Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2022
Exécuté par sylvi (administrateur) sur LAPTOP-OV5AN24R (LENOVO 81LY) (03-04-2022 17:45:56)
Exécuté depuis C:\Users\sylvi\Desktop
Profils chargés: sylvi
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\module\10011\8.2.1148\8.2.1148\TmsaInstance64.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
(C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
(C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(explorer.exe ->) (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\sylvi\AppData\Roaming\ZHP\ZHPSuite.exe
(explorer.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.32012.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21102.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe [1219312 2020-12-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [206960 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1224872 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\sylvi\AppData\Local\Microsoft\Teams\Update.exe [2492128 2022-04-01] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3420976 2021-12-17] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [] => [X]
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2013-01-24] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON XP-212 213 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLHE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-215 217 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLGE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\99.0.4844.84\Installer\chrmstp.exe [2022-03-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2019-06-02]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C791263-3697-49DB-B193-B4C4164A0013} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {1CD18557-60EA-4C2F-80B9-65A2E8ACA12F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8307120 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {2042F599-5BED-4720-BFD8-354B88D6FD9A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2296088 2022-03-07] (Avast Software s.r.o. -> Avast Software)
Task: {3143EBAD-DEB0-4056-AA08-DCE87C210C94} - System32\Tasks\easyxplore_run => C:\Users\sylvi\AppData\Local\Programs\easyxplore\EasyXplore.exe /start:reboot (Pas de fichier) <==== ATTENTION
Task: {372AA2F9-DE7C-4E98-9F16-D7E9E2A1C17A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {38CC5D42-ED0C-4D2D-8AD3-A28E6261133A} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier <==== ATTENTION
Task: {3C53885C-2D72-44F5-9F2A-1C4FD6DBDFC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {499A3F3E-900D-4A46-8D61-6A2BA1E7DD30} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-23] (Google LLC -> Google LLC)
Task: {4B89CB24-D52C-41A9-83B6-E84C3E74BC24} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BBEB44A-9B38-4F20-8F8B-3A88D6B1373F} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4E18729D-2196-4706-BF1B-FBEF7CA41733} - \Lenovo\ImController\TimeBasedEvents\0b83dad6-2450-4778-85c3-a499f5368f45 -> Pas de fichier <==== ATTENTION
Task: {4EEC8646-2043-4B97-8557-38159CC2A408} - \Lenovo\ImController\TimeBasedEvents\fcf30e2a-6ec5-498d-85b3-b907e5a21390 -> Pas de fichier <==== ATTENTION
Task: {54517D71-F313-4C31-AE78-6665425EECFA} - System32\Tasks\EPSON XP-215 217 Series Invitation {CB9FD393-1E23-45F9-8610-EE8C2FFD514E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {59CE155B-FE78-4650-BCA0-C80FF4337026} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8307120 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B43EBCB-7EF0-427C-A79B-89C61660EC35} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-23] (Google LLC -> Google LLC)
Task: {75637C0B-E130-4BF9-B710-CEC973CF8A50} - \Lenovo\ImController\TimeBasedEvents\b6185395-4f6c-4d60-98fa-905862e0a558 -> Pas de fichier <==== ATTENTION
Task: {851A3904-FBC0-40B5-BB3F-F90578D289BC} - \Lenovo\ImController\TimeBasedEvents\74c9af6a-7f81-466a-a482-fb4773910ac4 -> Pas de fichier <==== ATTENTION
Task: {8B0E9233-304E-48AF-9A42-BE052701D5F3} - System32\Tasks\easyxplore_chk => C:\Users\sylvi\AppData\Local\Programs\easyxplore\EasyXplore.exe /chk (Pas de fichier) <==== ATTENTION
Task: {8B412F44-DE56-4CC3-A04F-35F92AF44E02} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {92FC41CD-491C-4615-8FCB-522C69823B70} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {9C582F96-3092-4A9A-A6BF-02B1976583E3} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {A05F78E9-758F-4442-8C49-5EF5C7895B66} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {A5D3CFFB-5C79-4420-B4FF-387AF8A1B926} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2243747006-2349010438-1343202584-1001Core => C:\Users\sylvi\AppData\Local\easyxplore\Update\easyxploreUpdate.exe /c (Pas de fichier) <==== ATTENTION
Task: {B69E0F9E-68D1-4EF4-8AE7-72F579F2B1EA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {BE62181D-0CE3-40F7-9B04-EE392882ABE1} - System32\Tasks\EPSON XP-215 217 Series Update {CB9FD393-1E23-45F9-8610-EE8C2FFD514E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {BF8CF54F-B54B-4996-9C1F-D38D8A1D4459} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C2ACAFB6-A83B-4A64-B02F-FC1D978B39AC} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (Pas de fichier)
Task: {C7A10260-D802-473C-BC00-CD7E29B38CE2} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {DB186F03-1B7F-4C70-B43E-8FB92BD008CA} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2243747006-2349010438-1343202584-1001UA => C:\Users\sylvi\AppData\Local\easyxplore\Update\easyxploreUpdate.exe /ua /installsource scheduler (Pas de fichier) <==== ATTENTION
Task: {DEF8AA41-6803-41E1-853D-6CD2D89E720D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E0607466-3959-404C-91AB-E19EB2B795EB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6205A60-EDF3-492D-B81F-7FFD47FE6210} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier <==== ATTENTION
