Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Exécuté par Administrateur (administrateur) sur DELL (Dell Inc. OptiPlex 780) (05-09-2022 08:37:13)
Exécuté depuis E:\telechargement\logiciels divers\frst
Profils chargés: Administrateur
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BPR2\brdiagtool.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\62.0.2.0\crashpad_handler.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TomTom) [Fichier non signé] C:\Program Files\TomTom HOME\TTHOMEService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.42091.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Shindan] => C:\Program Files (x86)\Brother\BPR2\brdiagtool.exe [214528 2017-05-19] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186408 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2021-12-10] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [uTorrent] => C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-23] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [408976 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [] => [X]
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31296912 2022-04-08] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\MountPoints2: {c3dc88ab-0648-11ec-8ab2-842b2bbbf5f6} - "F:\setup.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\Windows\system32\PEPrinterMonitor.dll [285216 2021-01-28] (Wondershare Technology Co.,Ltd -> Wondershare Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files\Google\Chrome Beta\Application\106.0.5249.21\Installer\chrmstp.exe [2022-09-02] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-02] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
InternetURL: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZmjafqgdlW.url -> URL: "C:\Users\ADMINI~1\AppData\Local\Temp\YAuegvbdFm\VOllPlqyuxioP.js"
Startup: C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2020-10-21]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Administrateur\AppData\Local\Facebook\Games\FacebookGameroom.exe (Pas de fichier)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02F355CA-48A8-437E-8E50-51A44190FE5F} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\Windows\system32\sipnotify.exe -Daily (Pas de fichier)
Task: {07C595EA-A52C-4291-8C3C-10C056780682} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {07E568C6-D6E3-49CA-98D6-1D6F77F380F7} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {15641319-4550-4D06-8A72-337E10F2F534} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {1956CB80-8382-4617-9B82-DA8F735EC55C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1CF0EE8A-94D7-45F6-BB85-2EDD70B38DF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {1E4F2771-7D91-4913-B278-624A3482BDDD} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {201D0BBE-AFE5-4E01-8685-371107188F14} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {2962344D-F0FF-4DE0-AC83-527332F445F0} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2AB77895-E957-4A6F-A245-1303C5CA61E5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe $(Arg0) (Pas de fichier)
Task: {2BB1970A-93B3-4ECF-AB3A-77E0DB246829} - System32\Tasks\GoogleUpdateTaskMachineCore{A9534F67-8DCF-4FF7-8B50-56D59680139A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-01] (Google LLC -> Google LLC)
Task: {3A9C20FE-A3FA-47CB-8224-84337B0B225F} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe /StartRecording (Pas de fichier)
Task: {4238C31B-7795-4B06-9EEA-82EC25CAEEE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {488444DD-5EBA-4450-BD3D-3A14DEE37FF1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe /RestartRecording (Pas de fichier)
Task: {4EA71080-0482-4F6E-8C58-17CF728F6C22} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {4EB5F02D-1918-4F5C-9AD0-2DE1E5BECA07} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {523DC5B0-BB4A-4828-8FD6-9256431AFD24} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {53AB32A6-4325-474C-9559-FA8C13C0380A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {627F49DA-8457-4C9A-9FE0-C2BF7D553D6C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {675BA7AF-777C-4F7F-A013-A0A9AFCAA1F2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {68619035-617A-4B50-9966-D83668A8CE47} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3404510799-2751662745-2775423546-1000 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1820848 2021-07-05] (Mega Limited -> Mega Limited)
Task: {6A3BD319-2923-44EF-9383-07CC70851ADC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3404510799-2751662745-2775423546-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {6B1C46D1-F59C-4E6D-83DA-6111C19765EA} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {7633C465-7C22-44D7-AA0A-2B0A575C147B} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {7C897322-5592-4D6C-AA8C-CE43450F948C} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3404510799-2751662745-2775423546-500 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1820848 2021-07-05] (Mega Limited -> Mega Limited)
Task: {83581767-0623-46D2-ACF6-C44182C3DB8A} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {83F4790B-B3EB-462F-B5A4-0CDDE872411E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8BE0B706-80DF-495F-A46C-BA433311B667} - \AutoPico Daily Restart -> Pas de fichier <==== ATTENTION
Task: {8F739C09-923E-46AB-8E1E-52AB07637AA1} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\Windows\system32\sipnotify.exe -LogonOrUnlock (Pas de fichier)
Task: {93E684C5-EDA2-4FD3-B11B-7F1446B80E0D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {94BC916E-4D63-4414-B09A-1087866FB330} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {962ABC84-63DD-407F-A3A1-12F9FF98120A} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {9A80640B-442E-4E30-BBD7-BA88DDB66643} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9B30AEED-5D26-490A-8B48-F9DD4FE4B69F} - \GoogleUpdateTaskMachineUA -> Pas de fichier <==== ATTENTION
