Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-06-2019
Exécuté par User (administrateur) sur PIERRE-BUREAU (ASUS All Series) (15-06-2019 13:48:38)
Exécuté depuis D:\Install\Farbar
Profils chargés: User (Profils disponibles: User)
Platform: Windows 10 Home Version 1809 17763.503 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1904.31.0_x64__8wekyb3d8bbwe\Calculator.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19051.545.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19031.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Internet Security Corporation) [Fichier non signé] C:\Users\User\AppData\Local\Programs\Prestafind\Debitest\svcinetsec.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\19.086.0502.0006\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd -> Piriform Ltd) D:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Tim Kosse -> FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
(Vadim Belov -> ) C:\Program Files\Advanced Time Synchronizer\svctimesync.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2019-03-09] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [FileZilla Server Interface] => C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe [2770088 2017-02-08] (Tim Kosse -> FileZilla Project)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [CCleaner Monitoring] => D:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [672384 2018-04-26] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\User\AppData\Local\slack\Update.exe [1569296 2019-05-27] (Slack Technologies, Inc. -> )
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EB0031D-9A06-4432-AB7E-7BE8B3623CA3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-19] (Google Inc -> Google Inc.)
Task: {0F756F98-5FD5-44D8-A0CB-E7A71A6090E4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {2CBA0E6F-26A0-4AE4-85E5-D6B8F641D63E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2281944 2019-06-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {414777AE-4BA2-42DE-BC21-4A1DD9140D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {45903A2E-63FB-4A72-96BB-38C2D606B75E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-11] (Adobe Inc. -> Adobe)
Task: {66755CF8-3025-4688-819E-D1B9757E9114} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7A5CC73A-820A-43F2-8E73-5FADA31ECEC6} - System32\Tasks\ASCOM - Update Earth Rotation Data => C:\Program Files (x86)\ASCOM\Platform 6\Tools\EarthRotationUpdate.exe [22528 2018-06-25] (ASCOM) [Fichier non signé]
Task: {814DA056-A703-4937-946E-8315CDBF6DF9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {825F131E-698E-4371-86D7-598DB24C72C9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {939F56C5-DB1B-40E4-B61C-B2E3AFF10CFC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A706F735-8CAD-4DDE-A09B-A334787FBA38} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-19] (Google Inc -> Google Inc.)
Task: {B8B3BA33-B902-44D1-9B87-4A379A07D781} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC15573F-593A-40D5-A972-BBDEEF251A80} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_Plugin.exe [1457208 2019-06-11] (Adobe Inc. -> Adobe)
Task: {C4E8F8AA-0BC8-4E27-89F3-35706FDC4684} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [13619968 2018-04-12] (Piriform Ltd -> Piriform Ltd)
Task: {C9785397-9B3C-4BB7-B8D0-0F8157DFCDC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC908B8D-82A5-4EAD-998D-E333A598E7C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1693881-9F1F-4931-8250-A57452E5D733} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1F44502-412E-457C-9649-C8DDA062C8BB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy est activé.
ProxyEnable: [HKLM-x32] => Proxy est activé.
ProxyServer: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyServer: [HKLM-x32] => http=127.0.0.1:48080;https=127.0.0.1:48080
AutoConfigURL: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyEnable: [S-1-5-21-4204005812-2592597320-3612635721-1001] => Proxy est activé.
ProxyServer: [S-1-5-21-4204005812-2592597320-3612635721-1001] => http=127.0.0.1:48080;https=127.0.0.1:48080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6348ccd0-7f0f-4563-b339-d6f8698c5f31}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1http=127.0.0.1:48080;https=127.0.0.1:48080
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-4204005812-2592597320-3612635721-1001 -> hxxp://google.com/
FireFox:
========
FF DefaultProfile: cdzyv3nn.default-1546877844677
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cdzyv3nn.default-1546877844677 [2019-06-15]
FF Homepage: Mozilla\Firefox\Profiles\cdzyv3nn.default-1546877844677 -> hxxps://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [Pas de fichier]
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 advtimesync; C:\Program Files\Advanced Time Synchronizer\svctimesync.exe [818952 2018-06-04] (Vadim Belov -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
R2 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [859304 2017-02-08] (Tim Kosse -> FileZilla Project)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] (Canon Inc. -> )
R2 InternetSecurity; C:\Users\User\AppData\Local\Programs\Prestafind\Debitest\svcinetsec.exe [55808 2019-05-24] (Internet Security Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [75392 2018-04-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [75392 2018-04-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11446104 2019-04-24] (TeamViewer GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] (ASUSTeK Computer Inc. -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-06-09] (Malwarebytes Corporation -> Malwarebytes)
R3 netr7364; C:\WINDOWS\System32\drivers\netr7364.sys [721920 2018-09-15] (Microsoft Windows -> Ralink Technology, Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_8e4f37220e99138f\nvlddmkm.sys [17213824 2018-09-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [888064 2017-01-23] (Realtek Semiconductor Corp -> Realtek )
S3 sbig; C:\WINDOWS\SysWOW64\Drivers\sbig.sys [34496 2001-05-08] (SBIG) [Fichier non signé]
S3 sbigu64; C:\WINDOWS\System32\Drivers\sbigu64.sys [48128 2015-01-27] (Santa Barbara Instrument Gp Inc -> Santa Barbara Instrument Group (SBIG))
R3 stdriver; C:\WINDOWS\system32\DRIVERS\stdriverx64.sys [54664 2019-05-07] (NCH Software Pty Ltd -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [47616 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-06-15 13:46 - 2019-06-15 13:48 - 000000000 ____D C:\FRST
2019-06-15 12:28 - 2019-06-15 12:28 - 000000000 ___HD C:\OneDriveTemp
2019-06-09 21:33 - 2019-06-09 21:33 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-06-09 16:09 - 2019-06-09 17:25 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2019-06-09 16:09 - 2019-06-09 17:10 - 000000921 _____ C:\Users\User\Desktop\ZHPCleaner.lnk
2019-06-09 16:09 - 2019-06-09 16:09 - 000000000 ____D C:\Users\User\AppData\Local\ZHP
2019-06-09 15:24 - 2019-06-09 16:45 - 000000000 ____D C:\Users\User\AppData\Local\Google
2019-06-09 13:29 - 2019-06-09 16:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-06-09 13:08 - 2019-06-09 13:08 - 000001953 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\Users\User\AppData\Local\mbamtray
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\Users\User\AppData\Local\mbam
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-06-09 13:08 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-06-08 18:38 - 2019-06-08 18:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2019-06-07 15:11 - 2019-06-09 15:24 - 000000000 ____D C:\ProgramData\Google
2019-06-05 13:48 - 2019-06-05 13:48 - 000001699 _____ C:\Users\User\Desktop\advtimesync.exe - Raccourci.lnk
2019-06-05 13:08 - 2019-06-05 13:47 - 000000000 ____D C:\Users\User\AppData\Roaming\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\ProgramData\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\Program Files\Advanced Time Synchronizer
2019-06-03 18:07 - 2019-06-03 18:10 - 262382400 _____ C:\Users\User\Downloads\M13-Kizilian-L(1).fit
2019-05-31 10:29 - 2019-05-31 10:34 - 262382400 _____ C:\Users\User\Downloads\M13-Kizilian-L.fit
2019-05-28 22:59 - 2019-05-28 23:01 - 000000000 ____D C:\Users\User\AppData\Local\NINA
2019-05-28 22:59 - 2019-05-28 22:59 - 000001307 _____ C:\Users\Public\Desktop\N.I.N.A. - Nighttime Imaging 'N' Astronomy.lnk
2019-05-28 22:59 - 2019-05-28 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\N.I.N.A. - Nighttime Imaging 'N' Astronomy
2019-05-28 22:59 - 2019-05-28 22:59 - 000000000 ____D C:\Program Files\N.I.N.A. - Nighttime Imaging 'N' Astronomy
2019-05-27 12:39 - 2019-05-27 12:39 - 000000959 _____ C:\Users\User\Desktop\ds9.lnk
2019-05-27 12:38 - 2019-05-27 12:38 - 000000401 _____ C:\Users\User\Desktop\SAOImageDS9.lnk
2019-05-27 02:40 - 2019-05-27 02:40 - 000002657 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debitest.lnk
2019-05-27 02:40 - 2019-05-27 02:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Debitest
2019-05-27 02:38 - 2019-05-27 02:39 - 076531112 _____ () C:\Users\User\Downloads\debitest.exe
2019-05-27 02:07 - 2019-06-15 12:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Slack
2019-05-27 02:07 - 2019-06-02 01:35 - 000002243 _____ C:\Users\User\Desktop\Slack.lnk
2019-05-27 02:07 - 2019-05-27 02:07 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2019-05-27 02:07 - 2019-05-27 02:07 - 000000000 ____D C:\Users\User\AppData\Local\slack
2019-05-27 01:15 - 2019-05-27 01:15 - 011770506 _____ (Juan José Sanabria ) C:\Users\User\Downloads\XParallaxVIU_Setup_v1.2.4_win64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 026807808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 023438848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 020814848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 019022336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007645384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 005498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002780000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 002708480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001699496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-25 11:42 - 2019-05-25 11:42 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001342608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-25 11:42 - 2019-05-25 11:42 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000586280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-25 11:42 - 2019-05-25 11:42 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-25 11:42 - 2019-05-25 11:42 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-05-25 11:42 - 2019-05-25 11:42 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000080184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-24 15:04 - 2019-05-24 15:05 - 044070488 _____ (PDFZilla.com ) C:\Users\User\Downloads\pdfzilla.exe
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-06-15 13:33 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-15 12:54 - 2018-06-13 22:21 - 000000000 ___RD C:\Users\User\OneDrive
2019-06-15 12:37 - 2018-05-19 10:55 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2019-06-15 12:28 - 2018-08-14 17:40 - 000000000 ___RD C:\Users\User\Desktop\Observatoire Sadr
2019-06-15 12:27 - 2018-05-19 10:57 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-14 23:42 - 2019-02-07 21:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-14 23:36 - 2018-05-19 12:18 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-06-14 15:55 - 2018-06-06 21:57 - 000000000 ____D C:\Users\User\Documents\SADRclock
2019-06-14 12:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-14 09:24 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-11 17:42 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-06-11 16:28 - 2018-05-29 18:59 - 000000000 ____D C:\Users\User\AppData\Local\Astrometrica
2019-06-11 12:31 - 2019-02-07 21:29 - 000004754 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-06-11 12:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-06-11 12:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-06-10 15:47 - 2018-06-06 13:08 - 000000000 ____D C:\ProgramData\TEMP
2019-06-10 11:20 - 2018-12-15 14:00 - 000002126 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2019-06-09 23:13 - 2018-05-19 11:56 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-06-09 21:46 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-06-09 21:37 - 2019-02-07 21:31 - 001771406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-06-09 21:37 - 2018-09-15 18:39 - 000791768 _____ C:\WINDOWS\system32\perfh00C.dat
2019-06-09 21:37 - 2018-09-15 18:39 - 000149836 _____ C:\WINDOWS\system32\perfc00C.dat
2019-06-09 21:33 - 2019-02-07 21:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-09 21:32 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-09 21:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-06-09 16:46 - 2018-05-31 01:52 - 000000000 ____D C:\Instal
2019-06-09 15:25 - 2018-05-19 14:42 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2019-06-09 15:24 - 2019-04-28 20:03 - 000000000 ____D C:\Program Files\Google
2019-06-09 15:07 - 2018-05-19 11:55 - 000000000 ____D C:\Program Files (x86)\Google
2019-06-09 13:12 - 2018-05-19 12:04 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-06-09 13:08 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-06-09 13:05 - 2018-05-19 11:56 - 000000000 ____D C:\Users\User\AppData\Roaming\TeamViewer
2019-06-09 07:55 - 2018-05-29 22:18 - 000000000 ____D C:\Users\User\AppData\Roaming\Stellarium
2019-06-08 18:38 - 2018-09-11 00:21 - 000002528 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002555 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002538 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002528 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-08 18:37 - 2018-05-19 16:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-08 12:31 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-07 22:33 - 2019-02-07 21:29 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4204005812-2592597320-3612635721-1001
2019-06-07 22:33 - 2019-02-07 21:25 - 000002449 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-07 18:03 - 2018-06-06 15:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2019-06-07 15:12 - 2018-05-19 10:55 - 000000000 ____D C:\Users\User\AppData\Roaming\Adobe
2019-06-07 15:11 - 2018-06-06 21:56 - 000000000 ____D C:\ProgramData\Package Cache
2019-06-07 15:07 - 2019-01-23 13:31 - 000000000 ____D C:\Users\User\Documents\DxO PhotoLab 2 logs
2019-06-04 21:49 - 2018-05-19 10:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-06-03 20:02 - 2018-05-30 11:34 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2019-06-03 00:25 - 2018-06-08 22:31 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-06-02 16:50 - 2019-02-07 21:24 - 000342912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-28 15:22 - 2018-05-19 10:58 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder
2019-05-28 15:06 - 2018-05-19 11:57 - 000000000 ____D C:\Users\User\AppData\Local\PDFCreator
2019-05-27 02:07 - 2018-06-06 15:51 - 000000000 ____D C:\Users\User\AppData\Local\SquirrelTemp
2019-05-25 22:01 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-25 22:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-24 11:46 - 2018-05-19 11:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-24 11:43 - 2018-05-19 11:04 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-24 11:32 - 2019-02-07 21:29 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-24 11:32 - 2019-02-07 21:29 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-24 11:31 - 2018-07-18 22:44 - 000000000 ____D C:\ProgramData\Packages
==================== Fichiers à la racine de certains dossiers ================
2019-05-05 13:05 - 2019-03-26 11:19 - 000000014 _____ () C:\Users\User\AppData\Roaming\pdfdrawcodec.dll
2018-05-31 14:36 - 2018-06-02 14:10 - 000009360 _____ () C:\Users\User\AppData\Roaming\Valeurs séparées par une virgule.EML
2018-06-04 11:55 - 2019-01-08 14:24 - 000007643 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================
Exécuté par User (administrateur) sur PIERRE-BUREAU (ASUS All Series) (15-06-2019 13:48:38)
Exécuté depuis D:\Install\Farbar
Profils chargés: User (Profils disponibles: User)
Platform: Windows 10 Home Version 1809 17763.503 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1904.31.0_x64__8wekyb3d8bbwe\Calculator.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19051.545.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19031.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Internet Security Corporation) [Fichier non signé] C:\Users\User\AppData\Local\Programs\Prestafind\Debitest\svcinetsec.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\19.086.0502.0006\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd -> Piriform Ltd) D:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(Slack Technologies, Inc. -> Slack Technologies) C:\Users\User\AppData\Local\slack\app-3.4.2\slack.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Tim Kosse -> FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
(Vadim Belov -> ) C:\Program Files\Advanced Time Synchronizer\svctimesync.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2019-03-09] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [FileZilla Server Interface] => C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe [2770088 2017-02-08] (Tim Kosse -> FileZilla Project)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [CCleaner Monitoring] => D:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [672384 2018-04-26] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKU\S-1-5-21-4204005812-2592597320-3612635721-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\User\AppData\Local\slack\Update.exe [1569296 2019-05-27] (Slack Technologies, Inc. -> )
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EB0031D-9A06-4432-AB7E-7BE8B3623CA3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-19] (Google Inc -> Google Inc.)
Task: {0F756F98-5FD5-44D8-A0CB-E7A71A6090E4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {2CBA0E6F-26A0-4AE4-85E5-D6B8F641D63E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2281944 2019-06-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {414777AE-4BA2-42DE-BC21-4A1DD9140D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {45903A2E-63FB-4A72-96BB-38C2D606B75E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-11] (Adobe Inc. -> Adobe)
Task: {66755CF8-3025-4688-819E-D1B9757E9114} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7A5CC73A-820A-43F2-8E73-5FADA31ECEC6} - System32\Tasks\ASCOM - Update Earth Rotation Data => C:\Program Files (x86)\ASCOM\Platform 6\Tools\EarthRotationUpdate.exe [22528 2018-06-25] (ASCOM) [Fichier non signé]
Task: {814DA056-A703-4937-946E-8315CDBF6DF9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {825F131E-698E-4371-86D7-598DB24C72C9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {939F56C5-DB1B-40E4-B61C-B2E3AFF10CFC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A706F735-8CAD-4DDE-A09B-A334787FBA38} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-19] (Google Inc -> Google Inc.)
Task: {B8B3BA33-B902-44D1-9B87-4A379A07D781} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC15573F-593A-40D5-A972-BBDEEF251A80} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_Plugin.exe [1457208 2019-06-11] (Adobe Inc. -> Adobe)
Task: {C4E8F8AA-0BC8-4E27-89F3-35706FDC4684} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [13619968 2018-04-12] (Piriform Ltd -> Piriform Ltd)
Task: {C9785397-9B3C-4BB7-B8D0-0F8157DFCDC3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC908B8D-82A5-4EAD-998D-E333A598E7C9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1693881-9F1F-4931-8250-A57452E5D733} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F1F44502-412E-457C-9649-C8DDA062C8BB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <==== ATTENTION (Restriction - ProxySettings)
ProxyEnable: [HKLM] => Proxy est activé.
ProxyEnable: [HKLM-x32] => Proxy est activé.
ProxyServer: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyServer: [HKLM-x32] => http=127.0.0.1:48080;https=127.0.0.1:48080
AutoConfigURL: [HKLM] => http=127.0.0.1:48080;https=127.0.0.1:48080
ProxyEnable: [.DEFAULT] => Proxy est activé.
ProxyEnable: [S-1-5-21-4204005812-2592597320-3612635721-1001] => Proxy est activé.
ProxyServer: [S-1-5-21-4204005812-2592597320-3612635721-1001] => http=127.0.0.1:48080;https=127.0.0.1:48080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6348ccd0-7f0f-4563-b339-d6f8698c5f31}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1http=127.0.0.1:48080;https=127.0.0.1:48080
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-4204005812-2592597320-3612635721-1001 -> hxxp://google.com/
FireFox:
========
FF DefaultProfile: cdzyv3nn.default-1546877844677
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\cdzyv3nn.default-1546877844677 [2019-06-15]
FF Homepage: Mozilla\Firefox\Profiles\cdzyv3nn.default-1546877844677 -> hxxps://www.google.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-04-19] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_207.dll [2019-06-11] (Adobe Inc. -> )
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [Pas de fichier]
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-06-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-24] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 advtimesync; C:\Program Files\Advanced Time Synchronizer\svctimesync.exe [818952 2018-06-04] (Vadim Belov -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
R2 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [859304 2017-02-08] (Tim Kosse -> FileZilla Project)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] (Canon Inc. -> )
R2 InternetSecurity; C:\Users\User\AppData\Local\Programs\Prestafind\Debitest\svcinetsec.exe [55808 2019-05-24] (Internet Security Corporation) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [75392 2018-04-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [75392 2018-04-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11446104 2019-04-24] (TeamViewer GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] (ASUSTeK Computer Inc. -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-06-09] (Malwarebytes Corporation -> Malwarebytes)
R3 netr7364; C:\WINDOWS\System32\drivers\netr7364.sys [721920 2018-09-15] (Microsoft Windows -> Ralink Technology, Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_8e4f37220e99138f\nvlddmkm.sys [17213824 2018-09-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [888064 2017-01-23] (Realtek Semiconductor Corp -> Realtek )
S3 sbig; C:\WINDOWS\SysWOW64\Drivers\sbig.sys [34496 2001-05-08] (SBIG) [Fichier non signé]
S3 sbigu64; C:\WINDOWS\System32\Drivers\sbigu64.sys [48128 2015-01-27] (Santa Barbara Instrument Gp Inc -> Santa Barbara Instrument Group (SBIG))
R3 stdriver; C:\WINDOWS\system32\DRIVERS\stdriverx64.sys [54664 2019-05-07] (NCH Software Pty Ltd -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [47616 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-06-15 13:46 - 2019-06-15 13:48 - 000000000 ____D C:\FRST
2019-06-15 12:28 - 2019-06-15 12:28 - 000000000 ___HD C:\OneDriveTemp
2019-06-09 21:33 - 2019-06-09 21:33 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-06-09 16:09 - 2019-06-09 17:25 - 000000000 ____D C:\Users\User\AppData\Roaming\ZHP
2019-06-09 16:09 - 2019-06-09 17:10 - 000000921 _____ C:\Users\User\Desktop\ZHPCleaner.lnk
2019-06-09 16:09 - 2019-06-09 16:09 - 000000000 ____D C:\Users\User\AppData\Local\ZHP
2019-06-09 15:24 - 2019-06-09 16:45 - 000000000 ____D C:\Users\User\AppData\Local\Google
2019-06-09 13:29 - 2019-06-09 16:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-06-09 13:08 - 2019-06-09 13:08 - 000001953 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\Users\User\AppData\Local\mbamtray