Task: {F88F223C-E1D3-4C96-A0D0-18609C291B1D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAC21EDD-9CF2-4AB0-ADF0-B43E6C4ADA88} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FB86FA63-AB56-4170-850A-7EE315A2EAE5} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {CB9FD393-1E23-45F9-8610-EE8C2FFD514E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {CB9FD393-1E23-45F9-8610-EE8C2FFD514E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{CB9FD393-1E23-45F9-8610-EE8C2FFD514E} /F:UpdateWORKGROUP\LAPTOP-OV5AN24R$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6edd4e93-ac59-443c-b979-99782c51d4f8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ac69ccb0-6ec5-4701-a4d7-f64231166a0b}: [DhcpNameServer] 150.209.1.2
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-03-29]
Edge Extension: (Avira Password Manager) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-03-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-28]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: z1e30ptu.default-1648921676002
FF ProfilePath: C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 [2022-04-03]
FF Homepage: Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 -> hxxps://www.netvibes.com/dashboard/53389474?#Sylvie
FF HomepageOverride: Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (Pearltrees Extension) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\collector@broceliand.fr.xpi [2022-04-02]
FF Extension: (Bouton Enregistrer Pinterest) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-04-02]
FF Extension: (Qwant) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\qwantcomforfirefox@jetpack.xpi [2022-04-02]
FF Extension: (Google Translator for Firefox) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\translator@zoli.bod.xpi [2022-04-02]
FF Extension: (RevEye Reverse Image Search) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{1526fba1-ac33-4dfc-99d8-163e6129f7b9}.xpi [2022-04-02]
FF Extension: (Spring is in the air flowers) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{649d8e9b-e106-417b-ae4c-41d648abe3a9}.xpi [2022-04-02]
FF Extension: (Video DownloadHelper) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-04-02]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-04-02]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google Inc. -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @easyxplor.com/easyxplore Update;version=3 -> C:\Users\sylvi\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @easyxplor.com/easyxplore Update;version=9 -> C:\Users\sylvi\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default [2022-03-28]
CHR HomePage: Default -> hxxps://www.qwant.com/?l=fr/
CHR StartupUrls: Default -> "hxxps://www.qwant.com/?l=fr/"
CHR Extension: (Slides) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-13]
CHR Extension: (Docs) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-13]
CHR Extension: (Google Drive) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-13]
CHR Extension: (YouTube) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-13]
CHR Extension: (Avira Password Manager) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-03-23]
CHR Extension: (Avira Safe Shopping) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-03-25]
CHR Extension: (Quizlit - Rapidly Search Quizlet) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpmpjddogcacgckmamjhmjlflfjikdh [2021-01-23]
CHR Extension: (Sheets) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-13]
CHR Extension: (Protection Web Avira) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-03-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-25]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-09]
CHR Extension: (Trend Micro Toolbar) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2022-03-25]
CHR Extension: (Gmail) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-13]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [386920 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 AMSPTLM; C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe [450232 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_925ded1d9428eaee\DAX3API.exe [2205144 2020-12-22] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\LenovoVantageService.exe [28928 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1133224 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [400520 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
S2 PMBDeviceInfoProvider; "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [440336 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbfsconnect2017; C:\WINDOWS\system32\drivers\cbfsconnect2017.sys [481296 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 TDKLIB; c:\windows\TempInst\TdkLib64.sys [37288 2021-07-19] (Phoenix Technologies Ltd. -> )
R0 TMEBC; C:\WINDOWS\System32\DRIVERS\TMEBC64.sys [67168 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R2 tmeevw; C:\WINDOWS\system32\DRIVERS\tmeevw.sys [152512 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S0 tmel; C:\WINDOWS\System32\DRIVERS\tmel.sys [39872 2021-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.)
R1 tmeyes; C:\WINDOWS\system32\DRIVERS\tmeyes.sys [676944 2021-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R2 tmnciesc; C:\WINDOWS\system32\DRIVERS\tmnciesc.sys [553552 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R1 tmumh; C:\WINDOWS\system32\DRIVERS\TMUMH.sys [161280 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmusa; C:\WINDOWS\system32\DRIVERS\tmusa.sys [137128 2021-09-29] (Trend Micro, Inc. -> Trend Micro, Inc.)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20496 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [439544 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
U2 TMAgent; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-03 17:45 - 2022-04-03 17:46 - 000030236 _____ C:\Users\sylvi\Desktop\FRST.txt
2022-04-03 17:45 - 2022-04-03 17:45 - 000000000 ____D C:\Users\sylvi\Desktop\FRST-OlderVersion
2022-04-03 17:44 - 2022-04-03 17:46 - 000000000 ____D C:\FRST
2022-04-03 17:44 - 2022-04-03 17:45 - 002365440 _____ (Farbar) C:\Users\sylvi\Desktop\FRST64.exe
2022-04-03 17:41 - 2022-04-03 17:41 - 000376092 _____ C:\Users\sylvi\Desktop\ZHPDiag.html
2022-04-03 17:41 - 2022-04-03 17:41 - 000303278 _____ C:\Users\sylvi\Desktop\ZHPDiag.txt
2022-04-03 17:34 - 2022-04-03 17:34 - 000000876 _____ C:\Users\sylvi\Desktop\ZHPSuite.lnk
