Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Exécuté par Administrateur (administrateur) sur DESKTOP-G05ESB3 (Intel(R) Client Systems NUC7i3DNHE) (29-09-2024 13:38:27)
Exécuté depuis C:\Users\Administrateur\Downloads\FRST64.exe
Profils chargés: Administrateur
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxEM.exe
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) () [Fichier non signé] C:\Fitec\Schemaplic\SchemaplicSrvSr.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Sonos\SonosLibraryService.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\ElevationService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b16f8c7f597d113d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> ) C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe
(services.exe ->) (Wondershare) [Fichier non signé] C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC. -> CANON INC.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [Backup] => C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\DrFoneBackup.exe /hide (Pas de fichier)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\Run: [MicrosoftEdgeAutoLaunch_CCCA44AA8D699D9C2E3BA767756A8AE5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-09-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ND\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [66108320 2024-02-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ND\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12256672 2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-09-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\MountPoints2: {1bf44cfc-2cbf-11eb-8383-d0abd545611c} - "E:\startme.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [152064 2013-01-31] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon WSD Language Monitor: C:\WINDOWS\system32\cnnx0_flm.dll [1498112 2014-04-10] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.71\Installer\chrmstp.exe [2024-09-29] (Google LLC -> Google LLC)
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {78F34170-44F0-48AB-9501-32D22B2B0DE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {8C467B28-2BBF-4268-8295-E9FEB3053E77} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {734C1D72-937D-43D7-BF07-E6A6206F5950} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F98E6188-A0D2-4C0D-9C75-206E735A9A48} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {43BA3055-F509-40B0-B61D-768F772E9063} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {278E41C2-0BCD-4BB3-A3B0-619B10A2D378} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {E216CEC8-C147-405F-8D72-D735DE34024D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {79E378A4-D720-491A-8CD7-428E9B9453D0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7567B83D-8B93-4657-B24E-B4C9719CB677} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E6D423F-2FF2-4F26-8DB1-DE9D2D91CF4B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {4100FB93-BC88-460F-A7E7-E0CC79FB5BBF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {305C8FCD-D68B-4358-BB95-1D5BD9C88368} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70814C43-D5A0-4326-975F-DD7F36C4654B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FA62D9C1-0067-4343-A3E5-20ED76796974} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D521A177-64B2-458C-A23A-F6ED8C451A62} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4EB01D2-0BC4-4911-B1EB-D08C3C6BDF55} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2658046708-696331542-2478491235-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {B5FFC9D2-CCE6-4CA2-B38B-7FE91BBCBFCF} - System32\Tasks\OneDrive Standalone Update Task-S-1-12-1-3235991928-1201836235-1882932916-1731298099 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {BAE4F64B-7E61-4966-A4C2-5BB72A8E7E47} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2658046708-696331542-2478491235-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {76083428-6FDE-472B-9903-A0E827753A2D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2658046708-696331542-2478491235-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {E2F90ED4-2D5A-407F-8D48-E3563BF61D35} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [196608 2024-07-10] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{2aebde06-4511-4757-b624-329d792765aa}: [DhcpNameServer] 212.27.40.240 212.27.40.241 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{6f5c6acb-0c46-4327-86eb-a6a2620502ff}: [DhcpNameServer] 192.168.232.131
Tcpip\..\Interfaces\{6f5c6acb-0c46-4327-86eb-a6a2620502ff}\3416C696D65627F6: [DhcpNameServer] 192.168.43.114
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-29]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2024-09-29] [non signé]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2024-09-28]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://www.interactivebrokers.co.uk
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (Google Play Musique) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-22]