Task: {9C888D8D-8B21-4F43-A93C-64B0B0B52922} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {AC669E7F-502E-4550-8940-A3FEF0967BDD} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {B0BA90DC-DDEC-4570-8EB3-ABD924605F16} - System32\Tasks\GoogleUpdateTaskMachineUA{982BC3D6-D84C-474C-929F-CE9501AE9F79} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-01] (Google LLC -> Google LLC)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B1424991-64D3-4669-804F-70CB46EECCEC} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [28048 2022-04-08] (Garmin International, Inc. -> )
Task: {B4A2869B-609C-4D27-B6AD-60EF80079941} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {B6459797-69D9-454D-A1EF-E1E8A4AEE444} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {BDAA7872-6D2F-4308-BD45-12309CC93FF2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {C6E4C00D-593C-4DD7-8187-E58E95C23998} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {CC7A6B3A-D6D1-4A96-810A-1C4473D7BF4C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {D4800586-7969-4F85-8677-4809DF66215B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {D4AAABB6-015A-4135-9FD5-9A9A23203176} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {DD1F6402-723B-4673-8647-9F7070458CD9} - \GoogleUpdateTaskMachineCore -> Pas de fichier <==== ATTENTION
Task: {DE07DDBB-F576-44B7-BA07-E23DD5A6E125} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E177E05C-3D0D-4F47-8732-6DF1500C80A8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {E7DFE0AA-1941-46A9-BE16-F3094FF0E470} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {EBB65495-79D6-4430-850A-5C07D73B548B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBF264CB-6C7F-458F-A797-F224633241ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {EC112506-9A06-499D-81D6-78894591CF5E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {F44B1AF5-06C0-44F1-BA5B-E381D9767DC4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{35240d5b-e3cf-4cc0-91e5-3a7b65290f58}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-05]
Edge Notifications: Default -> hxxps://forums.commentcamarche.net
Edge HomePage: Default -> hxxp://www.google.com/
Edge DefaultSearchURL: Default -> hxxps://1218.searchexpert.online/?q={searchTerms}
Edge DefaultSuggestURL: Default -> hxxps://m.nearbyme.io/search?text={searchTerms}
Edge Extension: (Traducteur) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfbblfociapkankmiajlhmjkgbaoogon [2022-08-26]
Edge Extension: (DuckDuckGo) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2022-08-26]
Edge Extension: (Dropbox pour Gmail) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2022-08-26]
Edge Extension: (Avast Passwords) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-08-26]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-08-31]
Edge HKLM-x32\...\Edge\Extension: [odbmjgikedenicicookngdckhkjbebpd]
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2022-09-05]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Traducteur) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbblfociapkankmiajlhmjkgbaoogon [2022-04-27]
CHR Extension: (DuckDuckGo) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-08-28]
CHR Extension: (Dropbox pour Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-09-01]
CHR Extension: (Avast Passwords) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-12-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-31]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-05-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-03-21]
CHR DefaultSuggestURL: Guest Profile -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-03-21]
CHR DefaultSuggestURL: Profile 1 -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Extension: (Slides) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-20]
CHR Extension: (Docs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-20]
CHR Extension: (Google Drive) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-20]
CHR Extension: (YouTube) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-20]
CHR Extension: (Sheets) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-20]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-20]
CHR Extension: (Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-20]
CHR Extension: (Chrome Media Router) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-20]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-03-21]
CHR DefaultSuggestURL: Profile 2 -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Extension: (Slides) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-09-21]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-09-21]
CHR Extension: (Docs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-09-21]
CHR Extension: (Google Drive) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-09-21]
CHR Extension: (YouTube) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-09-21]
CHR Extension: (Tampermonkey) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-09-21]
CHR Extension: (Sheets) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-09-21]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-21]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-09-21]
CHR Extension: (Web Safety) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-09-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-21]
CHR Extension: (Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-09-21]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-21]