2022-04-03 17:30 - 2022-04-03 17:30 - 002012160 _____ (Farbar) C:\Users\sylvi\Downloads\FRST.exe
2022-03-31 19:33 - 2022-03-31 19:33 - 000000000 ___HD C:\TMRescueDisk
2022-03-31 19:29 - 2022-03-31 19:29 - 000002269 _____ C:\Users\sylvi\Desktop\Trend Micro Internet Security.lnk
2022-03-31 19:29 - 2022-03-31 19:29 - 000002218 _____ C:\Users\sylvi\Desktop\Protection des paiements Trend Micro.lnk
2022-03-31 19:29 - 2022-03-31 19:29 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
2022-03-31 19:28 - 2022-03-31 19:28 - 000000059 _____ C:\WINDOWS\system32\SupportTool.exe.bat
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\SysWOW64\tmumh
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\SysWOW64\TmAMSI
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\system32\tmumh
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\system32\TmAMSI
2022-03-31 19:28 - 2021-10-04 07:34 - 000676944 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmeyes.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000553552 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmnciesc.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000161280 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\TMUMH.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000152512 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmeevw.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000137128 _____ (Trend Micro, Inc.) C:\WINDOWS\system32\Drivers\tmusa.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000067168 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\TMEBC64.sys
2022-03-31 19:27 - 2022-03-31 19:27 - 000000000 ____D C:\Program Files\Trend Micro
2022-03-31 19:24 - 2021-09-29 12:44 - 000039872 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmel.sys
2022-03-31 19:15 - 2022-03-31 19:19 - 251206680 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\TrendMicro_Download.exe
2022-03-31 16:00 - 2022-03-31 16:00 - 003480728 _____ (Nicolas Coolman) C:\Users\sylvi\Downloads\ZHPSuite.exe
2022-03-29 21:03 - 2022-03-29 21:03 - 000000000 ____D C:\Users\sylvi\AppData\LocalLow\Temp
2022-03-27 20:53 - 2022-03-27 20:53 - 000387689 _____ C:\Users\sylvi\Desktop\Activités-tables-de-multiplication.pdf
2022-03-27 20:53 - 2022-03-27 20:53 - 000042668 _____ C:\Users\sylvi\Desktop\operation_pack_division.pdf
2022-03-27 20:49 - 2022-03-27 20:49 - 000042760 _____ C:\Users\sylvi\Desktop\106536237.pdf
2022-03-22 16:44 - 2022-03-22 16:45 - 025726940 _____ C:\Users\sylvi\Downloads\Corrige complet 1 fichier-1.pdf
2022-03-22 16:31 - 2022-03-22 16:32 - 025726940 _____ C:\Users\sylvi\Downloads\Corrige complet 1 fichier.pdf
2022-03-22 15:11 - 2022-03-22 15:11 - 059419700 _____ C:\Users\sylvi\Downloads\Le_Journal_de_Mickey_-_2_Mars_2022.pdf
2022-03-19 21:26 - 2022-03-27 21:26 - 000000000 ____D C:\Users\sylvi\AppData\Local\mbam
2022-03-19 19:18 - 2022-03-19 19:18 - 000465723 _____ C:\Users\sylvi\Desktop\j brel.pdf
2022-03-16 20:34 - 2022-03-16 20:35 - 000000000 ____D C:\Users\sylvi\Desktop\Radio les saules
2022-03-16 18:39 - 2022-03-16 18:39 - 000178311 _____ C:\Users\sylvi\Desktop\Atelier des petits malins.zip
2022-03-14 21:59 - 2022-03-14 21:59 - 000058847 _____ C:\Users\sylvi\Desktop\lecture_rapidite_ce2_et_cm1_26_mars.pdf
2022-03-14 21:56 - 2022-03-14 21:56 - 001660350 _____ C:\Users\sylvi\Downloads\pdf_Comprehension_lecture_au_cycle_3.pdf
2022-03-14 21:55 - 2022-03-14 21:55 - 000491583 _____ C:\Users\sylvi\Downloads\seance-3.pdf
2022-03-14 21:53 - 2022-03-14 21:53 - 000305581 _____ C:\Users\sylvi\Downloads\seance-1.pdf
2022-03-14 16:08 - 2022-03-14 16:08 - 001339610 _____ C:\Users\sylvi\Desktop\inferences-bateau-pdf.zip
2022-03-14 15:47 - 2022-03-14 15:47 - 000045056 _____ C:\Users\sylvi\Downloads\inference.pdf
2022-03-14 14:42 - 2022-03-29 13:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-03-12 20:03 - 2022-03-12 20:03 - 000417293 _____ C:\Users\sylvi\Desktop\Activité la diffusion du christianisme.pdf
2022-03-12 10:05 - 2022-03-12 10:05 - 008540344 _____ (Malwarebytes) C:\Users\sylvi\Downloads\adwcleaner.exe
2022-03-11 18:00 - 2022-03-11 18:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-11 18:00 - 2022-03-11 18:00 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-11 17:59 - 2022-03-11 17:59 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-11 17:59 - 2022-03-11 17:59 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-11 17:59 - 2022-03-11 17:59 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-11 17:48 - 2022-03-11 17:48 - 000000000 ___HD C:\$WinREAgent
2022-03-07 16:05 - 2022-03-07 16:05 - 003137207 _____ C:\Users\sylvi\Desktop\contrat le chay.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-03 17:47 - 2019-12-23 09:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-03 17:42 - 2022-02-11 18:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-03 17:41 - 2020-11-11 12:31 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\ZHP
2022-04-03 17:41 - 2019-05-19 07:19 - 000000000 ____D C:\Users\sylvi\AppData\LocalLow\Mozilla
2022-04-03 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-03 17:31 - 2019-05-19 07:11 - 000000000 ___RD C:\Users\sylvi\OneDrive
2022-04-03 17:11 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-04-03 16:54 - 2020-09-26 20:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-03 15:23 - 2019-05-19 07:15 - 000000000 ____D C:\Users\sylvi\AppData\Local\Lenovo
2022-04-03 15:18 - 2019-03-11 14:05 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-04-03 14:53 - 2020-09-26 20:34 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{35034234-18F0-403D-8807-6BBFC2F47773}
2022-04-03 14:24 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-03 11:14 - 2020-07-14 07:34 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-03 11:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-03 11:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-03 11:14 - 2019-05-19 14:03 - 000000000 ____D C:\ProgramData\Trend Micro
2022-04-03 11:14 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\D3DSCache
2022-04-02 20:55 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\Packages