CHR Extension: (Bureau à distance Google Chrome) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-01-24]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2020-01-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-30]
CHR Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-19]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-09-25]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-05-01]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-03-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-30]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-12]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-12]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-08-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-12]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-04-19]
CHR Extension: (Google Play Music) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-04-23]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-12]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-09-29]
CHR Notifications: Profile 3 -> hxxps://calendar.google.com; hxxps://esi-local.fr4.quickconnect.to; hxxps://fr.tradingview.com; hxxps://pro.kraken.com
CHR Extension: (Authenticator) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2024-08-28]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-01]
CHR Extension: (ShiftEdit) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2020-06-13]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-09-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-09-25]
CHR Extension: (uBlock Origin) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-08-08]
CHR Extension: (I still don't care about cookies) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\edibdbjcniadpccecjdfdjjppcpchdlm [2024-01-16]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-22]
CHR Extension: (Never Ending Netflix) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\hdadmgabliibighlbejhlglfjgplfmhb [2024-01-16]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-28]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-29]
CHR HKU\S-1-5-21-2658046708-696331542-2478491235-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2658046708-696331542-2478491235-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
R2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\ElevationService.exe [907776 2022-10-21] () [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SignalR Server; C:\Fitec\Schemaplic\SchemaplicSrvSr.exe [862208 2021-10-04] () [Fichier non signé]
R2 SonosLibraryService; C:\Program Files (x86)\Sonos\SonosLibraryService.exe [27648 2023-01-03] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe [3101944 2022-09-05] (Wondershare Technology Group Co.,Ltd -> )
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [256000 2022-04-18] (Wondershare) [Fichier non signé]
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X]
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_f3c6513565231a23\e1d.sys [609456 2023-01-10] (Intel Corporation -> Intel Corporation)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl562473b1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D41921B2-4F37-4822-A023-56BC2E2AD41A}\MpKslDrv.sys [267552 2024-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-29 13:38 - 2024-09-29 13:39 - 000029233 _____ C:\Users\Administrateur\Downloads\FRST.txt
2024-09-29 13:38 - 2024-09-29 13:38 - 000000000 ____D C:\FRST
2024-09-29 13:36 - 2024-09-29 13:36 - 002397696 _____ (Farbar) C:\Users\Administrateur\Downloads\FRST64.exe
2024-09-29 05:47 - 2024-09-29 05:47 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (3).exe
2024-09-29 05:39 - 2024-09-29 05:39 - 002208061 _____ C:\Users\Administrateur\Downloads\serialio_win10_30.100.1943.2.zip
2024-09-29 05:38 - 2024-09-29 05:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2024-09-29 05:37 - 2024-09-29 05:38 - 000000000 ____D C:\Program Files\Common Files\Logishrd
2024-09-29 05:37 - 2024-09-29 05:37 - 084358072 _____ (Logitech Inc.) C:\Users\Administrateur\Downloads\SetPoint6.90.66_64.exe
2024-09-29 05:37 - 2024-09-29 05:37 - 000000000 ____D C:\Program Files\Logitech
2024-09-29 05:34 - 2024-09-29 05:34 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (2).exe
2024-09-29 05:34 - 2024-09-29 05:34 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (1).exe
2024-09-29 05:31 - 2024-09-29 05:31 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-29 05:31 - 2024-09-29 05:31 - 000002164 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-29 05:30 - 2024-09-29 05:30 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (5).exe
2024-09-29 05:30 - 2024-09-29 05:30 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (4).exe
2024-09-29 05:29 - 2024-09-29 05:29 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (3).exe
2024-09-29 05:29 - 2024-09-29 05:29 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (2).exe
2024-09-26 06:19 - 2024-09-26 06:19 - 000191846 _____ C:\Users\Administrateur\Downloads\SPT_460993.pdf
2024-09-25 21:22 - 2024-09-25 21:23 - 000000000 ____D C:\AdwCleaner
2024-09-25 21:22 - 2024-09-25 21:22 - 008790880 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner.exe
2024-09-25 21:20 - 2024-09-25 21:20 - 000000772 _____ C:\Users\Administrateur\Desktop\ZHPFix.txt
2024-09-25 21:16 - 2024-09-25 21:16 - 000414829 _____ C:\Users\Administrateur\Desktop\ZHPDiag.html
2024-09-25 21:10 - 2024-09-25 21:10 - 003539144 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPSuite.exe
2024-09-25 21:10 - 2024-09-25 21:10 - 000000874 _____ C:\Users\Administrateur\Desktop\ZHPSuite.lnk
2024-09-25 20:33 - 2024-09-25 20:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\AVG
2024-09-25 20:32 - 2024-09-25 21:06 - 000000000 ____D C:\ProgramData\AVG
2024-09-25 20:31 - 2024-09-25 20:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-09-25 20:30 - 2024-09-25 20:31 - 075981320 _____ (Piriform Software Ltd) C:\Users\Administrateur\Downloads\ccsetup628.exe
2024-09-25 20:11 - 2024-09-25 21:06 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\IGDump
2024-09-25 20:10 - 2024-09-25 20:10 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (3).exe
2024-09-25 20:09 - 2024-09-25 20:09 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (2).exe
2024-09-25 20:08 - 2024-09-25 20:08 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (1).exe
2024-09-25 19:58 - 2024-09-25 21:40 - 000330754 _____ C:\Users\Administrateur\Desktop\ZHPDiag.txt
2024-09-25 19:44 - 2024-09-25 21:40 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\ZHP
2024-09-25 19:44 - 2024-09-25 21:32 - 000000874 _____ C:\Users\Administrateur\Desktop\ZHPDiag.lnk
2024-09-25 19:44 - 2024-09-25 21:10 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ZHP
2024-09-25 19:43 - 2024-09-25 19:43 - 003370696 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPDiag3.exe
2024-09-25 19:43 - 2024-09-25 19:43 - 003370696 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPDiag3 (1).exe
2024-09-22 13:02 - 2024-09-22 13:03 - 000000000 ____D C:\Users\Administrateur\Downloads\MF212w_e-Manual_FR_1
2024-09-22 13:01 - 2024-09-22 13:02 - 009345309 _____ C:\Users\Administrateur\Downloads\MF212w_e-Manual_FR_1.zip
2024-09-17 09:15 - 2024-09-17 09:15 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-09-15 10:06 - 2024-09-15 10:06 - 1073741824 _____ C:\Users\Administrateur\Downloads\1G (1)
2024-09-15 09:24 - 2024-09-15 09:25 - 1073741824 _____ C:\Users\Administrateur\Downloads\1G
2024-09-13 14:07 - 2024-09-13 14:07 - 000027945 _____ C:\Users\Administrateur\Downloads\330861.pdf
2024-09-13 14:07 - 2024-09-13 14:07 - 000027621 _____ C:\Users\Administrateur\Downloads\432066.pdf
2024-09-11 14:07 - 2024-09-11 14:07 - 000000000 ___HD C:\$WinREAgent
2024-09-05 19:08 - 2024-09-05 19:07 - 000247300 _____ C:\Users\Administrateur\Desktop\Facture Scanner poumon 5.9.24.jpeg
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-29 13:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-29 12:50 - 2020-06-13 00:25 - 001775468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-29 12:50 - 2019-12-07 16:50 - 000793054 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-29 12:50 - 2019-12-07 16:50 - 000150718 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-29 12:50 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-09-29 12:46 - 2021-12-15 10:33 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-29 12:46 - 2020-06-13 00:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-29 12:46 - 2020-06-13 00:23 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-29 12:46 - 2020-01-24 17:49 - 000000000 __SHD C:\Users\Administrateur\IntelGraphicsProfiles
2024-09-29 12:46 - 2020-01-24 12:31 - 000000000 ____D C:\Intel
2024-09-29 12:45 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-29 10:44 - 2020-01-24 17:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Word
2024-09-29 08:22 - 2020-06-13 00:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-29 06:23 - 2020-04-23 08:49 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2024-09-29 05:41 - 2024-02-17 23:37 - 000000000 ____D C:\Users\Administrateur\Downloads\SerialIO_Win10_30.100.1943.2
2024-09-29 05:41 - 2022-12-28 11:04 - 000000000 ____D C:\Program Files\Intel
2024-09-29 05:38 - 2024-02-17 23:36 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2024-09-29 05:37 - 2024-02-17 20:48 - 000000000 ____D C:\ProgramData\Logishrd
2024-09-29 05:33 - 2020-01-24 17:49 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2024-09-29 05:31 - 2022-12-24 18:41 - 000000000 ____D C:\Program Files\Google
2024-09-29 01:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-29 01:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-28 14:16 - 2020-09-02 19:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-28 08:49 - 2020-06-13 00:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-25 21:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-25 21:07 - 2021-05-12 13:13 - 000000000 ____D C:\ProgramData\Wondershare
2024-09-25 21:05 - 2022-11-05 09:02 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\FileZilla