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\Users\User\AppData\Local\mbam
2019-06-09 13:08 - 2019-06-09 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-06-09 13:08 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-06-08 18:38 - 2019-06-08 18:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
2019-06-07 15:11 - 2019-06-09 15:24 - 000000000 ____D C:\ProgramData\Google
2019-06-05 13:48 - 2019-06-05 13:48 - 000001699 _____ C:\Users\User\Desktop\advtimesync.exe - Raccourci.lnk
2019-06-05 13:08 - 2019-06-05 13:47 - 000000000 ____D C:\Users\User\AppData\Roaming\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\ProgramData\Advanced Time Synchronizer
2019-06-05 13:06 - 2019-06-05 13:06 - 000000000 ____D C:\Program Files\Advanced Time Synchronizer
2019-06-03 18:07 - 2019-06-03 18:10 - 262382400 _____ C:\Users\User\Downloads\M13-Kizilian-L(1).fit
2019-05-31 10:29 - 2019-05-31 10:34 - 262382400 _____ C:\Users\User\Downloads\M13-Kizilian-L.fit
2019-05-28 22:59 - 2019-05-28 23:01 - 000000000 ____D C:\Users\User\AppData\Local\NINA
2019-05-28 22:59 - 2019-05-28 22:59 - 000001307 _____ C:\Users\Public\Desktop\N.I.N.A. - Nighttime Imaging 'N' Astronomy.lnk
2019-05-28 22:59 - 2019-05-28 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\N.I.N.A. - Nighttime Imaging 'N' Astronomy
2019-05-28 22:59 - 2019-05-28 22:59 - 000000000 ____D C:\Program Files\N.I.N.A. - Nighttime Imaging 'N' Astronomy
2019-05-27 12:39 - 2019-05-27 12:39 - 000000959 _____ C:\Users\User\Desktop\ds9.lnk
2019-05-27 12:38 - 2019-05-27 12:38 - 000000401 _____ C:\Users\User\Desktop\SAOImageDS9.lnk
2019-05-27 02:40 - 2019-05-27 02:40 - 000002657 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debitest.lnk
2019-05-27 02:40 - 2019-05-27 02:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Debitest
2019-05-27 02:38 - 2019-05-27 02:39 - 076531112 _____ () C:\Users\User\Downloads\debitest.exe
2019-05-27 02:07 - 2019-06-15 12:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Slack
2019-05-27 02:07 - 2019-06-02 01:35 - 000002243 _____ C:\Users\User\Desktop\Slack.lnk
2019-05-27 02:07 - 2019-05-27 02:07 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies
2019-05-27 02:07 - 2019-05-27 02:07 - 000000000 ____D C:\Users\User\AppData\Local\slack
2019-05-27 01:15 - 2019-05-27 01:15 - 011770506 _____ (Juan José Sanabria ) C:\Users\User\Downloads\XParallaxVIU_Setup_v1.2.4_win64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 026807808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 023438848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 020814848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 019022336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 007645384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 005498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002780000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 002708480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001699496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-25 11:42 - 2019-05-25 11:42 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001342608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-25 11:42 - 2019-05-25 11:42 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001253904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000758896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000586280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-25 11:42 - 2019-05-25 11:42 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-25 11:42 - 2019-05-25 11:42 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-05-25 11:42 - 2019-05-25 11:42 - 000090640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000080184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-25 11:42 - 2019-05-25 11:42 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-25 11:42 - 2019-05-25 11:42 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-25 11:42 - 2019-05-25 11:42 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-24 15:04 - 2019-05-24 15:05 - 044070488 _____ (PDFZilla.com ) C:\Users\User\Downloads\pdfzilla.exe
==================== Un mois (modifiés) ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2019-06-15 13:33 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-15 12:54 - 2018-06-13 22:21 - 000000000 ___RD C:\Users\User\OneDrive
2019-06-15 12:37 - 2018-05-19 10:55 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2019-06-15 12:28 - 2018-08-14 17:40 - 000000000 ___RD C:\Users\User\Desktop\Observatoire Sadr
2019-06-15 12:27 - 2018-05-19 10:57 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-14 23:42 - 2019-02-07 21:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-14 23:36 - 2018-05-19 12:18 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-06-14 15:55 - 2018-06-06 21:57 - 000000000 ____D C:\Users\User\Documents\SADRclock