2022-04-02 20:25 - 2021-10-02 15:28 - 000000000 ____D C:\Program Files (x86)\Sony
2022-04-02 20:25 - 2020-03-11 23:36 - 000000000 ____D C:\WINDOWS\Lenovo
2022-04-02 20:25 - 2019-03-11 13:48 - 000000000 ____D C:\ProgramData\Lenovo
2022-04-02 19:52 - 2021-10-09 21:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-04-02 19:48 - 2019-12-24 20:33 - 000000000 ____D C:\Users\sylvi\Desktop\Anciennes données de Firefox
2022-04-02 19:18 - 2019-05-19 13:54 - 000000000 ____D C:\Users\sylvi\Documents\Fichiers Outlook
2022-04-02 17:24 - 2020-09-26 20:36 - 001771690 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-02 17:24 - 2019-12-07 16:49 - 000793202 _____ C:\WINDOWS\system32\perfh00C.dat
2022-04-02 17:24 - 2019-12-07 16:49 - 000150332 _____ C:\WINDOWS\system32\perfc00C.dat
2022-04-02 07:12 - 2021-12-11 20:41 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2243747006-2349010438-1343202584-1001
2022-04-02 07:12 - 2020-09-26 20:34 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2243747006-2349010438-1343202584-1001
2022-04-02 07:12 - 2020-09-26 19:42 - 000002432 _____ C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-04-01 19:57 - 2021-10-05 20:34 - 003295944 _____ (Nicolas Coolman) C:\Users\sylvi\ZHPCleaner.exe
2022-04-01 19:57 - 2020-11-18 22:33 - 000000749 _____ C:\Users\sylvi\Desktop\ZHPCleaner.lnk
2022-04-01 19:57 - 2020-09-26 19:42 - 000000000 ____D C:\Users\sylvi
2022-04-01 17:48 - 2020-04-30 17:48 - 000002379 _____ C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2022-03-31 20:28 - 2019-05-19 14:12 - 000000000 ____D C:\Users\sylvi\AppData\Local\Trend Micro
2022-03-31 20:18 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-03-31 20:16 - 2020-09-26 20:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-31 20:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-31 20:15 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-03-31 19:29 - 2020-10-16 16:32 - 000008498 _____ C:\WINDOWS\system32\AmspLogList.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000002222 _____ C:\WINDOWS\system32\AmspConfig.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000000127 _____ C:\WINDOWS\system32\trxhandler_log.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000000080 _____ C:\WINDOWS\system32\log.ini
2022-03-31 19:29 - 2019-05-19 13:59 - 000000000 ____D C:\ProgramData\Trend Micro Installer
2022-03-31 19:27 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-31 16:49 - 2020-11-11 12:31 - 000000000 ____D C:\Users\sylvi\AppData\Local\ZHP
2022-03-29 15:31 - 2020-11-14 13:18 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lifesize
2022-03-29 15:31 - 2020-11-14 13:18 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Lifesize
2022-03-29 15:31 - 2020-11-14 13:17 - 000000000 ____D C:\Users\sylvi\AppData\Local\lifesize_app
2022-03-29 15:12 - 2019-12-19 20:59 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\vlc
2022-03-29 13:33 - 2019-05-19 07:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-03-29 13:31 - 2020-09-26 20:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-03-26 14:59 - 2019-05-19 07:19 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-03-26 07:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-16 21:15 - 2019-07-11 20:15 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-03-16 14:03 - 2019-05-19 07:52 - 000000000 ____D C:\Program Files\Microsoft Office
2022-03-15 14:34 - 2018-09-19 20:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-14 21:22 - 2021-05-06 17:58 - 000000000 ____D C:\Users\sylvi\Desktop\Patrick Dupond
2022-03-12 11:25 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\AMD
2022-03-12 10:02 - 2019-11-28 22:18 - 000000000 ____D C:\Program Files (x86)\Editions_Retz
2022-03-11 22:24 - 2020-09-26 20:26 - 000465944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-11 22:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-11 18:03 - 2021-01-22 20:19 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 18:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-11 17:59 - 2020-09-26 20:29 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-11 17:48 - 2019-05-21 19:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-11 17:45 - 2019-05-21 19:51 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-03-10 19:42 - 2020-09-26 20:34 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-10 19:42 - 2020-09-26 20:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-10-05 20:34 - 2022-04-01 19:57 - 003295944 _____ (Nicolas Coolman) C:\Users\sylvi\ZHPCleaner.exe
2021-01-17 10:27 - 2021-01-17 10:27 - 005627681 _____ () C:\Users\sylvi\AppData\Local\521F62FF25C846aaB12F65C2FFC7E2A4.Sans titre
2019-05-19 14:15 - 2020-12-13 09:57 - 000000036 _____ () C:\Users\sylvi\AppData\Local\housecall.guid.cache
2020-04-15 21:11 - 2020-04-15 21:11 - 000000711 _____ () C:\Users\sylvi\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par sylvi (administrateur) sur LAPTOP-OV5AN24R (LENOVO 81LY) (03-04-2022 17:45:56)
Exécuté depuis C:\Users\sylvi\Desktop
Profils chargés: sylvi
Plate-forme: Microsoft Windows 10 Famille Version 21H1 19043.1586 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\module\10011\8.2.1148\8.2.1148\TmsaInstance64.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\DiamondRing\DrSDKCaller.exe
(C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
(C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
(C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(explorer.exe ->) (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\sylvi\AppData\Roaming\ZHP\ZHPSuite.exe
(explorer.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(services.exe ->) (Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.32012.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21102.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_74518f403e753586\RtkAudUService64.exe [1219312 2020-12-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [445800 2021-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [206960 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1224872 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\sylvi\AppData\Local\Microsoft\Teams\Update.exe [2492128 2022-04-01] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3420976 2021-12-17] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [] => [X]
