Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par 33769 (administrateur) sur LAPTOP-3MQ52Q3C (HP HP Laptop 17-ca0xxx) (02-09-2022 13:17:12)
Exécuté depuis C:\Users\33769\OneDrive\Bureau
Profils chargés: 33769
Plate-forme: Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Opera
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(DriverStore\FileRepository\c0359791.inf_amd64_df2f32dfa36e77ab\B359612\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0359791.inf_amd64_df2f32dfa36e77ab\B359612\atieclxx.exe
(DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointGpuInfo.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\BridgeCommunication.exe <2>
(ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) () [Fichier non signé] C:\Program Files\Serviio\bin\ServiioService.exe <2>
(services.exe ->) (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0359791.inf_amd64_df2f32dfa36e77ab\B359612\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Greatis Software LLC -> Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\SysInfoCap.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files (x86)\Kamo\KamoSvc.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(services.exe ->) (WildTangent, Inc. -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe
(svchost.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Piriform Software Ltd -> Piriform) C:\Program Files (x86)\Kamo\Kamo.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1082144 2020-04-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\bootrace.exe [9519440 2021-01-26] (Greatis Software LLC -> Greatis Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [536152 2022-08-12] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1339168 2020-12-24] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Pas de fichier)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [Epson Stylus SX218] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGDE.EXE [224768 2009-09-14] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\Run: [MicrosoftEdgeAutoLaunch_D67F9142E00A006C58B00CCC3A339B04] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827104 2022-08-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\MountPoints2: {4b689064-6bb6-11ec-823a-0068eb381267} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\...\MountPoints2: {4b689277-6bb6-11ec-823a-0068eb381267} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1805736365-329377465-3708726696-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [809472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\EPSON SX218 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMGDE.DLL [118784 2008-11-12] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-02-13] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC)
Startup: C:\Users\33769\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2020-01-22]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon Inc. -> Canon INC.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0D36F316-5A5F-4602-A76A-CB14CB80152D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {19D062EE-3CED-4A6B-9183-A74285CD246F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-08-17] (HP Inc. -> HP Inc.)
Task: {25DD2CD5-5054-4747-88B3-71BE33F0DB2F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {29C23474-A3DB-424A-A24D-C885BF83E8A3} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1197824 2022-08-23] (Avast Software s.r.o. -> AVAST Software)
Task: {39115C02-F9B2-45F9-9076-E7C50E3F7AF5} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {3A057B16-BEA4-4AD4-90B8-870C0EC887D8} - System32\Tasks\CCleanerSkipUAC - 33769 => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4622538B-0AA9-408E-81B7-35ABA710F07C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {463DA8DD-68FE-4328-83AA-431A9BD623F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {54D8ACEE-2BE6-4EBE-8E1D-131B94A875DB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {5A505797-84C8-4825-A064-5CBF33DA9843} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1149512 2022-08-17] (HP Inc. -> HP Inc.)
Task: {5F9F3051-5DB0-4F2C-A116-EE99D549DF23} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {6D0A6D4F-505A-4613-93D1-F3650270533A} - System32\Tasks\Opera scheduled Autoupdate 1659613038 => C:\Users\33769\AppData\Local\Programs\Opera\launcher.exe [2527224 2022-07-25] (Opera Norway AS -> Opera Software)
Task: {850D62E9-8287-486F-AA93-721B9235FC88} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {98DE5E2F-CD90-4686-835A-938853802E31} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {9D179F91-207F-49C1-9396-6091233D9949} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F241839-EAAB-49D1-8716-FDC1A1B96ED1} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {A2D56FBC-3051-4796-8CEE-B7858D95439D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {A7AC0F1A-CBFC-49A5-806A-0E8367E69CF1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2022-08-17] (HP Inc. -> HP Inc.)
Task: {AFAF9076-F33E-4205-A096-F54CEF03E47E} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {B5CC7FC2-F0CB-4B14-B334-561F0A3CE5AB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {B90E1D43-A4A0-42D5-9F16-435043F12544} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B9C549F1-D73A-4AEA-91C2-340FC081E049} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-05-26] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {C3BC0E49-4C04-4CCD-B860-AEDB1407EA36} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {CAAD0402-750C-455C-A1C2-2B08DC713A6B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CD8D8572-D345-4C48-8926-DE133764E723} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D609BD59-5A30-4ADD-94FB-BC4B0DA2C372} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [847392 2022-08-17] (HP Inc. -> HP Inc.)