2024-09-25 21:05 - 2020-06-12 03:42 - 000000000 ___DC C:\WINDOWS\Panther
2024-09-25 21:04 - 2022-12-26 10:06 - 000000000 ____D C:\WINDOWS\Minidump
2024-09-25 21:04 - 2022-01-05 23:36 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2024-09-25 20:54 - 2022-11-05 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2024-09-25 20:53 - 2020-07-15 07:18 - 000000000 ____D C:\Jts
2024-09-25 20:51 - 2020-06-12 23:28 - 000000000 ____D C:\Users\Administrateur
2024-09-25 20:51 - 2020-04-18 11:08 - 000000000 ____D C:\ProgramData\NCH Software
2024-09-25 20:51 - 2020-04-18 11:08 - 000000000 ____D C:\Program Files (x86)\NCH Software
2024-09-25 19:26 - 2022-09-14 10:44 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\com.adobe.dunamis
2024-09-25 19:26 - 2020-01-24 18:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Adobe
2024-09-25 19:26 - 2020-01-24 17:49 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Adobe
2024-09-24 06:47 - 2022-10-11 21:31 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-24 06:47 - 2022-10-11 21:31 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-09-19 18:00 - 2020-01-24 17:50 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Excel
2024-09-17 20:29 - 2020-01-24 19:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-17 09:15 - 2022-12-28 11:05 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-09-17 09:15 - 2022-12-28 11:05 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-09-14 17:02 - 2020-10-24 10:18 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\WhatsApp
2024-09-13 13:04 - 2020-02-08 20:21 - 000000000 ____D C:\ProgramData\Sonos,_Inc
2024-09-12 08:55 - 2024-02-17 20:49 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Logishrd
2024-09-12 08:52 - 2023-09-22 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Legrand
2024-09-12 08:52 - 2023-09-22 22:48 - 000000000 ____D C:\Program Files (x86)\Legrand
2024-09-12 08:51 - 2022-12-28 11:04 - 000000000 ____D C:\ProgramData\Package Cache
2024-09-12 08:51 - 2022-12-28 11:04 - 000000000 ____D C:\Program Files (x86)\Intel
2024-09-12 08:11 - 2020-07-03 08:30 - 000000000 ___RD C:\Users\Administrateur\Documents\Scanned Documents
2024-09-12 08:08 - 2020-06-13 00:23 - 000296448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-12 08:07 - 2019-12-07 16:53 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-09-12 08:07 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 17:09 - 2023-08-06 10:19 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002080 _____ C:\Users\Administrateur\Desktop\Google Slides.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002080 _____ C:\Users\Administrateur\Desktop\Google Sheets.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002068 _____ C:\Users\Administrateur\Desktop\Google Docs.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002044 _____ C:\Users\Administrateur\Desktop\Google Drive.lnk
2024-09-11 14:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 14:13 - 2020-06-13 00:23 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-11 08:09 - 2020-01-24 13:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 08:04 - 2020-01-24 13:40 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 07:31 - 2020-01-24 14:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-09-09 12:10 - 2020-09-02 19:30 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 12:10 - 2020-09-02 19:30 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2020-02-03 08:38 - 2020-02-03 08:38 - 000024992 _____ () C:\Users\Administrateur\AppData\Roaming\Valeurs séparées par une virgule.ADR
2020-02-03 08:37 - 2020-06-03 06:48 - 000009318 _____ () C:\Users\Administrateur\AppData\Roaming\Valeurs séparées par une virgule.EML
2023-07-03 23:33 - 2023-07-03 23:33 - 000001860 _____ () C:\Users\Administrateur\AppData\Local\recently-used.xbel
2020-09-25 18:42 - 2020-09-25 18:42 - 000007603 _____ () C:\Users\Administrateur\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Administrateur (administrateur) sur DESKTOP-G05ESB3 (Intel(R) Client Systems NUC7i3DNHE) (29-09-2024 13:38:27)
Exécuté depuis C:\Users\Administrateur\Downloads\FRST64.exe
Profils chargés: Administrateur
Plate-forme: Microsoft Windows 10 Professionnel Version 22H2 19045.4894 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxEM.exe
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(services.exe ->) () [Fichier non signé] C:\Fitec\Schemaplic\SchemaplicSrvSr.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Sonos\SonosLibraryService.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\ElevationService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_c3e9728f5ed0ccde\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b16f8c7f597d113d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_aa98f7d289749142\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> ) C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe
(services.exe ->) (Wondershare) [Fichier non signé] C:\ProgramData\Wondershare\Service\InstallAssistService.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC. -> CANON INC.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Pas de fichier)
HKLM-x32\...\Run: [Backup] => C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\DrFoneBackup.exe /hide (Pas de fichier)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\Run: [MicrosoftEdgeAutoLaunch_CCCA44AA8D699D9C2E3BA767756A8AE5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-09-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ND\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" [66108320 2024-02-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\ND\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Pas de fichier)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12256672 2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\Run: [MicrosoftEdgeAutoLaunch_9987CEAFA1939BF8A5BD47FB8E54B0C5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3794984 2024-09-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2658046708-696331542-2478491235-500\...\MountPoints2: {1bf44cfc-2cbf-11eb-8383-d0abd545611c} - "E:\startme.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\97.0.1.0\GoogleDriveFS.exe [61368936 2024-09-11] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [152064 2013-01-31] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\Canon WSD Language Monitor: C:\WINDOWS\system32\cnnx0_flm.dll [1498112 2014-04-10] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.71\Installer\chrmstp.exe [2024-09-29] (Google LLC -> Google LLC)
GroupPolicy: Restriction - Edge <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {78F34170-44F0-48AB-9501-32D22B2B0DE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {8C467B28-2BBF-4268-8295-E9FEB3053E77} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Pas de fichier)
Task: {734C1D72-937D-43D7-BF07-E6A6206F5950} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{F98E6188-A0D2-4C0D-9C75-206E735A9A48} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {43BA3055-F509-40B0-B61D-768F772E9063} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {278E41C2-0BCD-4BB3-A3B0-619B10A2D378} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {E216CEC8-C147-405F-8D72-D735DE34024D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Pas de fichier)
Task: {79E378A4-D720-491A-8CD7-428E9B9453D0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7567B83D-8B93-4657-B24E-B4C9719CB677} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E6D423F-2FF2-4F26-8DB1-DE9D2D91CF4B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {4100FB93-BC88-460F-A7E7-E0CC79FB5BBF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222872 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {305C8FCD-D68B-4358-BB95-1D5BD9C88368} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {70814C43-D5A0-4326-975F-DD7F36C4654B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FA62D9C1-0067-4343-A3E5-20ED76796974} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D521A177-64B2-458C-A23A-F6ED8C451A62} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F4EB01D2-0BC4-4911-B1EB-D08C3C6BDF55} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2658046708-696331542-2478491235-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Pas de fichier)
Task: {B5FFC9D2-CCE6-4CA2-B38B-7FE91BBCBFCF} - System32\Tasks\OneDrive Standalone Update Task-S-1-12-1-3235991928-1201836235-1882932916-1731298099 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {BAE4F64B-7E61-4966-A4C2-5BB72A8E7E47} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2658046708-696331542-2478491235-1002 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {76083428-6FDE-472B-9903-A0E827753A2D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2658046708-696331542-2478491235-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Pas de fichier)
Task: {E2F90ED4-2D5A-407F-8D48-E3563BF61D35} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [196608 2024-07-10] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-31] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{2aebde06-4511-4757-b624-329d792765aa}: [DhcpNameServer] 212.27.40.240 212.27.40.241 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{6f5c6acb-0c46-4327-86eb-a6a2620502ff}: [DhcpNameServer] 192.168.232.131
Tcpip\..\Interfaces\{6f5c6acb-0c46-4327-86eb-a6a2620502ff}\3416C696D65627F6: [DhcpNameServer] 192.168.43.114
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-29]
Edge Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Administrateur\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2024-09-29] [non signé]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-09] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default [2024-09-28]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://www.interactivebrokers.co.uk
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-04]
CHR Extension: (Google Play Musique) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-22]