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE [297024 2013-01-24] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2243747006-2349010438-1343202584-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EPSON XP-212 213 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLHE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON XP-215 217 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMBLGE.DLL [179712 2013-10-22] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\99.0.4844.84\Installer\chrmstp.exe [2022-03-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2019-06-02]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Pas de fichier)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C791263-3697-49DB-B193-B4C4164A0013} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {1CD18557-60EA-4C2F-80B9-65A2E8ACA12F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8307120 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {2042F599-5BED-4720-BFD8-354B88D6FD9A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2296088 2022-03-07] (Avast Software s.r.o. -> Avast Software)
Task: {3143EBAD-DEB0-4056-AA08-DCE87C210C94} - System32\Tasks\easyxplore_run => C:\Users\sylvi\AppData\Local\Programs\easyxplore\EasyXplore.exe /start:reboot (Pas de fichier) <==== ATTENTION
Task: {372AA2F9-DE7C-4E98-9F16-D7E9E2A1C17A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {38CC5D42-ED0C-4D2D-8AD3-A28E6261133A} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier <==== ATTENTION
Task: {3C53885C-2D72-44F5-9F2A-1C4FD6DBDFC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {499A3F3E-900D-4A46-8D61-6A2BA1E7DD30} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-23] (Google LLC -> Google LLC)
Task: {4B89CB24-D52C-41A9-83B6-E84C3E74BC24} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [59232 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4BBEB44A-9B38-4F20-8F8B-3A88D6B1373F} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {4E18729D-2196-4706-BF1B-FBEF7CA41733} - \Lenovo\ImController\TimeBasedEvents\0b83dad6-2450-4778-85c3-a499f5368f45 -> Pas de fichier <==== ATTENTION
Task: {4EEC8646-2043-4B97-8557-38159CC2A408} - \Lenovo\ImController\TimeBasedEvents\fcf30e2a-6ec5-498d-85b3-b907e5a21390 -> Pas de fichier <==== ATTENTION
Task: {54517D71-F313-4C31-AE78-6665425EECFA} - System32\Tasks\EPSON XP-215 217 Series Invitation {CB9FD393-1E23-45F9-8610-EE8C2FFD514E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {59CE155B-FE78-4650-BCA0-C80FF4337026} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8307120 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B43EBCB-7EF0-427C-A79B-89C61660EC35} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-23] (Google LLC -> Google LLC)
Task: {75637C0B-E130-4BF9-B710-CEC973CF8A50} - \Lenovo\ImController\TimeBasedEvents\b6185395-4f6c-4d60-98fa-905862e0a558 -> Pas de fichier <==== ATTENTION
Task: {851A3904-FBC0-40B5-BB3F-F90578D289BC} - \Lenovo\ImController\TimeBasedEvents\74c9af6a-7f81-466a-a482-fb4773910ac4 -> Pas de fichier <==== ATTENTION
Task: {8B0E9233-304E-48AF-9A42-BE052701D5F3} - System32\Tasks\easyxplore_chk => C:\Users\sylvi\AppData\Local\Programs\easyxplore\EasyXplore.exe /chk (Pas de fichier) <==== ATTENTION
Task: {8B412F44-DE56-4CC3-A04F-35F92AF44E02} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {92FC41CD-491C-4615-8FCB-522C69823B70} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {9C582F96-3092-4A9A-A6BF-02B1976583E3} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {A05F78E9-758F-4442-8C49-5EF5C7895B66} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {A5D3CFFB-5C79-4420-B4FF-387AF8A1B926} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2243747006-2349010438-1343202584-1001Core => C:\Users\sylvi\AppData\Local\easyxplore\Update\easyxploreUpdate.exe /c (Pas de fichier) <==== ATTENTION
Task: {B69E0F9E-68D1-4EF4-8AE7-72F579F2B1EA} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {BE62181D-0CE3-40F7-9B04-EE392882ABE1} - System32\Tasks\EPSON XP-215 217 Series Update {CB9FD393-1E23-45F9-8610-EE8C2FFD514E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE [679488 2013-02-28] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
Task: {BF8CF54F-B54B-4996-9C1F-D38D8A1D4459} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C2ACAFB6-A83B-4A64-B02F-FC1D978B39AC} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (Pas de fichier)
Task: {C7A10260-D802-473C-BC00-CD7E29B38CE2} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Pas de fichier)
Task: {DB186F03-1B7F-4C70-B43E-8FB92BD008CA} - System32\Tasks\easyxploreUpdateTaskUserS-1-5-21-2243747006-2349010438-1343202584-1001UA => C:\Users\sylvi\AppData\Local\easyxplore\Update\easyxploreUpdate.exe /ua /installsource scheduler (Pas de fichier) <==== ATTENTION
Task: {DEF8AA41-6803-41E1-853D-6CD2D89E720D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {E0607466-3959-404C-91AB-E19EB2B795EB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [137072 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6205A60-EDF3-492D-B81F-7FFD47FE6210} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier <==== ATTENTION
Task: {F88F223C-E1D3-4C96-A0D0-18609C291B1D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22580696 2022-03-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAC21EDD-9CF2-4AB0-ADF0-B43E6C4ADA88} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\ScheduleEventAction.exe [25344 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FB86FA63-AB56-4170-850A-7EE315A2EAE5} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Invitation {CB9FD393-1E23-45F9-8610-EE8C2FFD514E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-215 217 Series Update {CB9FD393-1E23-45F9-8610-EE8C2FFD514E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLGE.EXE:/EXE:{CB9FD393-1E23-45F9-8610-EE8C2FFD514E} /F:UpdateWORKGROUP\LAPTOP-OV5AN24R$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ATTENTION (Restriction - Zones)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6edd4e93-ac59-443c-b979-99782c51d4f8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ac69ccb0-6ec5-4701-a4d7-f64231166a0b}: [DhcpNameServer] 150.209.1.2
