cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-12-2022
Exécuté par Michel (administrateur) sur MONPC (Hewlett-Packard 110-215ef) (07-12-2022 15:19:54)
Exécuté depuis C:\Users\Michel\Downloads
Profils chargés: Michel
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.2311 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Softex Incorporated -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <3>
(services.exe ->) () [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(services.exe ->) (Panda Security S.L -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Softex Inc.) [Fichier non signé] C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(services.exe ->) (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(svchost.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13895912 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2793016 2013-09-05] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [154680 2013-09-05] (Softex Incorporated -> Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [154680 2013-09-05] (Softex Incorporated -> Hewlett-Packard)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-12] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (Shenzhen Yi Xing Investment Co., Ltd. -> iSkySoft)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282632 2013-04-02] (Canon Inc. -> CANON INC.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2429626781-2298431417-3748343311-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90951536 2020-09-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2429626781-2298431417-3748343311-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38650192 2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2429626781-2298431417-3748343311-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2429626781-2298431417-3748343311-1001\...\Run: [MicrosoftEdgeAutoLaunch_A173C105C75622C361C8E9E571616ABD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3877288 2022-12-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBV.DLL [30208 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [391168 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series XPS: C:\WINDOWS\system32\CNMXLMBV.DLL [394240 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\WINDOWS\system32\hpbprtmon.dll [404992 2013-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
HKLM\Software\...\AppCompatFlags\Custom\wmplayer.exe: [{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb] -> Windows Media Player 64-bit Plug-in Fix
HKLM\Software\...\AppCompatFlags\InstalledSDB\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb [2011-12-11]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.94\Installer\chrmstp.exe [2022-12-03] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2013-09-05] (Softex Inc..) [Fichier non signé]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F3F1B0FA-4775-41d8-8578-436772D93FB4}] -> C:\Program Files\Hewlett-Packard\SimplePass\OmniPassCredProv.dll [2013-09-05] (Softex Inc..) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06AF8A13-209B-42A8-BDB9-B5E6F438ADB1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {06B63CDC-D83D-4F17-A86C-E3C645A05F0D} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {075A0E7E-93F4-48E1-B985-7D178B9C9322} - System32\Tasks\{EA30FECB-B465-4EF7-B671-97B9738ECD8E} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.22.0.107/fr/abandoninstall?page=tsMain
Task: {0B2759F4-7C93-4562-97A1-749B5CA3C272} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (Pas de fichier)
Task: {0BFD837D-B033-4CBA-944F-312B45DF01BA} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {248819CC-34BA-4B80-9365-E83D37E50595} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {25C9AE58-7885-4795-B552-BE9349F7F2CF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Pas de fichier)
Task: {26954951-F6F4-45D6-9180-884FCB45ADEC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe join (Pas de fichier)
Task: {37B4AFA7-5C64-4DC6-8556-E6E601712A70} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Pas de fichier)
Task: {3E5FB240-7E8A-457C-B5D3-7AE0AFFEEFD9} - System32\Tasks\{B3AE94A6-8751-4EFF-80A6-509329D2C57E} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.14.0.104&LastError=404
Task: {44C82B96-EE64-4DD5-A008-76BB474AD072} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {45B8016F-9B97-4800-94B8-3DAFAE661893} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (Pas de fichier)
Task: {4757992D-24F0-43F4-8E4F-4FF1D9F6691C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u (Pas de fichier)
Task: {48C655E2-5437-4EF6-9A34-7A8C4312917B} - System32\Tasks\{0AE4E7C2-E4F4-48D9-A686-2FDF2E502C08} => "c:\program files\internet explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/7.8.0.102/fr/abandoninstall?page=tsPlugin
Task: {503D639F-67C1-4720-A5B5-A6D142C7F8E0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {557E34AE-0655-47EA-97DA-7738E60E78B3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {56AC2D31-5824-4015-9A3F-0406DC451295} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (Pas de fichier)
Task: {5E0F3CE5-148E-4E28-BCE9-87D30F83A1DF} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (Pas de fichier)
Task: {61DBDE45-EC5D-4798-934D-5DC6DE130F4A} - \WPD\SqmUpload_S-1-5-21-2429626781-2298431417-3748343311-1001 -> Pas de fichier <==== ATTENTION
Task: {687FF551-1698-4833-9EDD-9E40BC61C1F9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {81A0FA04-D954-4941-8E5F-99A858BE1DC0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {84FF662A-4421-436C-9BA4-6B52C8630A7F} - System32\Tasks\Christmas Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\xmas.exe /xr (Pas de fichier)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8FD29476-43A3-45AA-9FB1-81E64BBEE435} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {9E63822F-CAB0-4C15-8C9C-518F92DEC4E6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send (Pas de fichier)
Task: {AB6339D0-2371-4927-965A-44DAAAF49A53} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {B390249E-120E-406F-8142-9C7AA114EEDF} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe (Pas de fichier)
Task: {B94EB803-77E3-4BD0-8B51-600BE44BB017} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-11-09] (Piriform Software Ltd -> Piriform)
Task: {BD362AAC-73EF-46AF-B07E-D42E76313722} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {BDF68598-6A3B-419A-83A0-F107310188F2} - System32\Tasks\{4F933184-4CA4-4306-991C-08C0CB8C6906} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Michel\Documents\Setup_FreeConverter.exe -d C:\Users\Michel\Documents
Task: {BEC4753F-87B1-4A15-B894-9929A186A732} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {C296CE9B-CC2B-4048-9CBA-7F0048D4AA8C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {CDEFEF06-1348-4A70-927C-A492DA01A73F} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe /RunUsoScanOnly (Pas de fichier)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {E0772AE8-88D2-4F6E-9A5C-1AB8556A6FF2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {E0E597E6-D231-41B3-88B9-C06ED74B8A7F} - System32\Tasks\CCleanerSkipUAC - Michel => F:\ccsetup576\CCleaner.exe $(Arg0) (Pas de fichier)
Task: {E7671ADB-808C-40C3-A709-F25DA428A867} - System32\Tasks\CCleanerCrashReporting => F:\ccsetup576\CCleanerBugReport.exe -> --product 90 --send dumps|report --path "F:\ccsetup576\LOG" --programpath "F:\ccsetup576" --configpath "F:\ccsetup576\Setup" --guid "57b4aad5-1225-4916-b77d-29c3875a7362" --version "6.04.10044" --silent
Task: {E771EB4C-5765-46D9-8E19-FD508310A358} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {E79836E5-643F-473F-A921-8DCD638A58D8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {EAFC53AB-9290-48F1-AF18-13E484729C89} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => F:\ccsetup576\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{d04a074c-0393-420e-9ff5-49ada0f2808c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{faa6612f-40fb-4836-a8cd-e73f937aea28}: [DhcpNameServer] 192.168.50.1

Edge:
=======
DownloadDir: C:\Users\Michel\Downloads
Edge Notifications: HKU\S-1-5-21-2429626781-2298431417-3748343311-1001 -> hxxps://www.wondershare.net; hxxps://www.cnetfrance.fr
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-05-22]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-07]
Edge HomePage: Default -> hxxp://www.google.com/
Edge StartupUrls: Default -> "hxxp://www.google.com/"
Edge Extension: (Blur.live Ultimate) - C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfkfcpaiggoahgkdmakiaeiogebpcdbk [2022-07-21]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2022-11-22]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-11-22]
Edge Extension: (uBlock Origin) - C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2022-11-22]
Edge Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\Michel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\phhhmbgggfifgikoihlakngnngdehhfe [2022-09-16]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [Fichier non signé]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default [2022-12-07]
CHR Notifications: Default -> hxxps://filmora.wondershare.fr; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (uBlock Origin) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-11-22]
CHR Extension: (Avast Online Security & Privacy (BETA)) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2022-11-29]
CHR Extension: (Blur.live Ultimate) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\elfhgaheiifomcjlchhhkfhkplhnkepl [2022-05-17]
CHR Extension: (Avast SafePrice | Comparateur de prix, offres, coupons) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-09-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-30]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-11-16]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R2 Cachedrv server; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [109568 2013-09-05] () [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2022-11-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398792 2019-02-28] (Canon Inc. -> )
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7901368 2022-12-05] (Malwarebytes Inc -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [87552 2013-09-05] (Softex Inc.) [Fichier non signé]
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [86104 2016-07-19] (Panda Security S.L -> Panda Security, S.L.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12054872 2019-10-10] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [37104 2022-05-30] (Avast Software s.r.o. -> WireGuard LLC)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2022-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [41848 2020-07-07] (IObit Information Technology -> IObit)
S3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2020-07-07] (IObit Information Technology -> IObit)
S3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [45432 2020-07-07] (IObit Information Technology -> IObit)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2022-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2022-12-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2022-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2022-12-05] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2022-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [469288 2022-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-16] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslcc185a44; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{206FF361-2E32-43EC-86C3-339879FC24EB}\MpKslDrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-12-07 13:46 - 2022-12-07 13:46 - 000095089 _____ C:\Users\Michel\Downloads\Courrier PF.pdf
2022-12-07 11:52 - 2022-12-07 11:52 - 000000872 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2022-12-07 11:52 - 2022-12-07 11:52 - 000000860 _____ C:\Users\Public\Desktop\Audacity.lnk
2022-12-07 10:32 - 2022-12-07 11:52 - 000000000 ____D C:\Program Files\Audacity
2022-12-07 09:47 - 2022-12-07 09:47 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-12-07 09:47 - 2022-12-07 09:47 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-12-07 09:47 - 2022-12-07 09:47 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-12-07 09:36 - 2022-12-07 09:36 - 000012261 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-12-07 09:35 - 2022-12-07 09:35 - 000297472 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-12-07 09:16 - 2022-12-07 09:16 - 000000000 ___HD C:\$WinREAgent
2022-12-06 19:02 - 2022-12-07 15:03 - 000000000 ____D C:\Users\Michel\AppData\LocalLow\IGDump
2022-12-06 11:50 - 2022-12-06 19:01 - 000000664 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-12-06 11:50 - 2022-12-06 11:50 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-12-06 11:45 - 2022-12-06 11:45 - 000000000 ____D C:\ProgramData\GlarySoft
2022-12-06 11:40 - 2022-12-06 11:40 - 000000000 ____D C:\Users\Michel\AppData\Roaming\GlarySoft
2022-12-06 10:45 - 2022-12-06 11:40 - 000000000 ____D C:\ProgramData\RogueKiller
2022-12-06 10:44 - 2022-12-06 10:44 - 000010397 _____ C:\Users\Michel\Desktop\ZHPCleaner (S).html
2022-12-06 10:44 - 2022-12-06 10:44 - 000003494 _____ C:\Users\Michel\Desktop\ZHPCleaner (S).txt
2022-12-06 10:28 - 2022-12-06 10:28 - 000000921 _____ C:\Users\Michel\Desktop\ZHPCleaner.lnk
2022-12-05 17:27 - 2022-12-05 17:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-12-05 17:27 - 2022-12-05 17:27 - 000210352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-12-05 17:27 - 2022-12-05 17:27 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2022-12-05 17:27 - 2022-12-05 17:27 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2022-12-05 17:27 - 2022-12-05 17:27 - 000002048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-12-05 17:27 - 2022-12-05 17:27 - 000002036 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-12-05 05:52 - 2022-12-05 06:00 - 000066405 _____ C:\Users\Michel\Downloads\Addition.txt
2022-12-05 05:49 - 2022-12-07 15:21 - 000031673 _____ C:\Users\Michel\Downloads\FRST.txt
2022-12-05 05:49 - 2022-12-07 15:21 - 000000000 ____D C:\FRST
2022-12-05 05:35 - 2022-12-05 05:35 - 002375680 _____ (Farbar) C:\Users\Michel\Downloads\FRST64.exe
2022-12-03 17:22 - 2022-12-05 17:26 - 000000000 ____D C:\Program Files\Malwarebytes
2022-12-01 06:07 - 2022-12-01 06:07 - 003509960 _____ (Nicolas Coolman) C:\Users\Michel\ZHPSuite.exe
2022-11-30 16:46 - 2022-11-30 16:46 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2429626781-2298431417-3748343311-1001
2022-11-30 16:46 - 2022-11-30 16:46 - 000002467 _____ C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-11-29 05:59 - 2022-12-06 10:28 - 000000000 ____D C:\Users\Michel\AppData\Local\ZHP
2022-11-27 07:40 - 2022-11-28 13:05 - 000000000 ____D C:\Users\Michel\Documents\Deces Monique
2022-11-23 06:56 - 2022-11-23 08:15 - 001440054 _____ C:\Users\Michel\Documents\anniversaire LOLO.bmp
2022-11-22 07:55 - 2022-11-22 07:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-11-22 07:55 - 2022-11-22 07:55 - 000002082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-11-22 07:55 - 2022-11-22 07:55 - 000002070 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-11-22 07:51 - 2022-11-22 07:51 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-11-22 07:51 - 2022-11-22 07:51 - 000002258 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2022-11-18 15:35 - 2022-11-19 10:15 - 000000000 ____D C:\Program Files\RUXIM
2022-11-16 14:40 - 2022-12-07 08:34 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-11-12 07:53 - 2020-05-29 05:00 - 003646378 _____ C:\Users\Michel\Documents\VID-20191027-WA00051.mp4
2022-11-12 07:48 - 2022-11-12 07:48 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-11-12 07:48 - 2022-11-12 07:48 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-12-07 15:02 - 2020-10-07 06:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-12-07 14:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-12-07 14:41 - 2020-05-26 04:40 - 000000000 ____D C:\Users\Michel\AppData\Local\CrashDumps
2022-12-07 14:34 - 2014-06-23 10:55 - 000000000 ____D C:\Program Files (x86)\Google
2022-12-07 14:03 - 2014-08-05 05:59 - 000000000 ____D C:\Users\Michel\AppData\Roaming\Audacity
2022-12-07 13:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-12-07 13:01 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-12-07 13:01 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-12-07 12:58 - 2014-11-06 16:48 - 000000000 __SHD C:\Users\Michel\IntelGraphicsProfiles
2022-12-07 11:11 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-12-07 10:22 - 2020-10-07 06:18 - 001923902 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-12-07 10:22 - 2019-12-07 15:49 - 000831776 _____ C:\WINDOWS\system32\perfh00C.dat
2022-12-07 10:22 - 2019-12-07 15:49 - 000167542 _____ C:\WINDOWS\system32\perfc00C.dat
2022-12-07 10:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-12-07 09:47 - 2014-06-23 17:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-12-07 09:46 - 2020-10-07 06:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-12-07 09:46 - 2020-10-07 06:01 - 000512072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-12-07 09:46 - 2020-10-07 06:01 - 000008192 ___SH C:\DumpStack.log.tmp
2022-12-07 09:46 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-12-07 09:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-12-07 09:43 - 2020-07-06 08:24 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-12-07 09:43 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-12-07 09:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-12-07 09:35 - 2020-10-07 06:05 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-12-07 08:49 - 2020-10-07 06:25 - 000004160 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A333FFCD-B8AE-4EE5-950C-8D9C1C344831}
2022-12-06 11:55 - 2020-05-25 10:34 - 000000000 ____D C:\Users\Michel\AppData\Local\D3DSCache