CHR DefaultSuggestURL: System Profile -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR HKU\S-1-5-21-3404510799-2751662745-2775423546-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-3404510799-2751662745-2775423546-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
StartMenuInternet: Google Chrome Beta - C:\Program Files\Google\Chrome Beta\Application\chrome.exe
Opera:
=======
OPR Profile: C:\Users\Administrateur\AppData\Roaming\Opera Software\Opera Stable [2022-03-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2021-12-06] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46832 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4816272 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncHelper.exe [3380624 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-12-25] (Mixbyte Inc -> Freemake)
S3 GoogleChromeBetaElevationService; C:\Program Files\Google\Chrome Beta\Application\106.0.5249.21\elevation_service.exe [1674016 2022-08-31] (Google LLC -> Google LLC)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\OneDriveUpdaterService.exe [3800976 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14676264 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2021-09-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [154112 2021-10-13] (Microsoft Corporation) [Fichier non signé]
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U4 googledrivefs3688; C:\Windows\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs3758; C:\Windows\System32\DRIVERS\googledrivefs3758.sys [384584 2022-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl8167a6b8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A5E7110C-B552-4F2A-A17F-E10E5B1F3F2E}\MpKslDrv.sys [141576 2022-09-05] (Microsoft Windows -> Microsoft Corporation)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 08:22 - 2022-09-05 08:38 - 000000000 ____D C:\FRST
2022-09-01 13:31 - 2022-09-01 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-09-01 08:42 - 2022-08-15 12:26 - 000384584 _____ (Google, Inc.) C:\Windows\system32\Drivers\googledrivefs3758.sys
2022-09-01 08:31 - 2022-09-02 22:36 - 000002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-01 08:30 - 2022-09-01 08:30 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{982BC3D6-D84C-474C-929F-CE9501AE9F79}
2022-09-01 08:30 - 2022-09-01 08:30 - 000003542 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{A9534F67-8DCF-4FF7-8B50-56D59680139A}
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000046832 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2022-08-19 22:52 - 2022-08-19 22:52 - 008551608 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner (1).exe
2022-08-19 22:52 - 2022-08-19 22:52 - 002556344 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup-41EB42D1-37335.37335.exe
2022-08-19 22:52 - 2022-08-19 22:52 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 355221.crdownload
2022-08-19 22:52 - 2022-08-19 22:52 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 316614.crdownload
2022-08-19 22:39 - 2022-08-19 22:39 - 000346112 _____ C:\Users\Administrateur\Downloads\unlocker_v1-9-2_fr_20237_64.msi
2022-08-19 22:39 - 2022-08-19 22:39 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 829227.crdownload
2022-08-19 22:04 - 2022-08-19 22:04 - 000000000 ____D C:\Users\Administrateur\AppData\Local\AdAwareDesktop
2022-08-19 21:57 - 2022-08-19 21:57 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 578981.crdownload
2022-08-19 21:56 - 2022-08-19 21:57 - 013576952 _____ C:\Users\Administrateur\Downloads\ad-aware-antivirus-free_12-10_fr_12797.exe
2022-08-19 21:56 - 2022-08-19 21:56 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 735281.crdownload
2022-08-19 21:37 - 2022-08-19 21:37 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 622973.crdownload
2022-08-19 21:24 - 2022-08-19 21:24 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 315187.crdownload
2022-08-19 21:23 - 2022-08-19 21:24 - 008551608 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner.exe
2022-08-09 21:18 - 2022-08-09 21:18 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-09 21:18 - 2022-08-09 21:18 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-09 21:17 - 2022-08-09 21:17 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-09 21:17 - 2022-08-09 21:17 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-09 21:16 - 2022-08-09 21:16 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-09 21:16 - 2022-08-09 21:16 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-09 21:16 - 2022-08-09 21:16 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-09 21:16 - 2022-08-09 21:16 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-09 20:51 - 2022-08-09 20:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 08:35 - 2020-06-15 16:34 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-05 08:33 - 2020-08-12 17:20 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-05 08:20 - 2020-06-16 08:08 - 000008051 _____ C:\Windows\BRRBCOM.INI
2022-09-05 08:01 - 2020-12-08 12:02 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Dropbox
2022-09-05 07:30 - 2022-06-09 08:50 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\DropboxElectron
2022-09-05 07:27 - 2021-08-10 09:02 - 000000000 ____D C:\Program Files\CCleaner
2022-09-04 21:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-04 08:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 08:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-03 17:55 - 2020-08-12 19:14 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-02 07:20 - 2020-10-21 10:03 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Version bêta de Google Chrome.lnk
2022-09-01 13:31 - 2020-07-11 11:17 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-09-01 08:42 - 2021-09-23 16:47 - 000002023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-09-01 08:33 - 2020-10-06 12:05 - 000000000 ____D C:\Program Files\Google
