 16:00 - 000907952 _____ (Orange) C:\Users\guyde\Downloads\Installateur_assistant-page-accueil (1).exe
2021-02-12 16:58 - 2021-02-12 16:58 - 000907952 _____ (Orange) C:\Users\guyde\Downloads\Installateur_assistant-page-accueil (2).exe
2020-10-15 16:29 - 2020-10-15 16:29 - 000887624 _____ (Orange) C:\Users\guyde\Downloads\Installateur_assistant-page-accueil.exe
2017-04-11 17:12 - 2017-04-11 17:16 - 019972338 _____ (Ancestrologie ) C:\Users\guyde\Downloads\Installation_Ancestrologie.exe
2017-02-09 23:42 - 2017-02-10 00:39 - 809728745 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_Afrique_16.exe
2020-01-29 18:01 - 2020-01-29 18:18 - 121540873 _____ (ALMEDIS ) C:\Users\guyde\Downloads\Install_Album_FR.exe
2017-02-06 23:34 - 2017-02-07 00:36 - 893048391 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_AntillesPacifiqueIndien_16.exe
2017-02-11 23:24 - 2017-02-12 00:21 - 818144561 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_Belgique_16.exe
2017-02-16 18:56 - 2017-02-16 19:34 - 545160397 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_BureauxEtranger_16.exe
2017-02-10 18:57 - 2017-02-10 20:23 - 1196409861 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_Europa_NationsUnies_16.exe
2017-01-22 14:20 - 2017-01-22 16:48 - 2044566491 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_France_16.exe
2019-11-24 16:48 - 2019-11-24 17:06 - 1475090277 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_France_19 (1).exe
2017-01-26 22:58 - 2017-01-26 23:59 - 860778029 _____ (PHILATELIX ) C:\Users\guyde\Downloads\Install_MonacoAndorreTaafSpm_16.exe
2020-10-06 16:45 - 2020-10-06 16:45 - 006580709 _____ (DigiContractor ) C:\Users\guyde\Downloads\iphotomeasure_3-4-5_en_205880 (1).exe
2020-10-06 16:46 - 2020-10-06 16:46 - 006580709 _____ (DigiContractor ) C:\Users\guyde\Downloads\iphotomeasure_3-4-5_en_205880 (2).exe
2020-10-06 16:42 - 2020-10-06 16:42 - 006580709 _____ (DigiContractor ) C:\Users\guyde\Downloads\iphotomeasure_3-4-5_en_205880.exe
2021-06-23 20:08 - 2021-06-23 20:08 - 001920600 _____ (Orange) C:\Users\guyde\Downloads\Orange-assistant-page-de-demarrage (1).exe
2021-08-22 15:17 - 2021-08-22 15:18 - 001920600 _____ (Orange) C:\Users\guyde\Downloads\Orange-assistant-page-de-demarrage (2).exe
2020-05-22 13:34 - 2020-05-22 13:34 - 001920696 _____ (Orange) C:\Users\guyde\Downloads\Orange-assistant-page-de-demarrage.exe
2017-09-10 17:22 - 2017-09-10 17:22 - 001469794 _____ (Unisys Corporation ) C:\Users\guyde\Downloads\Plug-in_messagerie_vocale_888 (1).exe
2017-09-10 17:22 - 2017-09-10 17:23 - 001469794 _____ (Unisys Corporation ) C:\Users\guyde\Downloads\Plug-in_messagerie_vocale_888 (2).exe
2017-09-10 17:23 - 2017-09-10 17:23 - 001469794 _____ (Unisys Corporation ) C:\Users\guyde\Downloads\Plug-in_messagerie_vocale_888 (3).exe
2017-08-16 17:54 - 2017-08-16 17:55 - 001469794 _____ (Unisys Corporation ) C:\Users\guyde\Downloads\Plug-in_messagerie_vocale_888.exe
2018-05-22 09:10 - 2018-05-22 09:11 - 020439584 _____ (SquareClock SAS) C:\Users\guyde\Downloads\SquareClock_Castorama_Bathroom_Internet.exe
2016-12-05 17:44 - 2016-12-05 18:00 - 110172078 _____ C:\Users\guyde\Downloads\suite_de_securite_orange (1).exe
2016-12-05 18:06 - 2016-12-05 18:21 - 128245387 _____ C:\Users\guyde\Downloads\suite_de_securite_orange (2).exe
2016-12-05 17:21 - 2016-12-05 17:43 - 087710270 _____ C:\Users\guyde\Downloads\suite_de_securite_orange.exe
2022-11-05 13:03 - 2022-11-05 13:05 - 003305160 _____ (Nicolas Coolman) C:\Users\guyde\Downloads\zhpcleaner_2022-10-18-81_fr_433513.exe

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


==================== BCD ================================

Gestionnaire de d‚marrage du microprogramme
-------------------------------------------
identificateur {fwbootmgr}
displayorder {bootmgr}
{1d0f2f94-cdf0-11ec-8b12-806e6f6e6963}
{312b521a-964a-11ed-8b53-806e6f6e6963}
{312b521b-964a-11ed-8b53-806e6f6e6963}
{312b521c-964a-11ed-8b53-806e6f6e6963}
timeout 2

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Application logicielle (101fffff)
--------------------------------
identificateur {1d0f2f94-cdf0-11ec-8b12-806e6f6e6963}
device unknown
description UEFI: 0.00

Application logicielle (101fffff)
--------------------------------
identificateur {312b521a-964a-11ed-8b53-806e6f6e6963}
description UEFI:CD/DVD Drive

Application logicielle (101fffff)
--------------------------------
identificateur {312b521b-964a-11ed-8b53-806e6f6e6963}
description UEFI:Removable Device

Application logicielle (101fffff)
--------------------------------
identificateur {312b521c-964a-11ed-8b53-806e6f6e6963}
description UEFI:Network Device

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale fr-FR
inherit {bootloadersettings}
recoverysequence {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d}
nx OptIn
bootmenupolicy Standard

Chargeur de d‚marrage Windows
-----------------------------
identificateur {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d}
device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Chargeur de d‚marrage Windows
-----------------------------
identificateur {b8abf475-8950-11e8-a320-b59913c48516}
device ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b8abf476-8950-11e8-a320-b59913c48516}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[unknown]\Recovery\WindowsRE\Winre.wim,{b8abf476-8950-11e8-a320-b59913c48516}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {2e7b5fcb-f0f4-11ea-bfe3-e9b013bef45d}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {2e7b5fcd-f0f4-11ea-bfe3-e9b013bef45d}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
integrityservices Enable

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {2e7b5fce-f0f4-11ea-bfe3-e9b013bef45d}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume4
ramdisksdipath \Recovery\WindowsRE\boot.sdi

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité