Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2021
Exécuté par Richard (administrateur) sur LAPTOP-BDC5L3GK (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X509JA_X509JA) (16-11-2021 09:11:45)
Exécuté depuis C:\Users\Richard\OneDrive\Downloads
Profils chargés: Richard
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkRemote\AsusLinkRemote.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\AsusAppService\AsusAppService.exe
(ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkNear\AsusLinkNear.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimizationStartupTask.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOSD.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_a5d3270da26fb113\ICEsoundService64.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxCUIServiceN.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxEMN.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_3d2488852c7b45a0\OneApp.IGCC.WinService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bc89636c592ed116\IntelCpHDCPSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_0c50c5dc47ed0efe\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_8dcb9e12bf961616\Intel_PIE_Service.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <35>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Richard\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21102.10421.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Richard\AppData\Roaming\ZHP\ZHPCleaner.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-11-24] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2542440 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [Google Update] => "C:\Users\Richard\AppData\Local\Google\Update\1.3.36.112\GoogleUpdateCore.exe" (Pas de fichier)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Richard\AppData\Local\Microsoft\Teams\Update.exe [2459280 2021-11-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [MicrosoftEdgeAutoLaunch_E6E0F87A7AA9D36D919DF1D4B38CE2F3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\...\Windows x64\Print Processors\LMFX1N4C: C:\Windows\System32\spool\prtprocs\x64\LMFX1N4C.DLL [291840 2019-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Windows x64\Print Processors\LMU04R4C: C:\Windows\System32\spool\prtprocs\x64\LMU04R4C.DLL [291840 2019-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Windows x64\Print Processors\LMUD1P4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1P4C.DLL [294400 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Fichier non signé]
HKLM\...\Print\Monitors\Lexmark Travel Print Port: C:\WINDOWS\system32\LMabtppm.dll [212992 2019-03-20] () [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-01] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C441842-8B1A-4A98-8039-5EC78BB95E7E} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1140456 2020-08-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {23F97D06-DA7D-465F-8EC8-44BBBB807881} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4037122652-3581806785-3690608711-1001UA => C:\Users\Richard\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {244F78B9-923C-47D0-B989-79865E85350F} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusHotkeyExec.exe [233624 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2D95B4D4-371A-469C-8198-BF1141F9CBB2} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2875032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {33D365BF-79FC-4F5B-9F62-917512B9EE2A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {3FE4FFAA-4246-4AB4-BD2C-758AB56F7EC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41886275-3AFE-454B-8B0E-EF01E611B9F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4456D3EA-2C81-4E9A-9090-EC8399DE2396} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {85A04812-1160-4684-B04A-5257F2DF2E85} - System32\Tasks\NCH Software\PhotoPadDowngrade => C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe [5793336 2020-12-11] (NCH Software, Inc. -> NCH Software)
Task: {980FDE83-E6F7-4943-BF97-9E46B70FA478} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A04C95D2-C8FB-4307-9B64-563B12940C55} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {A601091B-E24A-4148-BB0E-F0FBDB591902} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A6E2B014-8D4C-44F2-B18A-65CB0496AEE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {BE1A8E72-D24E-4C31-A470-73EAB8BD5CFB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4037122652-3581806785-3690608711-1001Core => C:\Users\Richard\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier)
Task: {C79F8395-102B-4F2E-BAD4-04A0A0ABEF53} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => C:\Program Files (x86)\PC HelpSoft Driver Updater\HDMTray.exe (Pas de fichier) <==== ATTENTION
Task: {CB6FE0C3-8698-4F73-9900-EEA3C551A5D2} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1600416 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3268BDD-6B1B-4A6E-96B4-0A1553CD02E0} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusUpdateChecker.exe [760464 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {D8CB736D-DD01-4FD3-B82C-22C828C9552D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4072312 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2CB206D-B6A1-4B6E-BA20-50842709441D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2DC5572-F119-469E-BC51-6E761B46D51A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E820F4EC-22FF-4CA7-A52F-4E6CCDA22900} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{2afd48d5-4d94-4997-a145-a686a79b95cd}: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{dadb41a5-9c3e-4760-ae5d-c597d9fee172}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Richard\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-16]
Edge Notifications: Default -> hxxps://business.facebook.com; hxxps://calendar.google.com; hxxps://itsthevibe.com; hxxps://mp4-youtu.be; hxxps://www.facebook.com; hxxps://www.mrbigandtall.ca
Edge HomePage: Default -> hxxps://ca.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87dpyqptgki1320egikmoq9ay001620¶m1=y6bdVFVIsvuYsgEClQfz8GNAvS%2FuW585f43SFov1egEnLPxpPTiE%2FbXt5%2BAHq6dYLGseultvB3z9sUgouv3usmfJuVtdPHMo%2BJhcPMoiBakRCrLMXzBBmn9aZFiQrqdEw6vK2lCDT%2BXJy8px%2BHN%2FS%2FwVwpVmct33Csp1ff5sTzDI9Gkr2QA4mxT9NqnRg%2BSP4NiLC%2BUFYzyLG9TSuSR9v8vytLk6Lf18ax09454rGEXU2vBiX7t16GFj9agppPVc0i1gQmwVEBT%2Bg9MSkjBNxoswd%2FHXALTYjUw6dFKLDLmmMWz8JCq3G0VH7FX4nkvJAwchu1ul%2BWZipL7sJQWjHzMOFgNrHxzELSgRENhBSlmQ5j7jO7jWa6sAEgry7GqwU0yWQhQodzwTL7Gb40cbX7VdbXx6GdaO%2BH%2F4Cn%2BO3FM%3D
Edge StartupUrls: Default -> "hxxps://ca.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87dpyqptgki1320egikmoq9ay001620¶m1=y6bdVFVIsvuYsgEClQfz8GNAvS%2FuW585f43SFov1egEnLPxpPTiE%2FbXt5%2BAHq6dYLGseultvB3z9sUgouv3usmfJuVtdPHMo%2BJhcPMoiBaneHFlBnO%2BBo%2Baz9XtaloHcbh6oEZqdB2xp2p2amzEqC56MXrhjKL1cqBhXKx56MU3A8cWlKZ3I%2B%2BMa7akxzroYfeQtQPAFgNpcdxdnZhQTyAPwAvherHfJw92D9YkHBtTm3WesrFAtZ2LHrWuBqA8c0UUHCBM83Jm%2FJ7AWVUv4wwyuMDYcZUFhXrSPnQsElPPsU1aPHGunDVYu1hoT1l8WzL4Zj%2B8cYq5U3cBkh6uvv9gr4okHIQgXxcyhOb7ETduIXicZsrL%2BpC4YoIzNCBAnu%2BIJPAAnPSK9IaZAn419Bg%3D%3D"
Edge Extension: (Web Apps by 123apps) - C:\Users\Richard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bddjlgmebjbajnhgmhedjklehehfoimn [2021-10-20]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-07-31] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default [2021-11-16]
CHR HomePage: Default -> hxxp://www.igoogle.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://ca.search.yahoo.com/search?fr=mcafee&type=E210CA885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://ca.search.yahoo.com/sugg/gossip/gossip-ca-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Slides) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-03]
CHR Extension: (Docs) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-03]
CHR Extension: (Moonlit Reflection) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apakhamomlpjegjclmgimiapigoeoglb [2020-09-04]
CHR Extension: (Google Drive) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-26]
CHR Extension: (Microsoft Rewards) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2021-08-06]
CHR Extension: (Sheets) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-03]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-11-01]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2020-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-14]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-11-11]
CHR Extension: (Color Enhancer) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkjmjaledkapilfdigkgfmpekpfnkih [2020-09-04]
CHR Extension: (Zoom Scheduler) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-08]
CHR Extension: (Facebook Screen Sharing) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2020-09-04]
CHR Extension: (Office) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-04-19]
CHR Extension: (Extension Abonnement RSS (par Google)) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2020-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-28]
CHR Extension: (Gmail) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\AsusAppService\AsusAppService.exe [864384 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkNear\AsusLinkNear.exe [1318032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkRemote\AsusLinkRemote.exe [757904 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimization.exe [331416 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManager.exe [1014928 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2875032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [628144 2021-10-24] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncHelper.exe [3279232 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [Fichier non signé]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-11-09] (McAfee, LLC -> McAfee, LLC)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.220.1024.0005\OneDriveUpdaterService.exe [3736424 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13341480 2021-11-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112848 2020-09-27] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\ASUSSAIO.sys [35984 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\atkwmiacpi64.sys [44208 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 MpKsl6976e646; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A4583143-B757-44EC-9985-5959E17E33B2}\MpKslDrv.sys [130296 2021-11-16] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-16 09:11 - 2021-11-16 09:11 - 000000000 ____D C:\FRST
2021-11-12 07:47 - 2021-11-12 07:47 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-12 07:40 - 2021-11-12 07:40 - 000000000 ___HD C:\$WinREAgent
2021-11-11 17:43 - 2021-11-15 08:40 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Vidmore
2021-11-11 17:35 - 2021-11-11 17:40 - 000000000 ____D C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2021-11-11 17:35 - 2021-11-11 17:40 - 000000000 ____D C:\Users\Richard\AppData\Roaming\AVS4YOU
2021-11-11 17:35 - 2021-11-11 17:35 - 000000000 ____D C:\ProgramData\AVS4YOU
2021-11-11 17:34 - 2021-11-11 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2021-11-11 17:34 - 2021-11-11 17:40 - 000000000 ____D C:\Program Files (x86)\AVS4YOU
2021-11-11 17:34 - 2010-05-11 13:17 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2021-11-10 16:23 - 2021-11-10 16:31 - 000000151 _____ C:\WINDOWS\restoro.ini
2021-11-10 16:22 - 2021-11-10 16:22 - 003290776 _____ (Nicolas Coolman) C:\Users\Richard\ZHPCleaner.exe
2021-11-08 23:02 - 2021-11-08 23:02 - 000002063 _____ C:\Users\Public\Desktop\Vidmore Screen Recorder.lnk
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\Users\Richard\AppData\Local\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\ProgramData\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\Program Files\Vidmore
2021-11-06 04:49 - 2021-08-06 01:07 - 001870392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001870392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001450040 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001450040 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001115688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 001115688 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000969256 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000969256 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000459104 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000376160 _____ C:\WINDOWS\system32\ze_loader.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000309696 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000257096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000173112 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000148400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000148304 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 026737472 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 013530432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 000507712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 000370496 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-11-06 04:49 - 2021-08-06 01:05 - 000392024 _____ C:\WINDOWS\system32\ControlLib.dll
2021-11-01 15:33 - 2021-11-01 15:33 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-01 15:33 - 2021-11-01 15:33 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-27 09:30 - 2021-10-27 09:30 - 000040317 _____ C:\Users\Richard\OneDrive\Documents\Pour ajout à Céline avis!.pptx
2021-10-26 13:08 - 2021-11-16 09:02 - 000000000 ____D C:\Users\Richard\AppData\Roaming\ZHP
2021-10-26 13:08 - 2021-10-31 03:03 - 000000000 ____D C:\Users\Richard\AppData\Local\ZHP
2021-10-21 09:20 - 2021-10-21 09:20 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Users\Richard\AppData\Local\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\ProgramData\Apple
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Program Files\Bonjour
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-10-21 09:18 - 2021-10-21 09:18 - 000000000 ____D C:\Program Files\Aiseesoft Studio
2021-10-20 14:33 - 2021-10-20 14:33 - 000000000 ____D C:\Users\Richard\AppData\Local\FreemakeVideoConverter
2021-10-20 14:32 - 2021-10-20 14:38 - 000000000 ____D C:\Program Files (x86)\Freemake
2021-10-20 14:32 - 2021-10-20 14:33 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Freemake
2021-10-20 14:32 - 2021-10-20 14:33 - 000000000 ____D C:\ProgramData\Freemake
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-16 08:56 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-16 08:36 - 2021-04-09 05:35 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Fichiers Outlook