2022-08-31 22:35 - 2020-12-08 11:48 - 000000000 ____D C:\Users\Administrateur
2022-08-31 09:48 - 2021-06-22 11:20 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-08-31 09:47 - 2022-01-11 16:47 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-1000
2022-08-31 09:47 - 2021-12-11 14:33 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-500
2022-08-31 09:47 - 2021-04-28 19:45 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-08-31 09:47 - 2021-04-28 19:45 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-31 09:40 - 2021-07-10 12:32 - 000000000 ____D C:\Program Files\TeamViewer
2022-08-31 09:40 - 2020-08-12 17:36 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-31 09:40 - 2020-08-12 17:20 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-26 07:18 - 2021-08-10 09:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2022-08-26 07:16 - 2021-08-10 09:02 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-08-19 22:59 - 2019-12-07 11:03 - 001048576 _____ C:\Windows\system32\config\BBI
2022-08-19 22:40 - 2022-03-11 11:56 - 000001880 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unlocker.lnk
2022-08-19 22:40 - 2022-03-11 11:56 - 000000000 ____D C:\Program Files\Unlocker
2022-08-19 22:23 - 2022-03-11 18:26 - 000000000 ____D C:\Program Files\KMSpico
2022-08-19 22:18 - 2022-03-11 17:55 - 000000000 ____D C:\ProgramData\DiskOptimizer
2022-08-19 22:17 - 2022-03-11 18:04 - 000000004 _____ C:\ProgramData\lock.dat
2022-08-19 22:16 - 2022-03-11 18:05 - 000000004 _____ C:\ProgramData\rc.dat
2022-08-19 22:04 - 2022-03-11 18:04 - 000000716 _____ C:\ProgramData\lir.bats
2022-08-19 06:20 - 2020-06-15 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-18 10:45 - 2020-12-08 12:17 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Comms
2022-08-17 03:11 - 2020-08-12 19:12 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 03:11 - 2020-08-12 19:12 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-12 16:19 - 2020-12-31 13:28 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\vlc
2022-08-11 07:06 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-08-11 06:55 - 2020-08-12 17:26 - 001975210 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-11 06:55 - 2019-12-07 16:50 - 000866442 _____ C:\Windows\system32\perfh00C.dat
2022-08-11 06:55 - 2019-12-07 16:50 - 000183236 _____ C:\Windows\system32\perfc00C.dat
2022-08-10 23:36 - 2020-08-12 17:20 - 000462760 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-10 23:35 - 2020-07-11 11:17 - 000001196 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2022-08-10 23:35 - 2020-07-11 11:17 - 000001192 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2022-08-10 23:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-10 23:32 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-10 23:32 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-10 22:21 - 2020-08-12 17:36 - 000004256 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2022-08-10 22:21 - 2020-08-12 17:36 - 000004024 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2022-08-10 19:09 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-10 19:08 - 2019-11-18 03:27 - 000000000 ____D C:\Windows\system32\MRT
2022-08-10 19:01 - 2019-11-18 03:27 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-10 10:42 - 2022-04-05 15:54 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-08-10 10:42 - 2022-04-05 15:53 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-09 21:16 - 2020-08-12 17:28 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
==================== Fichiers à la racine de certains dossiers ========
2022-03-11 18:04 - 2022-08-19 22:17 - 000000004 _____ () C:\ProgramData\lock.dat
2022-03-11 18:05 - 2022-08-19 22:16 - 000000004 _____ () C:\ProgramData\rc.dat
2022-03-11 18:04 - 2022-03-11 18:04 - 000000008 _____ () C:\ProgramData\ts.dat
2022-03-11 18:06 - 2022-03-11 18:06 - 000000068 _____ () C:\Users\Administrateur\AppData\Roaming\changzhi_leidian.data
2022-03-11 18:06 - 2022-03-11 18:06 - 000000076 _____ () C:\Users\Administrateur\AppData\Roaming\changzhi_leidianmac.data
2022-05-14 22:48 - 2022-05-14 22:48 - 000002038 _____ () C:\Users\Administrateur\AppData\Roaming\Microsoft\0b1144e1-e7f4-4cc9-b49e-267862c5518c.tmp
2022-03-11 11:24 - 2022-03-11 11:31 - 000016438 _____ () C:\Users\Administrateur\AppData\Local\partner.bmp
2022-03-06 08:55 - 2022-03-06 08:55 - 000000860 _____ () C:\Users\Administrateur\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Administrateur (administrateur) sur DELL (Dell Inc. OptiPlex 780) (05-09-2022 08:37:13)
Exécuté depuis E:\telechargement\logiciels divers\frst
Profils chargés: Administrateur
Plate-forme: Microsoft Windows 10 Professionnel Version 21H2 19044.1889 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\BPR2\brdiagtool.exe
(Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\62.0.2.0\crashpad_handler.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) C:\Program Files (x86)\MaskVPN\mask_svc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TomTom) [Fichier non signé] C:\Program Files\TomTom HOME\TTHOMEService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.42091.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22062.543.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Shindan] => C:\Program Files (x86)\Brother\BPR2\brdiagtool.exe [214528 2017-05-19] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186408 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2021-12-10] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Fichier non signé]