2019-06-14 12:38 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-14 09:24 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-06-11 17:42 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-06-11 16:28 - 2018-05-29 18:59 - 000000000 ____D C:\Users\User\AppData\Local\Astrometrica
2019-06-11 12:31 - 2019-02-07 21:29 - 000004754 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-06-11 12:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-06-11 12:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-06-10 15:47 - 2018-06-06 13:08 - 000000000 ____D C:\ProgramData\TEMP
2019-06-10 11:20 - 2018-12-15 14:00 - 000002126 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2019-06-09 23:13 - 2018-05-19 11:56 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-06-09 21:46 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-06-09 21:37 - 2019-02-07 21:31 - 001771406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-06-09 21:37 - 2018-09-15 18:39 - 000791768 _____ C:\WINDOWS\system32\perfh00C.dat
2019-06-09 21:37 - 2018-09-15 18:39 - 000149836 _____ C:\WINDOWS\system32\perfc00C.dat
2019-06-09 21:33 - 2019-02-07 21:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-09 21:32 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-09 21:31 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-06-09 16:46 - 2018-05-31 01:52 - 000000000 ____D C:\Instal
2019-06-09 15:25 - 2018-05-19 14:42 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2019-06-09 15:24 - 2019-04-28 20:03 - 000000000 ____D C:\Program Files\Google
2019-06-09 15:07 - 2018-05-19 11:55 - 000000000 ____D C:\Program Files (x86)\Google
2019-06-09 13:12 - 2018-05-19 12:04 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-06-09 13:08 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-06-09 13:05 - 2018-05-19 11:56 - 000000000 ____D C:\Users\User\AppData\Roaming\TeamViewer
2019-06-09 07:55 - 2018-05-29 22:18 - 000000000 ____D C:\Users\User\AppData\Roaming\Stellarium
2019-06-08 18:38 - 2018-09-11 00:21 - 000002528 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002555 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002538 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002528 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-08 18:38 - 2018-05-30 11:19 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-08 18:37 - 2018-05-19 16:03 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-08 12:31 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-07 22:33 - 2019-02-07 21:29 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4204005812-2592597320-3612635721-1001
2019-06-07 22:33 - 2019-02-07 21:25 - 000002449 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-07 18:03 - 2018-06-06 15:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2019-06-07 15:12 - 2018-05-19 10:55 - 000000000 ____D C:\Users\User\AppData\Roaming\Adobe
2019-06-07 15:11 - 2018-06-06 21:56 - 000000000 ____D C:\ProgramData\Package Cache
2019-06-07 15:07 - 2019-01-23 13:31 - 000000000 ____D C:\Users\User\Documents\DxO PhotoLab 2 logs
2019-06-04 21:49 - 2018-05-19 10:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-06-03 20:02 - 2018-05-30 11:34 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2019-06-03 00:25 - 2018-06-08 22:31 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-06-02 16:50 - 2019-02-07 21:24 - 000342912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-28 15:22 - 2018-05-19 10:58 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder
2019-05-28 15:06 - 2018-05-19 11:57 - 000000000 ____D C:\Users\User\AppData\Local\PDFCreator
2019-05-27 02:07 - 2018-06-06 15:51 - 000000000 ____D C:\Users\User\AppData\Local\SquirrelTemp
2019-05-25 22:01 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-25 22:01 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-24 11:46 - 2018-05-19 11:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-24 11:43 - 2018-05-19 11:04 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-24 11:32 - 2019-02-07 21:29 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-24 11:32 - 2019-02-07 21:29 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-24 11:31 - 2018-07-18 22:44 - 000000000 ____D C:\ProgramData\Packages
==================== Fichiers à la racine de certains dossiers ================
2019-05-05 13:05 - 2019-03-26 11:19 - 000000014 _____ () C:\Users\User\AppData\Roaming\pdfdrawcodec.dll
2018-05-31 14:36 - 2018-06-02 14:10 - 000009360 _____ () C:\Users\User\AppData\Roaming\Valeurs séparées par une virgule.EML
2018-06-04 11:55 - 2019-01-08 14:24 - 000007643 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ============================