CHR Extension: (Bureau à distance Google Chrome) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2020-01-24]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2020-01-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-30]
CHR Extension: (AdBlock - bloquez les publicités sur le web) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-09-19]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-09-25]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-05-01]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-30]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-03-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-30]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-12]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-12]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2024-08-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-08-12]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-09-25]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-04-19]
CHR Extension: (Google Play Music) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-04-23]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-07]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-12]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3 [2024-09-29]
CHR Notifications: Profile 3 -> hxxps://calendar.google.com; hxxps://esi-local.fr4.quickconnect.to; hxxps://fr.tradingview.com; hxxps://pro.kraken.com
CHR Extension: (Authenticator) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2024-08-28]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-09-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-01]
CHR Extension: (ShiftEdit) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lcgmndephhjcabhhjfcmncnhbmgbkpij [2020-06-13]
CHR Extension: (Lanceur d'applications pour Drive (par Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-09-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5 [2024-09-25]
CHR Extension: (uBlock Origin) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-08-08]
CHR Extension: (I still don't care about cookies) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\edibdbjcniadpccecjdfdjjppcpchdlm [2024-01-16]
CHR Extension: (Google Docs Offline) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-22]
CHR Extension: (Never Ending Netflix) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\hdadmgabliibighlbejhlglfjgplfmhb [2024-01-16]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-11-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-28]
CHR Profile: C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-29]
CHR HKU\S-1-5-21-2658046708-696331542-2478491235-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2658046708-696331542-2478491235-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042808 2024-09-10] (Microsoft Corporation -> Microsoft Corporation)
R2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\ElevationService.exe [907776 2022-10-21] () [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530488 2024-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SignalR Server; C:\Fitec\Schemaplic\SchemaplicSrvSr.exe [862208 2021-10-04] () [Fichier non signé]
R2 SonosLibraryService; C:\Program Files (x86)\Sonos\SonosLibraryService.exe [27648 2023-01-03] () [Fichier non signé]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe [3101944 2022-09-05] (Wondershare Technology Group Co.,Ltd -> )
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [256000 2022-04-18] (Wondershare) [Fichier non signé]
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X]
S2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Addins\Repair\DriverInstall.exe [X]
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_f3c6513565231a23\e1d.sys [609456 2023-01-10] (Intel Corporation -> Intel Corporation)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 MpKsl562473b1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D41921B2-4F37-4822-A023-56BC2E2AD41A}\MpKslDrv.sys [267552 2024-09-29] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-29 13:38 - 2024-09-29 13:39 - 000029233 _____ C:\Users\Administrateur\Downloads\FRST.txt
2024-09-29 13:38 - 2024-09-29 13:38 - 000000000 ____D C:\FRST
2024-09-29 13:36 - 2024-09-29 13:36 - 002397696 _____ (Farbar) C:\Users\Administrateur\Downloads\FRST64.exe
2024-09-29 05:47 - 2024-09-29 05:47 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (3).exe
2024-09-29 05:39 - 2024-09-29 05:39 - 002208061 _____ C:\Users\Administrateur\Downloads\serialio_win10_30.100.1943.2.zip
2024-09-29 05:38 - 2024-09-29 05:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2024-09-29 05:37 - 2024-09-29 05:38 - 000000000 ____D C:\Program Files\Common Files\Logishrd
2024-09-29 05:37 - 2024-09-29 05:37 - 084358072 _____ (Logitech Inc.) C:\Users\Administrateur\Downloads\SetPoint6.90.66_64.exe
2024-09-29 05:37 - 2024-09-29 05:37 - 000000000 ____D C:\Program Files\Logitech
2024-09-29 05:34 - 2024-09-29 05:34 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (2).exe
2024-09-29 05:34 - 2024-09-29 05:34 - 001624440 _____ (Tous Les Drivers) C:\Users\Administrateur\Downloads\Mes_Drivers_3.0.4 (1).exe