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\Run: [uTorrent] => C:\Users\Utilisateur\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-11-23] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-1000\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2629520 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [122611592 2022-08-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [408976 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [] => [X]
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31296912 2022-04-08] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3404510799-2751662745-2775423546-500\...\MountPoints2: {c3dc88ab-0648-11ec-8ab2-842b2bbbf5f6} - "F:\setup.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.2.0\GoogleDriveFS.exe [51140384 2022-08-15] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Wondershare PDFelement Monitor: C:\Windows\system32\PEPrinterMonitor.dll [285216 2021-01-28] (Wondershare Technology Co.,Ltd -> Wondershare Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files\Google\Chrome Beta\Application\106.0.5249.21\Installer\chrmstp.exe [2022-09-02] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.102\Installer\chrmstp.exe [2022-09-02] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
InternetURL: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZmjafqgdlW.url -> URL: "C:\Users\ADMINI~1\AppData\Local\Temp\YAuegvbdFm\VOllPlqyuxioP.js"
Startup: C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2020-10-21]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Administrateur\AppData\Local\Facebook\Games\FacebookGameroom.exe (Pas de fichier)
GroupPolicy: Restriction - Chrome <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02F355CA-48A8-437E-8E50-51A44190FE5F} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\Windows\system32\sipnotify.exe -Daily (Pas de fichier)
Task: {07C595EA-A52C-4291-8C3C-10C056780682} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {07E568C6-D6E3-49CA-98D6-1D6F77F380F7} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Pas de fichier)
Task: {15641319-4550-4D06-8A72-337E10F2F534} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Pas de fichier)
Task: {1956CB80-8382-4617-9B82-DA8F735EC55C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1CF0EE8A-94D7-45F6-BB85-2EDD70B38DF1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Pas de fichier)
Task: {1E4F2771-7D91-4913-B278-624A3482BDDD} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe -MediaCenterRecoveryTask (Pas de fichier)
Task: {201D0BBE-AFE5-4E01-8685-371107188F14} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {2962344D-F0FF-4DE0-AC83-527332F445F0} - System32\Tasks\CCleanerSkipUAC - Administrateur => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2AB77895-E957-4A6F-A245-1303C5CA61E5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe $(Arg0) (Pas de fichier)
Task: {2BB1970A-93B3-4ECF-AB3A-77E0DB246829} - System32\Tasks\GoogleUpdateTaskMachineCore{A9534F67-8DCF-4FF7-8B50-56D59680139A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-01] (Google LLC -> Google LLC)
Task: {3A9C20FE-A3FA-47CB-8224-84337B0B225F} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe /StartRecording (Pas de fichier)
Task: {4238C31B-7795-4B06-9EEA-82EC25CAEEE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {488444DD-5EBA-4450-BD3D-3A14DEE37FF1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe /RestartRecording (Pas de fichier)
Task: {4EA71080-0482-4F6E-8C58-17CF728F6C22} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Pas de fichier)
Task: {4EB5F02D-1918-4F5C-9AD0-2DE1E5BECA07} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Pas de fichier)
Task: {523DC5B0-BB4A-4828-8FD6-9256431AFD24} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe -pscn 0 (Pas de fichier)
Task: {53AB32A6-4325-474C-9559-FA8C13C0380A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe /DoReindexSearchRoot (Pas de fichier)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {627F49DA-8457-4C9A-9FE0-C2BF7D553D6C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {675BA7AF-777C-4F7F-A013-A0A9AFCAA1F2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Pas de fichier)
Task: {68619035-617A-4B50-9966-D83668A8CE47} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3404510799-2751662745-2775423546-1000 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1820848 2021-07-05] (Mega Limited -> Mega Limited)
Task: {6A3BD319-2923-44EF-9383-07CC70851ADC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3404510799-2751662745-2775423546-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781}
Task: {6B1C46D1-F59C-4E6D-83DA-6111C19765EA} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe /OCURActivate (Pas de fichier)
Task: {7633C465-7C22-44D7-AA0A-2B0A575C147B} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {7C897322-5592-4D6C-AA8C-CE43450F948C} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3404510799-2751662745-2775423546-500 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1820848 2021-07-05] (Mega Limited -> Mega Limited)
Task: {83581767-0623-46D2-ACF6-C44182C3DB8A} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {83F4790B-B3EB-462F-B5A4-0CDDE872411E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {8BE0B706-80DF-495F-A46C-BA433311B667} - \AutoPico Daily Restart -> Pas de fichier <==== ATTENTION
Task: {8F739C09-923E-46AB-8E1E-52AB07637AA1} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\Windows\system32\sipnotify.exe -LogonOrUnlock (Pas de fichier)
Task: {93E684C5-EDA2-4FD3-B11B-7F1446B80E0D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {94BC916E-4D63-4414-B09A-1087866FB330} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {962ABC84-63DD-407F-A3A1-12F9FF98120A} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Pas de fichier)
Task: {9A80640B-442E-4E30-BBD7-BA88DDB66643} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9B30AEED-5D26-490A-8B48-F9DD4FE4B69F} - \GoogleUpdateTaskMachineUA -> Pas de fichier <==== ATTENTION
Task: {9C888D8D-8B21-4F43-A93C-64B0B0B52922} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {AC669E7F-502E-4550-8940-A3FEF0967BDD} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {B0BA90DC-DDEC-4570-8EB3-ABD924605F16} - System32\Tasks\GoogleUpdateTaskMachineUA{982BC3D6-D84C-474C-929F-CE9501AE9F79} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-09-01] (Google LLC -> Google LLC)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B1424991-64D3-4669-804F-70CB46EECCEC} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [28048 2022-04-08] (Garmin International, Inc. -> )
Task: {B4A2869B-609C-4D27-B6AD-60EF80079941} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe /DRMInit (Pas de fichier)
Task: {B6459797-69D9-454D-A1EF-E1E8A4AEE444} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Pas de fichier)
Task: {BDAA7872-6D2F-4308-BD45-12309CC93FF2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe -SqlLiteRecoveryTask (Pas de fichier)
Task: {C6E4C00D-593C-4DD7-8187-E58E95C23998} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {CC7A6B3A-D6D1-4A96-810A-1C4473D7BF4C} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {D4800586-7969-4F85-8677-4809DF66215B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Pas de fichier)
Task: {D4AAABB6-015A-4135-9FD5-9A9A23203176} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Pas de fichier)
Task: {DD1F6402-723B-4673-8647-9F7070458CD9} - \GoogleUpdateTaskMachineCore -> Pas de fichier <==== ATTENTION
Task: {DE07DDBB-F576-44B7-BA07-E23DD5A6E125} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E177E05C-3D0D-4F47-8732-6DF1500C80A8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {E7DFE0AA-1941-46A9-BE16-F3094FF0E470} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe -PvrRecoveryTask (Pas de fichier)
Task: {EBB65495-79D6-4430-850A-5C07D73B548B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBF264CB-6C7F-458F-A797-F224633241ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe /PBDADiscovery (Pas de fichier)
Task: {EC112506-9A06-499D-81D6-78894591CF5E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe -PvrSchedule (Pas de fichier)
Task: {F44B1AF5-06C0-44F1-BA5B-E381D9767DC4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4154248 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{35240d5b-e3cf-4cc0-91e5-3a7b65290f58}: [DhcpNameServer] 192.168.1.254
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-05]
Edge Notifications: Default -> hxxps://forums.commentcamarche.net
Edge HomePage: Default -> hxxp://www.google.com/
Edge DefaultSearchURL: Default -> hxxps://1218.searchexpert.online/?q={searchTerms}
Edge DefaultSuggestURL: Default -> hxxps://m.nearbyme.io/search?text={searchTerms}
Edge Extension: (Traducteur) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfbblfociapkankmiajlhmjkgbaoogon [2022-08-26]
Edge Extension: (DuckDuckGo) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2022-08-26]
Edge Extension: (Dropbox pour Gmail) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2022-08-26]
Edge Extension: (Avast Passwords) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2022-08-26]
Edge Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-08-31]
Edge HKLM-x32\...\Edge\Extension: [odbmjgikedenicicookngdckhkjbebpd]
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2022-09-05]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Traducteur) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbblfociapkankmiajlhmjkgbaoogon [2022-04-27]
CHR Extension: (DuckDuckGo) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-08-28]
CHR Extension: (Dropbox pour Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-09-01]
CHR Extension: (Avast Passwords) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-12-08]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-31]
CHR Extension: (AdBlock — le meilleur bloqueur de pubs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-31]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-05-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-03-21]
CHR DefaultSuggestURL: Guest Profile -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-03-21]
CHR DefaultSuggestURL: Profile 1 -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Extension: (Slides) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-08-20]
CHR Extension: (Docs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-08-20]
CHR Extension: (Google Drive) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-08-20]
CHR Extension: (YouTube) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-08-20]
CHR Extension: (Sheets) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-08-20]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-08-20]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-20]
CHR Extension: (Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-08-20]
CHR Extension: (Chrome Media Router) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-20]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2 [2022-03-21]
CHR DefaultSuggestURL: Profile 2 -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR Extension: (Slides) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-09-21]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-09-21]
CHR Extension: (Docs) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-09-21]
CHR Extension: (Google Drive) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-09-21]
CHR Extension: (YouTube) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-09-21]
CHR Extension: (Tampermonkey) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2021-09-21]
CHR Extension: (Sheets) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-09-21]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-21]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-09-21]