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-03]
Edge Extension: (Avira Safe Shopping) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-03-29]
Edge Extension: (Avira Password Manager) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2022-03-29]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\sylvi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-28]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: z1e30ptu.default-1648921676002
FF ProfilePath: C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 [2022-04-03]
FF Homepage: Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 -> hxxps://www.netvibes.com/dashboard/53389474?#Sylvie
FF HomepageOverride: Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002 -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (Pearltrees Extension) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\collector@broceliand.fr.xpi [2022-04-02]
FF Extension: (Bouton Enregistrer Pinterest) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-04-02]
FF Extension: (Qwant) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\qwantcomforfirefox@jetpack.xpi [2022-04-02]
FF Extension: (Google Translator for Firefox) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\translator@zoli.bod.xpi [2022-04-02]
FF Extension: (RevEye Reverse Image Search) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{1526fba1-ac33-4dfc-99d8-163e6129f7b9}.xpi [2022-04-02]
FF Extension: (Spring is in the air flowers) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{649d8e9b-e106-417b-ae4c-41d648abe3a9}.xpi [2022-04-02]
FF Extension: (Video DownloadHelper) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-04-02]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\sylvi\AppData\Roaming\Mozilla\Firefox\Profiles\z1e30ptu.default-1648921676002\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-04-02]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google Inc. -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @easyxplor.com/easyxplore Update;version=3 -> C:\Users\sylvi\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-2243747006-2349010438-1343202584-1001: @easyxplor.com/easyxplore Update;version=9 -> C:\Users\sylvi\AppData\Local\easyxplore\Update\1.3.99.0\npeasyxploreUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default [2022-03-28]
CHR HomePage: Default -> hxxps://www.qwant.com/?l=fr/
CHR StartupUrls: Default -> "hxxps://www.qwant.com/?l=fr/"
CHR Extension: (Slides) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-13]
CHR Extension: (Docs) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-13]
CHR Extension: (Google Drive) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-13]
CHR Extension: (YouTube) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-13]
CHR Extension: (Avira Password Manager) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2022-03-23]
CHR Extension: (Avira Safe Shopping) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2022-03-25]
CHR Extension: (Quizlit - Rapidly Search Quizlet) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpmpjddogcacgckmamjhmjlflfjikdh [2021-01-23]
CHR Extension: (Sheets) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-13]
CHR Extension: (Protection Web Avira) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-03-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-03-25]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-23]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-09]
CHR Extension: (Trend Micro Toolbar) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2022-03-25]
CHR Extension: (Gmail) - C:\Users\sylvi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-13]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 Amsp; C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [386920 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 AMSPTLM; C:\Program Files\Trend Micro\AMSP\AMSPTelemetryService.exe [450232 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11649952 2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
S2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_925ded1d9428eaee\DAX3API.exe [2205144 2020-12-22] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [334728 2020-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.11.20.0\LenovoVantageService.exe [28928 2022-01-20] (Lenovo -> Lenovo Group Ltd.)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
S2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1133224 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 TmWscSvc; C:\Program Files\Trend Micro\Titanium\TmWscSvc\TmWscSvc.exe [400520 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
S2 PMBDeviceInfoProvider; "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe" [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [440336 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R1 cbfsconnect2017; C:\WINDOWS\system32\drivers\cbfsconnect2017.sys [481296 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 TDKLIB; c:\windows\TempInst\TdkLib64.sys [37288 2021-07-19] (Phoenix Technologies Ltd. -> )
R0 TMEBC; C:\WINDOWS\System32\DRIVERS\TMEBC64.sys [67168 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R2 tmeevw; C:\WINDOWS\system32\DRIVERS\tmeevw.sys [152512 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
S0 tmel; C:\WINDOWS\System32\DRIVERS\tmel.sys [39872 2021-09-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Trend Micro Inc.)
R1 tmeyes; C:\WINDOWS\system32\DRIVERS\tmeyes.sys [676944 2021-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R2 tmnciesc; C:\WINDOWS\system32\DRIVERS\tmnciesc.sys [553552 2021-09-29] (Microsoft Windows Hardware Compatibility Publisher -> Trend Micro Inc.)
R1 tmumh; C:\WINDOWS\system32\DRIVERS\TMUMH.sys [161280 2021-09-29] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmusa; C:\WINDOWS\system32\DRIVERS\tmusa.sys [137128 2021-09-29] (Trend Micro, Inc. -> Trend Micro, Inc.)