2022-12-06 11:50 - 2021-08-21 09:17 - 000002864 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Michel
2022-12-06 11:49 - 2014-06-23 17:21 - 000000000 ____D C:\Users\Michel\AppData\Roaming\TeamViewer
2022-12-06 10:44 - 2015-06-26 05:26 - 000000000 ____D C:\Users\Michel\AppData\Roaming\ZHP
2022-12-06 10:25 - 2016-09-10 06:59 - 000000000 ____D C:\Program Files\CCleaner
2022-12-06 10:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-12-06 03:19 - 2016-02-11 05:40 - 000000000 ____D C:\Program Files (x86)\PowerpointImageExtractor_V1_2
2022-12-06 03:08 - 2020-01-03 05:45 - 000000000 ___RD C:\Users\Michel\Documents\COURRIERS FACTURES CONTRATS
2022-12-06 03:05 - 2020-10-07 05:06 - 000000000 ____D C:\Users\Michel
2022-12-05 17:27 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-12-05 17:26 - 2014-06-23 18:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-12-05 06:40 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-12-03 17:15 - 2020-11-13 12:40 - 000000000 ____D C:\Users\Michel\AppData\Roaming\IObit
2022-12-03 17:15 - 2020-11-13 12:40 - 000000000 ____D C:\Users\Michel\AppData\LocalLow\IObit
2022-12-03 17:15 - 2020-11-13 12:40 - 000000000 ____D C:\Program Files (x86)\IObit
2022-12-03 17:15 - 2020-05-22 13:54 - 000000000 ____D C:\ProgramData\IObit
2022-12-03 07:10 - 2014-06-23 10:52 - 000000000 ____D C:\ProgramData\AVAST Software
2022-12-03 07:02 - 2020-10-07 06:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-12-03 06:24 - 2018-01-08 06:44 - 000000000 ____D C:\AdwCleaner
2022-12-01 18:38 - 2020-01-27 11:14 - 000000000 ___RD C:\Users\Michel\Documents\A COMPTEURS chauffage eau chaude et froide EDF
2022-11-30 16:46 - 2021-12-14 06:07 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2429626781-2298431417-3748343311-1001
2022-11-30 05:51 - 2015-07-08 05:01 - 000004793 _____ C:\WINDOWS\wininit.ini
2022-11-28 09:16 - 2020-01-03 05:45 - 000000000 ___RD C:\Users\Michel\Documents\FOURTOUTet adresses
2022-11-28 09:12 - 2018-03-05 11:56 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-11-28 05:03 - 2014-07-04 03:09 - 000001190 _____ C:\Users\Michel\Desktop\Paint.lnk
2022-11-26 09:28 - 2021-05-31 05:13 - 000000000 ____D C:\Users\Michel\AppData\Local\Audacity
2022-11-26 09:25 - 2019-10-19 10:19 - 000000000 ____D C:\Program Files (x86)\Audacity
2022-11-24 08:15 - 2020-08-14 09:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-11-23 06:15 - 2014-06-27 03:37 - 000001944 _____ C:\Users\Michel\Desktop\PhotoFiltre.exe - Raccourci.lnk
2022-11-23 06:10 - 2017-02-24 06:00 - 000000000 ____D C:\Users\Michel\AppData\Roaming\vlc
2022-11-22 07:58 - 2022-09-14 10:21 - 000000000 ____D C:\Users\Michel\AppData\Roaming\com.adobe.dunamis
2022-11-22 07:58 - 2021-03-06 05:44 - 000000000 ____D C:\Users\Michel\Documents\MAAF
2022-11-22 07:51 - 2015-09-23 04:18 - 000000000 ____D C:\Program Files\Google
2022-11-18 15:35 - 2018-01-13 06:27 - 000000000 ____D C:\Program Files\rempl
2022-11-17 16:02 - 2020-06-02 08:16 - 000009728 _____ C:\Users\Michel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-11-16 14:22 - 2020-10-07 06:25 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-16 14:22 - 2020-10-07 06:25 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-16 14:21 - 2018-05-27 08:53 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-11-12 08:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-11-09 17:29 - 2014-06-24 13:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-11-09 17:23 - 2014-06-24 13:28 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Fichiers à la racine de certains dossiers ========

2022-12-01 06:07 - 2022-12-01 06:07 - 003509960 _____ (Nicolas Coolman) C:\Users\Michel\ZHPSuite.exe
2017-04-30 04:44 - 2017-04-30 04:44 - 007649280 _____ () C:\Program Files (x86)\GUT534F.tmp
2016-09-27 04:53 - 2016-09-27 05:05 - 000000115 _____ () C:\Users\Michel\AppData\Roaming\LogFile.txt
2019-12-01 06:53 - 2019-12-01 07:06 - 000393487 _____ () C:\Users\Michel\AppData\Roaming\VideoPad.dmp
2019-10-28 15:54 - 2019-11-27 13:39 - 000000716 ____H () C:\Users\Michel\AppData\Roaming\{5147E757-89BD-661D-15ED-6D0B8D8C1DDB}
2020-06-02 08:16 - 2022-11-17 16:02 - 000009728 _____ () C:\Users\Michel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-05-02 08:06 - 2018-05-14 04:58 - 000004096 ____H () C:\Users\Michel\AppData\Local\keyfile3.drm
2017-06-12 09:10 - 2017-06-12 09:10 - 000000017 _____ () C:\Users\Michel\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================

Publicité


Signaler le contenu de ce document

Publicité