Task: {E9663E60-DF6D-40BB-8299-662E030700F3} - System32\Tasks\Kamo\KamoStart => C:\Program Files (x86)\Kamo\Kamo.exe [907488 2022-08-23] (Piriform Software Ltd -> Piriform)
Task: {EC9770A8-D1AC-491F-9FFF-177CCC361EE9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-05-26] (Advanced Micro Devices, Inc.) [Fichier non signé]
Task: {F1311012-7773-40F0-9F46-E85F6F246CDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-14] (Google LLC -> Google LLC)
Task: {F1642BD3-6ECB-48AB-9B08-3C8BE949818E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-14] (Google LLC -> Google LLC)
Task: {F6ED4D51-FBFE-4A4D-B2B4-0EC2AADE5FDB} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {F86F2784-DEFB-4784-ACDF-E50E600CABF4} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [6694224 2022-07-26] (Avast Software s.r.o. -> Avast Software)
Task: {F9E626ED-CE17-42B2-8EBC-497986BC60DF} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4637440 2022-08-23] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\SecureLine VPN\log" --guid 0b43b430-f254-459a-93cf-c5b0b148f4f3
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{82e045b3-48ae-4473-a4e4-01f883298307}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{f87e8e7e-9409-4103-b265-041d8672f3ff}: [DhcpNameServer] 192.168.0.254
Edge:
=======
DownloadDir: C:\Users\33769\Downloads
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => chemin non trouvé(e)
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => chemin non trouvé(e)
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => chemin non trouvé(e)
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => chemin non trouvé(e)
Edge DefaultProfile: Default
Edge Profile: C:\Users\33769\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-02]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: 3dm1aucf.default
FF ProfilePath: C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\3dm1aucf.default [2020-08-06]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\3dm1aucf.default\Extensions\sp@avast.com.xpi [2019-12-17]
FF ProfilePath: C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release [2022-09-02]
FF Extension: (Signal Spam) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\@addonsignalspam.xpi [2020-04-16]
FF Extension: (HTTPS partout) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\https-everywhere@eff.org.xpi [2021-11-20]
FF Extension: (Privacy Badger) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2022-08-04]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\sp@avast.com.xpi [2022-08-04]
FF Extension: (uBlock Origin) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-08-04]
FF Extension: (Mozilla Official) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\{14553439-2741-4e9d-b474-784f336f58c9} [2020-01-30] [non signé]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-08-04]
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\33769\AppData\Roaming\Mozilla\Firefox\Profiles\0uet3tea.default-release\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2022-08-04]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default [2022-08-23]
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxps://www.google.fr/"
CHR Extension: (Safe Torrent Scanner) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-08-04]
CHR Extension: (Tv-replay) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\apfgogkjjjedakfeibebkfmlbmagifci [2021-11-27]
CHR Extension: (WOT pour la sécurité des sites Web et une navigation sûre) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2021-11-27]
CHR Extension: (Appel Skype) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2021-11-27]
CHR Extension: (uBlock Origin) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-08-04]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-02]
CHR Extension: (Dashlane - Gestionnaire de mots de passe) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2022-08-02]
CHR Extension: (Google Docs hors connexion) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-12]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-02]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-08-02]
CHR Extension: (Qwant) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2022-08-02]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-06-02]
CHR Extension: (Manual Geolocation) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpiefjlgcjmciajdcinaejedejjfjgki [2021-11-27]
CHR Extension: (myTaste Browser Button) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmfnnmioagmcopmmbdfpodhcpnehddbi [2021-11-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-27]