R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20496 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [439544 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
U2 TMAgent; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-03 17:45 - 2022-04-03 17:46 - 000030236 _____ C:\Users\sylvi\Desktop\FRST.txt
2022-04-03 17:45 - 2022-04-03 17:45 - 000000000 ____D C:\Users\sylvi\Desktop\FRST-OlderVersion
2022-04-03 17:44 - 2022-04-03 17:46 - 000000000 ____D C:\FRST
2022-04-03 17:44 - 2022-04-03 17:45 - 002365440 _____ (Farbar) C:\Users\sylvi\Desktop\FRST64.exe
2022-04-03 17:41 - 2022-04-03 17:41 - 000376092 _____ C:\Users\sylvi\Desktop\ZHPDiag.html
2022-04-03 17:41 - 2022-04-03 17:41 - 000303278 _____ C:\Users\sylvi\Desktop\ZHPDiag.txt
2022-04-03 17:34 - 2022-04-03 17:34 - 000000876 _____ C:\Users\sylvi\Desktop\ZHPSuite.lnk
2022-04-03 17:30 - 2022-04-03 17:30 - 002012160 _____ (Farbar) C:\Users\sylvi\Downloads\FRST.exe
2022-03-31 19:33 - 2022-03-31 19:33 - 000000000 ___HD C:\TMRescueDisk
2022-03-31 19:29 - 2022-03-31 19:29 - 000002269 _____ C:\Users\sylvi\Desktop\Trend Micro Internet Security.lnk
2022-03-31 19:29 - 2022-03-31 19:29 - 000002218 _____ C:\Users\sylvi\Desktop\Protection des paiements Trend Micro.lnk
2022-03-31 19:29 - 2022-03-31 19:29 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Internet Security
2022-03-31 19:28 - 2022-03-31 19:28 - 000000059 _____ C:\WINDOWS\system32\SupportTool.exe.bat
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\SysWOW64\tmumh
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\SysWOW64\TmAMSI
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\system32\tmumh
2022-03-31 19:28 - 2022-03-31 19:28 - 000000000 ____D C:\WINDOWS\system32\TmAMSI
2022-03-31 19:28 - 2021-10-04 07:34 - 000676944 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmeyes.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000553552 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmnciesc.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000161280 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\TMUMH.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000152512 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmeevw.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000137128 _____ (Trend Micro, Inc.) C:\WINDOWS\system32\Drivers\tmusa.sys
2022-03-31 19:28 - 2021-09-29 12:44 - 000067168 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\TMEBC64.sys
2022-03-31 19:27 - 2022-03-31 19:27 - 000000000 ____D C:\Program Files\Trend Micro
2022-03-31 19:24 - 2021-09-29 12:44 - 000039872 _____ (Trend Micro Inc.) C:\WINDOWS\system32\Drivers\tmel.sys
2022-03-31 19:15 - 2022-03-31 19:19 - 251206680 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\TrendMicro_Download.exe
2022-03-31 16:00 - 2022-03-31 16:00 - 003480728 _____ (Nicolas Coolman) C:\Users\sylvi\Downloads\ZHPSuite.exe
2022-03-29 21:03 - 2022-03-29 21:03 - 000000000 ____D C:\Users\sylvi\AppData\LocalLow\Temp
2022-03-27 20:53 - 2022-03-27 20:53 - 000387689 _____ C:\Users\sylvi\Desktop\Activités-tables-de-multiplication.pdf
2022-03-27 20:53 - 2022-03-27 20:53 - 000042668 _____ C:\Users\sylvi\Desktop\operation_pack_division.pdf
2022-03-27 20:49 - 2022-03-27 20:49 - 000042760 _____ C:\Users\sylvi\Desktop\106536237.pdf
2022-03-22 16:44 - 2022-03-22 16:45 - 025726940 _____ C:\Users\sylvi\Downloads\Corrige complet 1 fichier-1.pdf
2022-03-22 16:31 - 2022-03-22 16:32 - 025726940 _____ C:\Users\sylvi\Downloads\Corrige complet 1 fichier.pdf
2022-03-22 15:11 - 2022-03-22 15:11 - 059419700 _____ C:\Users\sylvi\Downloads\Le_Journal_de_Mickey_-_2_Mars_2022.pdf
2022-03-19 21:26 - 2022-03-27 21:26 - 000000000 ____D C:\Users\sylvi\AppData\Local\mbam
2022-03-19 19:18 - 2022-03-19 19:18 - 000465723 _____ C:\Users\sylvi\Desktop\j brel.pdf
2022-03-16 20:34 - 2022-03-16 20:35 - 000000000 ____D C:\Users\sylvi\Desktop\Radio les saules
2022-03-16 18:39 - 2022-03-16 18:39 - 000178311 _____ C:\Users\sylvi\Desktop\Atelier des petits malins.zip
2022-03-14 21:59 - 2022-03-14 21:59 - 000058847 _____ C:\Users\sylvi\Desktop\lecture_rapidite_ce2_et_cm1_26_mars.pdf
2022-03-14 21:56 - 2022-03-14 21:56 - 001660350 _____ C:\Users\sylvi\Downloads\pdf_Comprehension_lecture_au_cycle_3.pdf
2022-03-14 21:55 - 2022-03-14 21:55 - 000491583 _____ C:\Users\sylvi\Downloads\seance-3.pdf
2022-03-14 21:53 - 2022-03-14 21:53 - 000305581 _____ C:\Users\sylvi\Downloads\seance-1.pdf
2022-03-14 16:08 - 2022-03-14 16:08 - 001339610 _____ C:\Users\sylvi\Desktop\inferences-bateau-pdf.zip
2022-03-14 15:47 - 2022-03-14 15:47 - 000045056 _____ C:\Users\sylvi\Downloads\inference.pdf
2022-03-14 14:42 - 2022-03-29 13:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-03-12 20:03 - 2022-03-12 20:03 - 000417293 _____ C:\Users\sylvi\Desktop\Activité la diffusion du christianisme.pdf
2022-03-12 10:05 - 2022-03-12 10:05 - 008540344 _____ (Malwarebytes) C:\Users\sylvi\Downloads\adwcleaner.exe
2022-03-11 18:00 - 2022-03-11 18:00 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-03-11 18:00 - 2022-03-11 18:00 - 000011911 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-03-11 17:59 - 2022-03-11 17:59 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-03-11 17:59 - 2022-03-11 17:59 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-03-11 17:59 - 2022-03-11 17:59 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-03-11 17:48 - 2022-03-11 17:48 - 000000000 ___HD C:\$WinREAgent
2022-03-07 16:05 - 2022-03-07 16:05 - 003137207 _____ C:\Users\sylvi\Desktop\contrat le chay.pdf
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-04-03 17:47 - 2019-12-23 09:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-04-03 17:42 - 2022-02-11 18:41 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-04-03 17:41 - 2020-11-11 12:31 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\ZHP
2022-04-03 17:41 - 2019-05-19 07:19 - 000000000 ____D C:\Users\sylvi\AppData\LocalLow\Mozilla
2022-04-03 17:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-03 17:31 - 2019-05-19 07:11 - 000000000 ___RD C:\Users\sylvi\OneDrive