CHR Extension: (Web Safety) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mfhcmdonhekjhfbjmeacdjbhlfgpjabp [2021-09-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-21]
CHR Extension: (Gmail) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-09-21]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2022-03-21]
CHR DefaultSuggestURL: System Profile -> hxxps://m.nearbyme.io/search?text={searchTerms}
CHR HKU\S-1-5-21-3404510799-2751662745-2775423546-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-3404510799-2751662745-2775423546-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp]
StartMenuInternet: Google Chrome Beta - C:\Program Files\Google\Chrome Beta\Application\chrome.exe
Opera:
=======
OPR Profile: C:\Users\Administrateur\AppData\Roaming\Opera Software\Opera Stable [2022-03-21]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2021-12-06] (Brother Industries, Ltd.) [Fichier non signé]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46832 2022-08-29] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4816272 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncHelper.exe [3380624 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-12-25] (Mixbyte Inc -> Freemake)
S3 GoogleChromeBetaElevationService; C:\Program Files\Google\Chrome Beta\Application\106.0.5249.21\elevation_service.exe [1674016 2022-08-31] (Google LLC -> Google LLC)
R2 MaskVPNService; C:\Program Files (x86)\MaskVPN\mask_svc.exe [7493560 2020-08-06] (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.166.0807.0002\OneDriveUpdaterService.exe [3800976 2022-08-31] (Microsoft Corporation -> Microsoft Corporation)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14676264 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TTHOMEService; C:\Program Files\TomTom HOME\TTHOMEService.exe [97792 2019-04-17] (TomTom) [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2021-09-15] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [154112 2021-10-13] (Microsoft Corporation) [Fichier non signé]
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-08-26] (AVB Disc Soft, SIA -> Disc Soft Ltd)
U4 googledrivefs3688; C:\Windows\System32\DRIVERS\googledrivefs3688.sys [381456 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 googledrivefs3758; C:\Windows\System32\DRIVERS\googledrivefs3758.sys [384584 2022-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl8167a6b8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A5E7110C-B552-4F2A-A17F-E10E5B1F3F2E}\MpKslDrv.sys [141576 2022-09-05] (Microsoft Windows -> Microsoft Corporation)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 08:22 - 2022-09-05 08:38 - 000000000 ____D C:\FRST
2022-09-01 13:31 - 2022-09-01 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2022-09-01 08:42 - 2022-08-15 12:26 - 000384584 _____ (Google, Inc.) C:\Windows\system32\Drivers\googledrivefs3758.sys
2022-09-01 08:31 - 2022-09-02 22:36 - 000002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-01 08:30 - 2022-09-01 08:30 - 000003666 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{982BC3D6-D84C-474C-929F-CE9501AE9F79}
2022-09-01 08:30 - 2022-09-01 08:30 - 000003542 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{A9534F67-8DCF-4FF7-8B50-56D59680139A}
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2022-08-29 17:25 - 2022-08-29 17:25 - 000046832 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2022-08-19 22:52 - 2022-08-19 22:52 - 008551608 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner (1).exe
2022-08-19 22:52 - 2022-08-19 22:52 - 002556344 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup-41EB42D1-37335.37335.exe
2022-08-19 22:52 - 2022-08-19 22:52 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 355221.crdownload
2022-08-19 22:52 - 2022-08-19 22:52 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 316614.crdownload
2022-08-19 22:39 - 2022-08-19 22:39 - 000346112 _____ C:\Users\Administrateur\Downloads\unlocker_v1-9-2_fr_20237_64.msi
2022-08-19 22:39 - 2022-08-19 22:39 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 829227.crdownload
2022-08-19 22:04 - 2022-08-19 22:04 - 000000000 ____D C:\Users\Administrateur\AppData\Local\AdAwareDesktop
2022-08-19 21:57 - 2022-08-19 21:57 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 578981.crdownload
2022-08-19 21:56 - 2022-08-19 21:57 - 013576952 _____ C:\Users\Administrateur\Downloads\ad-aware-antivirus-free_12-10_fr_12797.exe
2022-08-19 21:56 - 2022-08-19 21:56 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 735281.crdownload
2022-08-19 21:37 - 2022-08-19 21:37 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 622973.crdownload
2022-08-19 21:24 - 2022-08-19 21:24 - 000000000 _____ C:\Users\Administrateur\Downloads\Non confirmé 315187.crdownload
2022-08-19 21:23 - 2022-08-19 21:24 - 008551608 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner.exe
2022-08-09 21:18 - 2022-08-09 21:18 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2022-08-09 21:18 - 2022-08-09 21:18 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2022-08-09 21:17 - 2022-08-09 21:17 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2022-08-09 21:17 - 2022-08-09 21:17 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-08-09 21:16 - 2022-08-09 21:16 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2022-08-09 21:16 - 2022-08-09 21:16 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2022-08-09 21:16 - 2022-08-09 21:16 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-09 21:16 - 2022-08-09 21:16 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-09 20:51 - 2022-08-09 20:51 - 000000000 ___HD C:\$WinREAgent