CHR Extension: (Signal Spam) - C:\Users\33769\AppData\Local\Google\Chrome\User Data\Default\Extensions\npkncdihipibabapnailakhpajlglbfk [2021-11-27]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Opera:
=======
OPR Profile: C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable [2022-09-02]
OPR Notifications: Opera Stable -> hxxps://fr.shopping.rakuten.com; hxxps://usersdrive.com; hxxps://www.conforama.fr; hxxps://www.youtube.com
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-05]
OPR Extension: (Opera Crypto Wallet) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-13]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-14]
OPR Extension: (Installer des extensions Chrome) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-09-23]
OPR Extension: (Page Translator) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\loloiecbodgmecpblpjiplppafnjbmgj [2020-10-21]
OPR Extension: (Google Traduction) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2022-08-20]
OPR Extension: (Fake news debunker by InVID & WeVerify) - C:\Users\33769\AppData\Roaming\Opera Software\Opera Stable\Extensions\mhccpoafgdgbhnjfhkcmgknndkeenfhe [2022-06-29]
StartMenuInternet: (HKU\S-1-5-21-1805736365-329377465-3708726696-1001) OperaStable - "C:\Users\33769\AppData\Local\Programs\Opera\Launcher.exe"
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY SOLUTIONS LIMITED -> ABBYY)
R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [97352 2020-09-23] (Greatis Software LLC -> Greatis Software, LLC)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [438560 2020-12-24] (Digital Wave Ltd -> Digital Wave Ltd)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2019-12-19] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\AppHelperCap.exe [770544 2022-06-21] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\DiagsCap.exe [769040 2022-06-21] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\NetworkCap.exe [762376 2022-06-21] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_620459b7cf27a23d\x64\SysInfoCap.exe [769040 2022-06-21] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_29c6c876bdaf5af9\x64\TouchpointAnalyticsClientService.exe [489696 2022-05-26] (HP Inc. -> HP Inc.)
R2 KamoSvc; C:\Program Files (x86)\Kamo\KamoSvc.exe [6054624 2022-08-23] (Piriform Software Ltd -> Piriform Software Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8726344 2022-08-16] (Malwarebytes Inc. -> Malwarebytes)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [9752320 2022-08-23] (Avast Software s.r.o. -> AVAST Software)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2021-09-30] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1689984 2022-03-29] (WildTangent, Inc. -> )
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-11-16] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 wuauserv; C:\WINDOWS\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S4 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (pas de ServiceDLL)
S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X]
S2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\SocialApps\ElevationService.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [143904 2020-05-12] (Alcorlink Corp. -> )
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [65944 2022-08-23] (Avast Software s.r.o. -> Avast Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [120416 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [116296 2022-08-23] (Piriform Software Ltd -> Windows (R) Win 7 DDK provider)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8287464 2019-05-08] () [Fichier non signé]
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [213088 2020-02-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [37280 2021-11-23] (HP Inc. -> HP)
S3 MpKslb5627af6; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A604E332-52F9-42B4-B181-ADF0020AC832}\MpKslDrv.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-02 13:15 - 2022-09-02 13:20 - 000000000 ____D C:\FRST
2022-09-01 08:39 - 2022-09-02 11:16 - 000000000 ____D C:\ProgramData\WildTangent
2022-09-01 08:39 - 2022-09-01 08:39 - 000000000 ____D C:\Users\33769\AppData\Roaming\WildTangent
2022-08-31 09:14 - 2022-08-31 16:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-29 20:43 - 2022-08-29 20:43 - 003505864 _____ (Nicolas Coolman) C:\Users\33769\ZHPSuite.exe
2022-08-29 14:23 - 2022-08-31 18:20 - 000000000 ____D C:\Users\33769\AppData\Roaming\ZHP
2022-08-29 14:23 - 2022-08-31 17:39 - 000000000 ____D C:\Users\33769\AppData\Local\ZHP
2022-08-24 17:42 - 2022-08-24 17:42 - 027764217 _____ C:\Users\33769\Downloads\Images_airmore_20220824_174145.zip