2022-04-03 17:11 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-04-03 16:54 - 2020-09-26 20:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-04-03 15:23 - 2019-05-19 07:15 - 000000000 ____D C:\Users\sylvi\AppData\Local\Lenovo
2022-04-03 15:18 - 2019-03-11 14:05 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-04-03 14:53 - 2020-09-26 20:34 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{35034234-18F0-403D-8807-6BBFC2F47773}
2022-04-03 14:24 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-04-03 11:14 - 2020-07-14 07:34 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-03 11:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-03 11:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-04-03 11:14 - 2019-05-19 14:03 - 000000000 ____D C:\ProgramData\Trend Micro
2022-04-03 11:14 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\D3DSCache
2022-04-02 20:55 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\Packages
2022-04-02 20:25 - 2021-10-02 15:28 - 000000000 ____D C:\Program Files (x86)\Sony
2022-04-02 20:25 - 2020-03-11 23:36 - 000000000 ____D C:\WINDOWS\Lenovo
2022-04-02 20:25 - 2019-03-11 13:48 - 000000000 ____D C:\ProgramData\Lenovo
2022-04-02 19:52 - 2021-10-09 21:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-04-02 19:48 - 2019-12-24 20:33 - 000000000 ____D C:\Users\sylvi\Desktop\Anciennes données de Firefox
2022-04-02 19:18 - 2019-05-19 13:54 - 000000000 ____D C:\Users\sylvi\Documents\Fichiers Outlook
2022-04-02 17:24 - 2020-09-26 20:36 - 001771690 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-04-02 17:24 - 2019-12-07 16:49 - 000793202 _____ C:\WINDOWS\system32\perfh00C.dat
2022-04-02 17:24 - 2019-12-07 16:49 - 000150332 _____ C:\WINDOWS\system32\perfc00C.dat
2022-04-02 07:12 - 2021-12-11 20:41 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2243747006-2349010438-1343202584-1001
2022-04-02 07:12 - 2020-09-26 20:34 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2243747006-2349010438-1343202584-1001
2022-04-02 07:12 - 2020-09-26 19:42 - 000002432 _____ C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-04-01 19:57 - 2021-10-05 20:34 - 003295944 _____ (Nicolas Coolman) C:\Users\sylvi\ZHPCleaner.exe
2022-04-01 19:57 - 2020-11-18 22:33 - 000000749 _____ C:\Users\sylvi\Desktop\ZHPCleaner.lnk
2022-04-01 19:57 - 2020-09-26 19:42 - 000000000 ____D C:\Users\sylvi
2022-04-01 17:48 - 2020-04-30 17:48 - 000002379 _____ C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2022-03-31 20:28 - 2019-05-19 14:12 - 000000000 ____D C:\Users\sylvi\AppData\Local\Trend Micro
2022-03-31 20:18 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-03-31 20:16 - 2020-09-26 20:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-03-31 20:16 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-03-31 20:15 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-03-31 19:29 - 2020-10-16 16:32 - 000008498 _____ C:\WINDOWS\system32\AmspLogList.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000002222 _____ C:\WINDOWS\system32\AmspConfig.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000000127 _____ C:\WINDOWS\system32\trxhandler_log.ini
2022-03-31 19:29 - 2020-10-16 16:32 - 000000080 _____ C:\WINDOWS\system32\log.ini
2022-03-31 19:29 - 2019-05-19 13:59 - 000000000 ____D C:\ProgramData\Trend Micro Installer
2022-03-31 19:27 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-03-31 16:49 - 2020-11-11 12:31 - 000000000 ____D C:\Users\sylvi\AppData\Local\ZHP
2022-03-29 15:31 - 2020-11-14 13:18 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lifesize
2022-03-29 15:31 - 2020-11-14 13:18 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\Lifesize
2022-03-29 15:31 - 2020-11-14 13:17 - 000000000 ____D C:\Users\sylvi\AppData\Local\lifesize_app
2022-03-29 15:12 - 2019-12-19 20:59 - 000000000 ____D C:\Users\sylvi\AppData\Roaming\vlc
2022-03-29 13:33 - 2019-05-19 07:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-03-29 13:31 - 2020-09-26 20:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-03-26 14:59 - 2019-05-19 07:19 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-03-26 07:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-03-16 21:15 - 2019-07-11 20:15 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2022-03-16 14:03 - 2019-05-19 07:52 - 000000000 ____D C:\Program Files\Microsoft Office
2022-03-15 14:34 - 2018-09-19 20:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-03-14 21:22 - 2021-05-06 17:58 - 000000000 ____D C:\Users\sylvi\Desktop\Patrick Dupond
2022-03-12 11:25 - 2019-05-19 07:09 - 000000000 ____D C:\Users\sylvi\AppData\Local\AMD
2022-03-12 10:02 - 2019-11-28 22:18 - 000000000 ____D C:\Program Files (x86)\Editions_Retz
2022-03-11 22:24 - 2020-09-26 20:26 - 000465944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-03-11 22:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-03-11 22:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-03-11 18:03 - 2021-01-22 20:19 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 18:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-03-11 17:59 - 2020-09-26 20:29 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-03-11 17:48 - 2019-05-21 19:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-03-11 17:45 - 2019-05-21 19:51 - 145666720 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-03-10 19:42 - 2020-09-26 20:34 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-03-10 19:42 - 2020-09-26 20:34 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2021-10-05 20:34 - 2022-04-01 19:57 - 003295944 _____ (Nicolas Coolman) C:\Users\sylvi\ZHPCleaner.exe
2021-01-17 10:27 - 2021-01-17 10:27 - 005627681 _____ () C:\Users\sylvi\AppData\Local\521F62FF25C846aaB12F65C2FFC7E2A4.Sans titre
2019-05-19 14:15 - 2020-12-13 09:57 - 000000036 _____ () C:\Users\sylvi\AppData\Local\housecall.guid.cache
2020-04-15 21:11 - 2020-04-15 21:11 - 000000711 _____ () C:\Users\sylvi\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================