2021-11-16 08:25 - 2021-04-11 08:24 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-11-16 08:23 - 2020-09-03 18:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-16 08:18 - 2021-04-11 08:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-16 06:12 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-16 06:12 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-16 05:35 - 2021-04-11 08:29 - 001678018 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-16 05:35 - 2019-12-07 09:49 - 000754666 _____ C:\WINDOWS\system32\perfh00C.dat
2021-11-16 05:35 - 2019-12-07 09:49 - 000140328 _____ C:\WINDOWS\system32\perfc00C.dat
2021-11-16 05:35 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-16 05:28 - 2020-09-03 13:46 - 000000000 ___RD C:\Users\Richard\OneDrive
2021-11-16 05:27 - 2021-04-11 08:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-16 05:27 - 2021-04-11 08:20 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-16 05:27 - 2020-09-04 11:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-11-16 05:27 - 2020-09-03 13:44 - 000000000 __SHD C:\Users\Richard\IntelGraphicsProfiles
2021-11-16 05:27 - 2020-08-08 20:02 - 000000000 ___HD C:\Intel
2021-11-16 05:27 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-11-16 05:27 - 2019-12-07 04:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-15 12:56 - 2020-09-03 13:44 - 000000000 ____D C:\Users\Richard\AppData\Local\VirtualStore
2021-11-15 05:34 - 2021-04-11 07:02 - 000000000 ____D C:\Users\Richard
2021-11-14 05:34 - 2020-10-08 23:28 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-14 05:17 - 2020-09-03 19:32 - 000000000 ____D C:\Users\Richard\AppData\Local\D3DSCache
2021-11-12 17:51 - 2021-04-11 08:20 - 000443248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-12 17:51 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-12 16:57 - 2019-10-18 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-11-12 07:50 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-12 07:38 - 2020-09-03 13:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-12 07:36 - 2020-09-03 13:55 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-12 05:01 - 2021-06-04 08:37 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-11-12 05:01 - 2019-12-07 04:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-11-11 17:34 - 2020-10-03 19:14 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-11 09:53 - 2020-09-03 19:13 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Enregistrements audio
2021-11-11 07:32 - 2020-09-03 21:33 - 000000000 ____D C:\Users\Richard\AppData\Local\CrashDumps
2021-11-10 07:30 - 2020-09-03 13:39 - 000000000 ____D C:\ProgramData\Packages
2021-11-09 09:25 - 2021-04-11 08:24 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-11-09 09:25 - 2020-10-17 06:52 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-05 15:15 - 2021-02-10 18:33 - 000002380 _____ C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-11-03 16:44 - 2021-01-21 10:06 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Zoom
2021-11-03 06:36 - 2019-10-18 12:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-11-02 06:57 - 2021-04-11 08:24 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2021-11-02 06:57 - 2021-04-11 08:24 - 000003764 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2021-11-01 20:59 - 2021-08-18 00:24 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-30 09:06 - 2020-10-03 19:36 - 000000000 ____D C:\Users\Richard\AppData\Local\ElevatedDiagnostics
2021-10-28 09:52 - 2020-09-03 13:44 - 000000000 ____D C:\Users\Richard\AppData\Local\Packages
2021-10-26 13:20 - 2020-09-03 18:10 - 000000000 ____D C:\Users\Richard\AppData\Local\Google
2021-10-23 12:17 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-22 10:27 - 2020-10-22 17:47 - 000000000 ____D C:\ProgramData\NCH Software
2021-10-22 10:27 - 2020-10-22 17:47 - 000000000 ____D C:\Program Files (x86)\NCH Software
==================== Fichiers à la racine de certains dossiers ========
2021-11-10 16:22 - 2021-11-10 16:22 - 003290776 _____ (Nicolas Coolman) C:\Users\Richard\ZHPCleaner.exe
2021-01-31 00:13 - 2021-01-31 00:13 - 000003584 _____ () C:\Users\Richard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-09-03 20:54 - 2020-09-03 20:54 - 000007620 _____ () C:\Users\Richard\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Richard (administrateur) sur LAPTOP-BDC5L3GK (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X509JA_X509JA) (16-11-2021 09:11:45)
Exécuté depuis C:\Users\Richard\OneDrive\Downloads
Profils chargés: Richard
Plate-forme: Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkRemote\AsusLinkRemote.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\AsusAppService\AsusAppService.exe
(ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkNear\AsusLinkNear.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimization.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimizationStartupTask.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOSD.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_a5d3270da26fb113\ICEsoundService64.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxCUIServiceN.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_23e9be9389950d33\igfxEMN.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_3d2488852c7b45a0\OneApp.IGCC.WinService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_bc89636c592ed116\IntelCpHDCPSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_0c50c5dc47ed0efe\RstMwService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_8dcb9e12bf961616\Intel_PIE_Service.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <35>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Richard\AppData\Local\Microsoft\Teams\current\Teams.exe <9>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21102.10421.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Richard\AppData\Roaming\ZHP\ZHPCleaner.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1667208 2020-11-24] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe /background /setautostart (Pas de fichier)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2542440 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [Google Update] => "C:\Users\Richard\AppData\Local\Google\Update\1.3.36.112\GoogleUpdateCore.exe" (Pas de fichier)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Richard\AppData\Local\Microsoft\Teams\Update.exe [2459280 2021-11-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-4037122652-3581806785-3690608711-1001\...\Run: [MicrosoftEdgeAutoLaunch_E6E0F87A7AA9D36D919DF1D4B38CE2F3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\...\Windows x64\Print Processors\LMFX1N4C: C:\Windows\System32\spool\prtprocs\x64\LMFX1N4C.DLL [291840 2019-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Windows x64\Print Processors\LMU04R4C: C:\Windows\System32\spool\prtprocs\x64\LMU04R4C.DLL [291840 2019-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Windows x64\Print Processors\LMUD1P4C: C:\Windows\System32\spool\prtprocs\x64\LMUD1P4C.DLL [294400 2020-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Lexmark International Inc.)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Fichier non signé]
HKLM\...\Print\Monitors\Lexmark Travel Print Port: C:\WINDOWS\system32\LMabtppm.dll [212992 2019-03-20] () [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-01] (Google LLC -> Google LLC)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C441842-8B1A-4A98-8039-5EC78BB95E7E} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1140456 2020-08-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {23F97D06-DA7D-465F-8EC8-44BBBB807881} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4037122652-3581806785-3690608711-1001UA => C:\Users\Richard\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Pas de fichier)
Task: {244F78B9-923C-47D0-B989-79865E85350F} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusHotkeyExec.exe [233624 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {2D95B4D4-371A-469C-8198-BF1141F9CBB2} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2875032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {33D365BF-79FC-4F5B-9F62-917512B9EE2A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {3FE4FFAA-4246-4AB4-BD2C-758AB56F7EC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41886275-3AFE-454B-8B0E-EF01E611B9F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4456D3EA-2C81-4E9A-9090-EC8399DE2396} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {85A04812-1160-4684-B04A-5257F2DF2E85} - System32\Tasks\NCH Software\PhotoPadDowngrade => C:\Program Files (x86)\NCH Software\PhotoPad\photopad.exe [5793336 2020-12-11] (NCH Software, Inc. -> NCH Software)
Task: {980FDE83-E6F7-4943-BF97-9E46B70FA478} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A04C95D2-C8FB-4307-9B64-563B12940C55} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {A601091B-E24A-4148-BB0E-F0FBDB591902} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A6E2B014-8D4C-44F2-B18A-65CB0496AEE3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-08-18] (Google LLC -> Google LLC)
Task: {BE1A8E72-D24E-4C31-A470-73EAB8BD5CFB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4037122652-3581806785-3690608711-1001Core => C:\Users\Richard\AppData\Local\Google\Update\GoogleUpdate.exe /c (Pas de fichier)
Task: {C79F8395-102B-4F2E-BAD4-04A0A0ABEF53} - System32\Tasks\PC HelpSoft Driver Updater automatic scan and new device notifications => C:\Program Files (x86)\PC HelpSoft Driver Updater\HDMTray.exe (Pas de fichier) <==== ATTENTION
Task: {CB6FE0C3-8698-4F73-9900-EEA3C551A5D2} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1600416 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3268BDD-6B1B-4A6E-96B4-0A1553CD02E0} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusUpdateChecker.exe [760464 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {D8CB736D-DD01-4FD3-B82C-22C828C9552D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4072312 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2CB206D-B6A1-4B6E-BA20-50842709441D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {E2DC5572-F119-469E-BC51-6E761B46D51A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E820F4EC-22FF-4CA7-A52F-4E6CCDA22900} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{2afd48d5-4d94-4997-a145-a686a79b95cd}: [DhcpNameServer] 24.200.241.37 24.202.72.13 24.200.0.1
Tcpip\..\Interfaces\{dadb41a5-9c3e-4760-ae5d-c597d9fee172}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Richard\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-16]
Edge Notifications: Default -> hxxps://business.facebook.com; hxxps://calendar.google.com; hxxps://itsthevibe.com; hxxps://mp4-youtu.be; hxxps://www.facebook.com; hxxps://www.mrbigandtall.ca
Edge HomePage: Default -> hxxps://ca.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87dpyqptgki1320egikmoq9ay001620¶m1=y6bdVFVIsvuYsgEClQfz8GNAvS%2FuW585f43SFov1egEnLPxpPTiE%2FbXt5%2BAHq6dYLGseultvB3z9sUgouv3usmfJuVtdPHMo%2BJhcPMoiBakRCrLMXzBBmn9aZFiQrqdEw6vK2lCDT%2BXJy8px%2BHN%2FS%2FwVwpVmct33Csp1ff5sTzDI9Gkr2QA4mxT9NqnRg%2BSP4NiLC%2BUFYzyLG9TSuSR9v8vytLk6Lf18ax09454rGEXU2vBiX7t16GFj9agppPVc0i1gQmwVEBT%2Bg9MSkjBNxoswd%2FHXALTYjUw6dFKLDLmmMWz8JCq3G0VH7FX4nkvJAwchu1ul%2BWZipL7sJQWjHzMOFgNrHxzELSgRENhBSlmQ5j7jO7jWa6sAEgry7GqwU0yWQhQodzwTL7Gb40cbX7VdbXx6GdaO%2BH%2F4Cn%2BO3FM%3D
Edge StartupUrls: Default -> "hxxps://ca.search.yahoo.com/yhs/web?hspart=omr&hsimp=yhs-001&type=87dpyqptgki1320egikmoq9ay001620¶m1=y6bdVFVIsvuYsgEClQfz8GNAvS%2FuW585f43SFov1egEnLPxpPTiE%2FbXt5%2BAHq6dYLGseultvB3z9sUgouv3usmfJuVtdPHMo%2BJhcPMoiBaneHFlBnO%2BBo%2Baz9XtaloHcbh6oEZqdB2xp2p2amzEqC56MXrhjKL1cqBhXKx56MU3A8cWlKZ3I%2B%2BMa7akxzroYfeQtQPAFgNpcdxdnZhQTyAPwAvherHfJw92D9YkHBtTm3WesrFAtZ2LHrWuBqA8c0UUHCBM83Jm%2FJ7AWVUv4wwyuMDYcZUFhXrSPnQsElPPsU1aPHGunDVYu1hoT1l8WzL4Zj%2B8cYq5U3cBkh6uvv9gr4okHIQgXxcyhOb7ETduIXicZsrL%2BpC4YoIzNCBAnu%2BIJPAAnPSK9IaZAn419Bg%3D%3D"
Edge Extension: (Web Apps by 123apps) - C:\Users\Richard\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bddjlgmebjbajnhgmhedjklehehfoimn [2021-10-20]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-07-31] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default [2021-11-16]
CHR HomePage: Default -> hxxp://www.igoogle.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://ca.search.yahoo.com/search?fr=mcafee&type=E210CA885G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://ca.search.yahoo.com/sugg/gossip/gossip-ca-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Slides) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-03]
CHR Extension: (Docs) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-03]
CHR Extension: (Moonlit Reflection) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apakhamomlpjegjclmgimiapigoeoglb [2020-09-04]
CHR Extension: (Google Drive) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-26]
CHR Extension: (Microsoft Rewards) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbgcedjacmlbgleddnoacbnijgmiolem [2021-08-06]
CHR Extension: (Sheets) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-03]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-11-01]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2020-09-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-14]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-12]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-11-11]
CHR Extension: (Color Enhancer) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkjmjaledkapilfdigkgfmpekpfnkih [2020-09-04]
CHR Extension: (Zoom Scheduler) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgjfgplpablkjnlkjmjdecgdpfankdle [2021-11-08]
CHR Extension: (Facebook Screen Sharing) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2020-09-04]
CHR Extension: (Office) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2021-04-19]
CHR Extension: (Extension Abonnement RSS (par Google)) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2020-09-04]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-28]
CHR Extension: (Gmail) - C:\Users\Richard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\AsusAppService\AsusAppService.exe [864384 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkNear\AsusLinkNear.exe [1318032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSLinkRemote\AsusLinkRemote.exe [757904 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\AsusOptimization.exe [331416 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSoftwareManager\AsusSoftwareManager.exe [1014928 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\AsusSystemAnalysis.exe [2875032 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [628144 2021-10-24] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.220.1024.0005\FileSyncHelper.exe [3279232 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [Fichier non signé]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-11-09] (McAfee, LLC -> McAfee, LLC)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.220.1024.0005\OneDriveUpdaterService.exe [3736424 2021-11-09] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13341480 2021-11-05] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112848 2020-09-27] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R3 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSSystemAnalysis\ASUSSAIO.sys [35984 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_0bc4d1cbbe22f0db\ASUSOptimization\atkwmiacpi64.sys [44208 2021-10-24] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 MpKsl6976e646; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A4583143-B757-44EC-9985-5959E17E33B2}\MpKslDrv.sys [130296 2021-11-16] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-03] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-16 09:11 - 2021-11-16 09:11 - 000000000 ____D C:\FRST
2021-11-12 07:47 - 2021-11-12 07:47 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-12 07:47 - 2021-11-12 07:47 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-12 07:40 - 2021-11-12 07:40 - 000000000 ___HD C:\$WinREAgent
2021-11-11 17:43 - 2021-11-15 08:40 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Vidmore
2021-11-11 17:35 - 2021-11-11 17:40 - 000000000 ____D C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2021-11-11 17:35 - 2021-11-11 17:40 - 000000000 ____D C:\Users\Richard\AppData\Roaming\AVS4YOU
2021-11-11 17:35 - 2021-11-11 17:35 - 000000000 ____D C:\ProgramData\AVS4YOU
2021-11-11 17:34 - 2021-11-11 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2021-11-11 17:34 - 2021-11-11 17:40 - 000000000 ____D C:\Program Files (x86)\AVS4YOU
2021-11-11 17:34 - 2010-05-11 13:17 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2021-11-10 16:23 - 2021-11-10 16:31 - 000000151 _____ C:\WINDOWS\restoro.ini
2021-11-10 16:22 - 2021-11-10 16:22 - 003290776 _____ (Nicolas Coolman) C:\Users\Richard\ZHPCleaner.exe
2021-11-08 23:02 - 2021-11-08 23:02 - 000002063 _____ C:\Users\Public\Desktop\Vidmore Screen Recorder.lnk
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\Users\Richard\AppData\Local\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\ProgramData\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vidmore
2021-11-08 23:02 - 2021-11-08 23:02 - 000000000 ____D C:\Program Files\Vidmore
2021-11-06 04:49 - 2021-08-06 01:07 - 001870392 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001870392 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001450040 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001450040 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-11-06 04:49 - 2021-08-06 01:07 - 001115688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 001115688 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000969256 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000969256 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000459104 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000376160 _____ C:\WINDOWS\system32\ze_loader.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000309696 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000257096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000173112 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000148400 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2021-11-06 04:49 - 2021-08-06 01:07 - 000148304 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 026737472 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 013530432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 000507712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-11-06 04:49 - 2021-08-06 01:06 - 000370496 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-11-06 04:49 - 2021-08-06 01:05 - 000392024 _____ C:\WINDOWS\system32\ControlLib.dll
2021-11-01 15:33 - 2021-11-01 15:33 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-01 15:33 - 2021-11-01 15:33 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-27 09:30 - 2021-10-27 09:30 - 000040317 _____ C:\Users\Richard\OneDrive\Documents\Pour ajout à Céline avis!.pptx
2021-10-26 13:08 - 2021-11-16 09:02 - 000000000 ____D C:\Users\Richard\AppData\Roaming\ZHP
2021-10-26 13:08 - 2021-10-31 03:03 - 000000000 ____D C:\Users\Richard\AppData\Local\ZHP
2021-10-21 09:20 - 2021-10-21 09:20 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Users\Richard\AppData\Local\Aiseesoft Studio
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\ProgramData\Apple
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Program Files\Bonjour
2021-10-21 09:19 - 2021-10-21 09:19 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-10-21 09:18 - 2021-10-21 09:18 - 000000000 ____D C:\Program Files\Aiseesoft Studio
2021-10-20 14:33 - 2021-10-20 14:33 - 000000000 ____D C:\Users\Richard\AppData\Local\FreemakeVideoConverter
2021-10-20 14:32 - 2021-10-20 14:38 - 000000000 ____D C:\Program Files (x86)\Freemake
2021-10-20 14:32 - 2021-10-20 14:33 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Freemake
2021-10-20 14:32 - 2021-10-20 14:33 - 000000000 ____D C:\ProgramData\Freemake
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-11-16 08:56 - 2019-12-07 04:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-11-16 08:36 - 2021-04-09 05:35 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Fichiers Outlook
2021-11-16 08:25 - 2021-04-11 08:24 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2021-11-16 08:23 - 2020-09-03 18:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-16 08:18 - 2021-04-11 08:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-11-16 06:12 - 2019-12-07 04:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-11-16 06:12 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-16 05:35 - 2021-04-11 08:29 - 001678018 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-11-16 05:35 - 2019-12-07 09:49 - 000754666 _____ C:\WINDOWS\system32\perfh00C.dat
2021-11-16 05:35 - 2019-12-07 09:49 - 000140328 _____ C:\WINDOWS\system32\perfc00C.dat
2021-11-16 05:35 - 2019-12-07 04:13 - 000000000 ____D C:\WINDOWS\INF
2021-11-16 05:28 - 2020-09-03 13:46 - 000000000 ___RD C:\Users\Richard\OneDrive
2021-11-16 05:27 - 2021-04-11 08:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-16 05:27 - 2021-04-11 08:20 - 000008192 ___SH C:\DumpStack.log.tmp
2021-11-16 05:27 - 2020-09-04 11:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-11-16 05:27 - 2020-09-03 13:44 - 000000000 __SHD C:\Users\Richard\IntelGraphicsProfiles
2021-11-16 05:27 - 2020-08-08 20:02 - 000000000 ___HD C:\Intel
2021-11-16 05:27 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-11-16 05:27 - 2019-12-07 04:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-11-15 12:56 - 2020-09-03 13:44 - 000000000 ____D C:\Users\Richard\AppData\Local\VirtualStore
2021-11-15 05:34 - 2021-04-11 07:02 - 000000000 ____D C:\Users\Richard
2021-11-14 05:34 - 2020-10-08 23:28 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-14 05:17 - 2020-09-03 19:32 - 000000000 ____D C:\Users\Richard\AppData\Local\D3DSCache
2021-11-12 17:51 - 2021-04-11 08:20 - 000443248 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-12 17:51 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-12 17:51 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-12 16:57 - 2019-10-18 12:28 - 000000000 ____D C:\Program Files\Microsoft Office
2021-11-12 07:50 - 2019-12-07 04:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-12 07:38 - 2020-09-03 13:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-12 07:36 - 2020-09-03 13:55 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-12 05:01 - 2021-06-04 08:37 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-11-12 05:01 - 2019-12-07 04:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-11-11 17:34 - 2020-10-03 19:14 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-11 09:53 - 2020-09-03 19:13 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Enregistrements audio
2021-11-11 07:32 - 2020-09-03 21:33 - 000000000 ____D C:\Users\Richard\AppData\Local\CrashDumps
2021-11-10 07:30 - 2020-09-03 13:39 - 000000000 ____D C:\ProgramData\Packages
2021-11-09 09:25 - 2021-04-11 08:24 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-11-09 09:25 - 2020-10-17 06:52 - 000002134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-05 15:15 - 2021-02-10 18:33 - 000002380 _____ C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-11-03 16:44 - 2021-01-21 10:06 - 000000000 ____D C:\Users\Richard\OneDrive\Documents\Zoom
2021-11-03 06:36 - 2019-10-18 12:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-11-02 06:57 - 2021-04-11 08:24 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2021-11-02 06:57 - 2021-04-11 08:24 - 000003764 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2021-11-01 20:59 - 2021-08-18 00:24 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-30 09:06 - 2020-10-03 19:36 - 000000000 ____D C:\Users\Richard\AppData\Local\ElevatedDiagnostics
2021-10-28 09:52 - 2020-09-03 13:44 - 000000000 ____D C:\Users\Richard\AppData\Local\Packages
2021-10-26 13:20 - 2020-09-03 18:10 - 000000000 ____D C:\Users\Richard\AppData\Local\Google
2021-10-23 12:17 - 2019-12-07 04:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-22 10:27 - 2020-10-22 17:47 - 000000000 ____D C:\ProgramData\NCH Software
2021-10-22 10:27 - 2020-10-22 17:47 - 000000000 ____D C:\Program Files (x86)\NCH Software
==================== Fichiers à la racine de certains dossiers ========
2021-11-10 16:22 - 2021-11-10 16:22 - 003290776 _____ (Nicolas Coolman) C:\Users\Richard\ZHPCleaner.exe
2021-01-31 00:13 - 2021-01-31 00:13 - 000003584 _____ () C:\Users\Richard\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-09-03 20:54 - 2020-09-03 20:54 - 000007620 _____ () C:\Users\Richard\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================