2022-08-23 17:42 - 2022-09-02 13:25 - 000000000 ____D C:\Users\33769\AppData\Local\Kamo
2022-08-23 17:41 - 2022-08-23 17:36 - 000116296 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\netfilter2.sys
2022-08-23 17:39 - 2022-09-02 13:07 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2022-08-23 17:39 - 2022-08-23 17:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-08-23 17:39 - 2022-08-23 17:38 - 000065944 _____ (Avast Software) C:\WINDOWS\system32\Drivers\aswVpnRdr.sys
2022-08-23 17:38 - 2022-08-23 17:38 - 000001958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kamo.lnk
2022-08-23 17:38 - 2022-08-23 17:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Kamo
2022-08-23 17:38 - 2022-08-23 17:38 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2022-08-23 17:38 - 2022-08-23 17:38 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2022-08-23 17:38 - 2022-08-23 17:38 - 000000000 ____D C:\Program Files\Avast Software
2022-08-23 17:37 - 2022-08-23 17:35 - 000038656 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2022-08-23 17:35 - 2022-09-02 12:40 - 000000000 ____D C:\Program Files (x86)\Kamo
2022-08-23 17:35 - 2022-08-23 17:35 - 000000000 ____D C:\Program Files\Common Files\Piriform
2022-08-16 09:44 - 2022-08-16 09:44 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-08-15 21:22 - 2022-08-15 21:22 - 000093046 _____ C:\Users\33769\Downloads\AGENDA 2022(1).xlsx
2022-08-11 04:43 - 2022-09-02 13:10 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-08-10 19:21 - 2022-08-10 19:21 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-10 19:21 - 2022-08-10 19:21 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-10 19:20 - 2022-08-10 19:20 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-10 19:19 - 2022-08-10 19:19 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-10 19:18 - 2022-08-10 19:18 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-10 19:18 - 2022-08-10 19:18 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-10 19:18 - 2022-08-10 19:18 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 19:18 - 2022-08-10 19:18 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 18:46 - 2022-08-10 18:46 - 000000000 ___HD C:\$WinREAgent
2022-08-10 10:58 - 2022-08-10 11:00 - 000000000 ____D C:\Users\33769\OneDrive\Documents\FonePaw
2022-08-10 10:50 - 2022-08-10 10:50 - 000000000 ____D C:\Users\33769\.android
2022-08-10 10:49 - 2022-08-10 10:49 - 000000000 ____D C:\Users\33769\AppData\Local\FonePaw
2022-08-10 10:49 - 2020-02-17 06:41 - 000213088 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2022-08-10 10:49 - 2020-02-17 06:41 - 000120416 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2022-08-10 10:46 - 2022-08-10 10:46 - 002253016 _____ ( ) C:\Users\33769\Downloads\android-data-backup-and-restore.exe
2022-08-10 10:46 - 2022-08-10 10:46 - 000000000 ____D C:\Program Files (x86)\FonePaw
2022-08-04 14:50 - 2022-08-24 17:07 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-08-04 13:37 - 2022-08-10 13:22 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1659613038
2022-08-04 13:37 - 2022-08-10 13:22 - 000001452 _____ C:\Users\33769\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2022-08-04 13:34 - 2022-08-04 13:34 - 002785272 _____ (Opera Software) C:\Users\33769\Downloads\OperaSetup.exe
2022-08-04 13:06 - 2022-08-04 13:06 - 000000000 ____D C:\Users\33769\OneDrive\Documents\REGISTRE 2022 08 04
2022-08-04 12:35 - 2022-08-04 12:36 - 000010652 _____ C:\Users\33769\Downloads\DetailMessage.pdf
2022-08-03 13:51 - 2022-08-03 13:51 - 000012077 _____ C:\Users\33769\Downloads\20220803-StickerMR-71441657.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-02 13:24 - 2020-09-06 11:29 - 000000000 ____D C:\Users\33769\AppData\Local\Windows Live
2022-09-02 13:16 - 2021-03-18 12:14 - 001927846 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-02 13:16 - 2019-12-07 16:49 - 000833030 _____ C:\WINDOWS\system32\perfh00C.dat
2022-09-02 13:16 - 2019-12-07 16:49 - 000167760 _____ C:\WINDOWS\system32\perfc00C.dat
2022-09-02 13:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-02 13:15 - 2019-12-16 10:31 - 000000000 ____D C:\Program Files\CCleaner
2022-09-02 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-02 13:09 - 2019-12-14 19:11 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-02 13:07 - 2021-06-08 10:43 - 000000000 ____D C:\Program Files (x86)\BootRacer
2022-09-02 13:07 - 2021-03-18 12:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-02 13:07 - 2021-03-18 11:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-02 13:07 - 2021-03-18 11:52 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-02 13:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-02 11:47 - 2019-12-13 19:38 - 000000000 ____D C:\Users\33769\AppData\LocalLow\Mozilla