2024-09-29 05:31 - 2024-09-29 05:31 - 000002205 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-29 05:31 - 2024-09-29 05:31 - 000002164 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-29 05:30 - 2024-09-29 05:30 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (5).exe
2024-09-29 05:30 - 2024-09-29 05:30 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (4).exe
2024-09-29 05:29 - 2024-09-29 05:29 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (3).exe
2024-09-29 05:29 - 2024-09-29 05:29 - 008917384 _____ (Google LLC) C:\Users\Administrateur\Downloads\ChromeSetup (2).exe
2024-09-26 06:19 - 2024-09-26 06:19 - 000191846 _____ C:\Users\Administrateur\Downloads\SPT_460993.pdf
2024-09-25 21:22 - 2024-09-25 21:23 - 000000000 ____D C:\AdwCleaner
2024-09-25 21:22 - 2024-09-25 21:22 - 008790880 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\adwcleaner.exe
2024-09-25 21:20 - 2024-09-25 21:20 - 000000772 _____ C:\Users\Administrateur\Desktop\ZHPFix.txt
2024-09-25 21:16 - 2024-09-25 21:16 - 000414829 _____ C:\Users\Administrateur\Desktop\ZHPDiag.html
2024-09-25 21:10 - 2024-09-25 21:10 - 003539144 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPSuite.exe
2024-09-25 21:10 - 2024-09-25 21:10 - 000000874 _____ C:\Users\Administrateur\Desktop\ZHPSuite.lnk
2024-09-25 20:33 - 2024-09-25 20:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\AVG
2024-09-25 20:32 - 2024-09-25 21:06 - 000000000 ____D C:\ProgramData\AVG
2024-09-25 20:31 - 2024-09-25 20:31 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-09-25 20:30 - 2024-09-25 20:31 - 075981320 _____ (Piriform Software Ltd) C:\Users\Administrateur\Downloads\ccsetup628.exe
2024-09-25 20:11 - 2024-09-25 21:06 - 000000000 ____D C:\Users\Administrateur\AppData\LocalLow\IGDump
2024-09-25 20:10 - 2024-09-25 20:10 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (3).exe
2024-09-25 20:09 - 2024-09-25 20:09 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (2).exe
2024-09-25 20:08 - 2024-09-25 20:08 - 002596072 _____ (Malwarebytes) C:\Users\Administrateur\Downloads\MBSetup (1).exe
2024-09-25 19:58 - 2024-09-25 21:40 - 000330754 _____ C:\Users\Administrateur\Desktop\ZHPDiag.txt
2024-09-25 19:44 - 2024-09-25 21:40 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\ZHP
2024-09-25 19:44 - 2024-09-25 21:32 - 000000874 _____ C:\Users\Administrateur\Desktop\ZHPDiag.lnk
2024-09-25 19:44 - 2024-09-25 21:10 - 000000000 ____D C:\Users\Administrateur\AppData\Local\ZHP
2024-09-25 19:43 - 2024-09-25 19:43 - 003370696 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPDiag3.exe
2024-09-25 19:43 - 2024-09-25 19:43 - 003370696 _____ (Nicolas Coolman) C:\Users\Administrateur\Downloads\ZHPDiag3 (1).exe
2024-09-22 13:02 - 2024-09-22 13:03 - 000000000 ____D C:\Users\Administrateur\Downloads\MF212w_e-Manual_FR_1
2024-09-22 13:01 - 2024-09-22 13:02 - 009345309 _____ C:\Users\Administrateur\Downloads\MF212w_e-Manual_FR_1.zip
2024-09-17 09:15 - 2024-09-17 09:15 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-09-15 10:06 - 2024-09-15 10:06 - 1073741824 _____ C:\Users\Administrateur\Downloads\1G (1)
2024-09-15 09:24 - 2024-09-15 09:25 - 1073741824 _____ C:\Users\Administrateur\Downloads\1G
2024-09-13 14:07 - 2024-09-13 14:07 - 000027945 _____ C:\Users\Administrateur\Downloads\330861.pdf
2024-09-13 14:07 - 2024-09-13 14:07 - 000027621 _____ C:\Users\Administrateur\Downloads\432066.pdf
2024-09-11 14:07 - 2024-09-11 14:07 - 000000000 ___HD C:\$WinREAgent
2024-09-05 19:08 - 2024-09-05 19:07 - 000247300 _____ C:\Users\Administrateur\Desktop\Facture Scanner poumon 5.9.24.jpeg
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-09-29 13:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-29 12:50 - 2020-06-13 00:25 - 001775468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-29 12:50 - 2019-12-07 16:50 - 000793054 _____ C:\WINDOWS\system32\perfh00C.dat
2024-09-29 12:50 - 2019-12-07 16:50 - 000150718 _____ C:\WINDOWS\system32\perfc00C.dat
2024-09-29 12:50 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-09-29 12:46 - 2021-12-15 10:33 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-29 12:46 - 2020-06-13 00:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-29 12:46 - 2020-06-13 00:23 - 000008192 ___SH C:\DumpStack.log.tmp
2024-09-29 12:46 - 2020-01-24 17:49 - 000000000 __SHD C:\Users\Administrateur\IntelGraphicsProfiles
2024-09-29 12:46 - 2020-01-24 12:31 - 000000000 ____D C:\Intel
2024-09-29 12:45 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-29 10:44 - 2020-01-24 17:51 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Word
2024-09-29 08:22 - 2020-06-13 00:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-29 06:23 - 2020-04-23 08:49 - 000000000 ____D C:\Users\Administrateur\AppData\Local\D3DSCache
2024-09-29 05:41 - 2024-02-17 23:37 - 000000000 ____D C:\Users\Administrateur\Downloads\SerialIO_Win10_30.100.1943.2
2024-09-29 05:41 - 2022-12-28 11:04 - 000000000 ____D C:\Program Files\Intel