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2022-09-05 08:35 - 2020-06-15 16:34 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-05 08:33 - 2020-08-12 17:20 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-09-05 08:20 - 2020-06-16 08:08 - 000008051 _____ C:\Windows\BRRBCOM.INI
2022-09-05 08:01 - 2020-12-08 12:02 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Dropbox
2022-09-05 07:30 - 2022-06-09 08:50 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\DropboxElectron
2022-09-05 07:27 - 2021-08-10 09:02 - 000000000 ____D C:\Program Files\CCleaner
2022-09-04 21:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-04 08:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-04 08:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2022-09-03 17:55 - 2020-08-12 19:14 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-02 07:20 - 2020-10-21 10:03 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Version bêta de Google Chrome.lnk
2022-09-01 13:31 - 2020-07-11 11:17 - 000000000 ____D C:\Program Files (x86)\Dropbox
2022-09-01 08:42 - 2021-09-23 16:47 - 000002023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-09-01 08:33 - 2020-10-06 12:05 - 000000000 ____D C:\Program Files\Google
2022-08-31 22:35 - 2020-12-08 11:48 - 000000000 ____D C:\Users\Administrateur
2022-08-31 09:48 - 2021-06-22 11:20 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-08-31 09:47 - 2022-01-11 16:47 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-1000
2022-08-31 09:47 - 2021-12-11 14:33 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3404510799-2751662745-2775423546-500
2022-08-31 09:47 - 2021-04-28 19:45 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-08-31 09:47 - 2021-04-28 19:45 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-31 09:40 - 2021-07-10 12:32 - 000000000 ____D C:\Program Files\TeamViewer
2022-08-31 09:40 - 2020-08-12 17:36 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-08-31 09:40 - 2020-08-12 17:20 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-26 07:18 - 2021-08-10 09:06 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2022-08-26 07:16 - 2021-08-10 09:02 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-08-19 22:59 - 2019-12-07 11:03 - 001048576 _____ C:\Windows\system32\config\BBI
2022-08-19 22:40 - 2022-03-11 11:56 - 000001880 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unlocker.lnk
2022-08-19 22:40 - 2022-03-11 11:56 - 000000000 ____D C:\Program Files\Unlocker
2022-08-19 22:23 - 2022-03-11 18:26 - 000000000 ____D C:\Program Files\KMSpico
2022-08-19 22:18 - 2022-03-11 17:55 - 000000000 ____D C:\ProgramData\DiskOptimizer
2022-08-19 22:17 - 2022-03-11 18:04 - 000000004 _____ C:\ProgramData\lock.dat
2022-08-19 22:16 - 2022-03-11 18:05 - 000000004 _____ C:\ProgramData\rc.dat
2022-08-19 22:04 - 2022-03-11 18:04 - 000000716 _____ C:\ProgramData\lir.bats
2022-08-19 06:20 - 2020-06-15 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-08-18 10:45 - 2020-12-08 12:17 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Comms
2022-08-17 03:11 - 2020-08-12 19:12 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 03:11 - 2020-08-12 19:12 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-12 16:19 - 2020-12-31 13:28 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\vlc
2022-08-11 07:06 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2022-08-11 06:55 - 2020-08-12 17:26 - 001975210 _____ C:\Windows\system32\PerfStringBackup.INI
2022-08-11 06:55 - 2019-12-07 16:50 - 000866442 _____ C:\Windows\system32\perfh00C.dat
2022-08-11 06:55 - 2019-12-07 16:50 - 000183236 _____ C:\Windows\system32\perfc00C.dat
2022-08-10 23:36 - 2020-08-12 17:20 - 000462760 _____ C:\Windows\system32\FNTCACHE.DAT
2022-08-10 23:35 - 2020-07-11 11:17 - 000001196 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2022-08-10 23:35 - 2020-07-11 11:17 - 000001192 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2022-08-10 23:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2022-08-10 23:32 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-08-10 23:32 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2022-08-10 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2022-08-10 22:21 - 2020-08-12 17:36 - 000004256 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2022-08-10 22:21 - 2020-08-12 17:36 - 000004024 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2022-08-10 19:09 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2022-08-10 19:08 - 2019-11-18 03:27 - 000000000 ____D C:\Windows\system32\MRT
2022-08-10 19:01 - 2019-11-18 03:27 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-08-10 10:42 - 2022-04-05 15:54 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2022-08-10 10:42 - 2022-04-05 15:53 - 000002039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-08-09 21:16 - 2020-08-12 17:28 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
==================== Fichiers à la racine de certains dossiers ========
2022-03-11 18:04 - 2022-08-19 22:17 - 000000004 _____ () C:\ProgramData\lock.dat
2022-03-11 18:05 - 2022-08-19 22:16 - 000000004 _____ () C:\ProgramData\rc.dat
2022-03-11 18:04 - 2022-03-11 18:04 - 000000008 _____ () C:\ProgramData\ts.dat
2022-03-11 18:06 - 2022-03-11 18:06 - 000000068 _____ () C:\Users\Administrateur\AppData\Roaming\changzhi_leidian.data
2022-03-11 18:06 - 2022-03-11 18:06 - 000000076 _____ () C:\Users\Administrateur\AppData\Roaming\changzhi_leidianmac.data
2022-05-14 22:48 - 2022-05-14 22:48 - 000002038 _____ () C:\Users\Administrateur\AppData\Roaming\Microsoft\0b1144e1-e7f4-4cc9-b49e-267862c5518c.tmp
2022-03-11 11:24 - 2022-03-11 11:31 - 000016438 _____ () C:\Users\Administrateur\AppData\Local\partner.bmp
2022-03-06 08:55 - 2022-03-06 08:55 - 000000860 _____ () C:\Users\Administrateur\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================