2022-09-02 11:39 - 2019-12-13 19:38 - 000000000 ____D C:\ProgramData\Mozilla
2022-09-01 22:28 - 2022-06-11 10:47 - 000000000 ____D C:\Users\33769\AppData\Roaming\vlc
2022-09-01 16:26 - 2020-01-07 18:54 - 000000000 ____D C:\Users\33769\AppData\Local\CrashDumps
2022-08-31 17:15 - 2020-10-15 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2022-08-31 17:15 - 2020-10-15 15:52 - 000000000 ____D C:\ProgramData\Wondershare
2022-08-31 17:15 - 2020-10-15 15:52 - 000000000 ____D C:\Program Files (x86)\Wondershare
2022-08-31 16:48 - 2019-12-13 19:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-31 16:47 - 2019-09-24 12:57 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2022-08-31 16:47 - 2019-09-24 12:57 - 000000000 ____D C:\Program Files (x86)\WildTangent Games
2022-08-31 16:24 - 2021-09-27 17:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-31 16:16 - 2019-12-13 19:38 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-31 14:06 - 2021-12-13 16:17 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1805736365-329377465-3708726696-1001
2022-08-31 14:06 - 2021-03-18 12:30 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1805736365-329377465-3708726696-1001
2022-08-31 14:06 - 2021-03-18 12:00 - 000002470 _____ C:\Users\33769\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-31 14:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-30 17:33 - 2021-05-20 08:47 - 000000000 ____D C:\Program Files (x86)\WINDOWS 10 TOOLKIT
2022-08-30 00:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-30 00:03 - 2021-03-18 12:30 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-30 00:03 - 2021-03-18 12:30 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-29 20:43 - 2021-03-18 12:00 - 000000000 ____D C:\Users\33769
2022-08-29 20:05 - 2019-12-13 18:44 - 000000000 ____D C:\Users\33769\AppData\Local\D3DSCache
2022-08-29 15:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-08-29 14:18 - 2020-09-23 10:38 - 000000000 ____D C:\Users\33769\OneDrive\Documents\SECURITÉ
2022-08-27 11:31 - 2020-07-04 21:29 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-26 14:46 - 2019-12-17 10:14 - 000000000 ____D C:\ProgramData\AVAST Software
2022-08-26 14:43 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-08-26 14:43 - 2019-09-24 12:45 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2022-08-23 17:38 - 2020-09-06 11:57 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2022-08-23 17:35 - 2022-07-01 10:34 - 000000000 ____D C:\ProgramData\Piriform
2022-08-23 08:01 - 2021-03-18 12:30 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-08-23 07:40 - 2021-03-18 12:30 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 07:40 - 2021-03-18 12:30 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-21 17:18 - 2021-03-18 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2022-08-20 21:52 - 2019-12-16 11:22 - 000000000 ____D C:\Users\33769\AppData\Local\Sidebar7
2022-08-15 21:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-08-13 19:53 - 2021-01-13 19:46 - 000000000 ____D C:\Users\33769\AppData\Roaming\WhatsApp
2022-08-13 17:52 - 2019-12-16 11:39 - 000000000 ____D C:\Users\33769\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adsl TV
2022-08-11 11:18 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-11 04:36 - 2021-03-18 11:53 - 000509704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-11 04:32 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-11 04:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-10 19:18 - 2021-03-18 11:58 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-10 13:39 - 2019-12-14 02:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-10 13:17 - 2019-12-14 02:16 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-10 13:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-09 21:46 - 2021-03-18 12:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
==================== Fichiers à la racine de certains dossiers ========
2022-08-29 20:43 - 2022-08-29 20:43 - 003505864 _____ (Nicolas Coolman) C:\Users\33769\ZHPSuite.exe
2020-09-04 13:51 - 2020-09-19 19:45 - 000000096 _____ () C:\Users\33769\AppData\Roaming\config.cnf
2020-04-03 17:06 - 2021-05-28 11:21 - 000005632 _____ () C:\Users\33769\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-12-18 19:31 - 2021-12-18 19:32 - 000000500 _____ () C:\Users\33769\AppData\Local\HamsterVideoConverterSettings.cfg
2021-07-29 20:47 - 2021-07-29 20:47 - 000000218 _____ () C:\Users\33769\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================