2024-09-29 05:38 - 2024-02-17 23:36 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2024-09-29 05:37 - 2024-02-17 20:48 - 000000000 ____D C:\ProgramData\Logishrd
2024-09-29 05:33 - 2020-01-24 17:49 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Packages
2024-09-29 05:31 - 2022-12-24 18:41 - 000000000 ____D C:\Program Files\Google
2024-09-29 01:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-29 01:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-28 14:16 - 2020-09-02 19:31 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-28 08:49 - 2020-06-13 00:27 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-25 21:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-09-25 21:07 - 2021-05-12 13:13 - 000000000 ____D C:\ProgramData\Wondershare
2024-09-25 21:05 - 2022-11-05 09:02 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\FileZilla
2024-09-25 21:05 - 2020-06-12 03:42 - 000000000 ___DC C:\WINDOWS\Panther
2024-09-25 21:04 - 2022-12-26 10:06 - 000000000 ____D C:\WINDOWS\Minidump
2024-09-25 21:04 - 2022-01-05 23:36 - 000000000 ____D C:\Users\Administrateur\AppData\Local\CrashDumps
2024-09-25 20:54 - 2022-11-05 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2024-09-25 20:53 - 2020-07-15 07:18 - 000000000 ____D C:\Jts
2024-09-25 20:51 - 2020-06-12 23:28 - 000000000 ____D C:\Users\Administrateur
2024-09-25 20:51 - 2020-04-18 11:08 - 000000000 ____D C:\ProgramData\NCH Software
2024-09-25 20:51 - 2020-04-18 11:08 - 000000000 ____D C:\Program Files (x86)\NCH Software
2024-09-25 19:26 - 2022-09-14 10:44 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\com.adobe.dunamis
2024-09-25 19:26 - 2020-01-24 18:18 - 000000000 ____D C:\Users\Administrateur\AppData\Local\Adobe
2024-09-25 19:26 - 2020-01-24 17:49 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Adobe
2024-09-24 06:47 - 2022-10-11 21:31 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-24 06:47 - 2022-10-11 21:31 - 000002021 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-09-19 18:00 - 2020-01-24 17:50 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Microsoft\Excel
2024-09-17 20:29 - 2020-01-24 19:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-17 09:15 - 2022-12-28 11:05 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-09-17 09:15 - 2022-12-28 11:05 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-09-14 17:02 - 2020-10-24 10:18 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\WhatsApp
2024-09-13 13:04 - 2020-02-08 20:21 - 000000000 ____D C:\ProgramData\Sonos,_Inc
2024-09-12 08:55 - 2024-02-17 20:49 - 000000000 ____D C:\Users\Administrateur\AppData\Roaming\Logishrd
2024-09-12 08:52 - 2023-09-22 22:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Legrand
2024-09-12 08:52 - 2023-09-22 22:48 - 000000000 ____D C:\Program Files (x86)\Legrand
2024-09-12 08:51 - 2022-12-28 11:04 - 000000000 ____D C:\ProgramData\Package Cache
2024-09-12 08:51 - 2022-12-28 11:04 - 000000000 ____D C:\Program Files (x86)\Intel
2024-09-12 08:11 - 2020-07-03 08:30 - 000000000 ___RD C:\Users\Administrateur\Documents\Scanned Documents
2024-09-12 08:08 - 2020-06-13 00:23 - 000296448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-12 08:07 - 2019-12-07 16:53 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-09-12 08:07 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-09-12 08:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 17:09 - 2023-08-06 10:19 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002080 _____ C:\Users\Administrateur\Desktop\Google Slides.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002080 _____ C:\Users\Administrateur\Desktop\Google Sheets.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002068 _____ C:\Users\Administrateur\Desktop\Google Docs.lnk
2024-09-11 17:09 - 2023-08-06 10:19 - 000002044 _____ C:\Users\Administrateur\Desktop\Google Drive.lnk
2024-09-11 14:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 14:13 - 2020-06-13 00:23 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-11 08:09 - 2020-01-24 13:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 08:04 - 2020-01-24 13:40 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 07:31 - 2020-01-24 14:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-09-09 12:10 - 2020-09-02 19:30 - 000003690 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 12:10 - 2020-09-02 19:30 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== Fichiers à la racine de certains dossiers ========
2020-02-03 08:38 - 2020-02-03 08:38 - 000024992 _____ () C:\Users\Administrateur\AppData\Roaming\Valeurs séparées par une virgule.ADR
2020-02-03 08:37 - 2020-06-03 06:48 - 000009318 _____ () C:\Users\Administrateur\AppData\Roaming\Valeurs séparées par une virgule.EML
2023-07-03 23:33 - 2023-07-03 23:33 - 000001860 _____ () C:\Users\Administrateur\AppData\Local\recently-used.xbel
2020-09-25 18:42 - 2020-09-25 18:42 - 000007603 _____ () C:\Users\Administrateur\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================