Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2024
Exécuté par jeanp (administrateur) sur LENOVO-JP (LENOVO 80G0) (13-12-2024 17:55:48)
Exécuté depuis C:\Users\jeanp\Desktop\FRST64.exe
Profils chargés: jeanp
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5131 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe ->) (Realtek Semiconductor Corporation) [Fichier non signé] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe <6>
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <37>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\jeanp\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\Microsoft.SharePoint.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.224.11211.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.224.11211.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5071_none_7e3c4e707c6a2679\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216064 2014-01-06] (Realtek Semiconductor Corporation) [Fichier non signé]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKU\S-1-5-21-2591250936-371830050-3308991799-1001\...\Run: [MicrosoftEdgeAutoLaunch_03C472D19A9947FDD45D1E8A9FD0C55D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3911232 2024-12-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2591250936-371830050-3308991799-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-26] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [44288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\Windows\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.140\Installer\chrmstp.exe [2024-12-13] (Google LLC -> Google LLC)
Startup: C:\Users\jeanp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2023-04-04]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon Inc. -> Canon INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2023-02-02]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Lancement rapide de SOLIDWORKS 2015.lnk [2023-02-02]
ShortcutTarget: Lancement rapide de SOLIDWORKS 2015.lnk -> C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Téléchargement en arrière-plan de SOLIDWORKS.lnk [2023-02-02]
ShortcutTarget: Téléchargement en arrière-plan de SOLIDWORKS.lnk -> C:\Program Files (x86)\Common Files\Gestionnaire d'installation SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {3A32FA49-485C-40EE-AF9A-9E25625C2C24} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {28C42487-945F-4E95-B297-41497B43808F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {131536AB-D2AC-4F85-86AD-0E92A68F8411} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "94505151-c303-43b3-878b-e3c1d9951119" --version "6.30.11385" --silent
Task: {EFC46A2F-3C9D-49CB-9B12-B9C3FF9B235D} - System32\Tasks\CCleanerSkipUAC - jeanp => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {BF01934B-1563-4569-B8B5-477347ED103F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{5C4D3E29-B3B7-46E7-9AC9-7A90929D6C1F} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {09753CC9-5F18-403B-AEF7-0E77225C2C37} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3C41BF5C-9F49-4526-AF72-8EB8F1EDADB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7EA62283-6556-46DF-8982-959790018482} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3566CC86-1D5A-46F7-BA55-0DA405059F18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {324F307A-996A-41D9-9B44-F04DEF42A168} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}: [DhcpDomain] home
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}\C496675626F687D223144303F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}\C496675626F687D223144303F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}: [DhcpDomain] home
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\057535D2543333548343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\4505D2C496E6B6F554874756E6465627: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\C496675626F687D244436343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\C496675626F687D244436343: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-03]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-03-16]
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-12-13]
CHR Notifications: Profile 1 -> hxxps://drive.google.com; hxxps://www.instagram.com
CHR HomePage: Profile 1 -> hxxp://www.google.com/
CHR StartupUrls: Profile 1 -> "chrome://newtab/"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-12-12]
CHR Extension: (Mailto: for Gmail™) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dgkkmcknielgdhebimdnfahpipajcpjn [2024-09-02]
CHR Extension: (Open in VLC™ media player) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihpiinojhnfhpdmmacgmpoonphhimkaj [2024-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-01]
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-11]
CHR HKU\S-1-5-21-2591250936-371830050-3308991799-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2591250936-371830050-3308991799-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [84992 2014-01-22] () [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-11-04] (HP Inc. -> HP Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-02-02] (SolidWorks) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 EterlogicVirtualSerialDriver; C:\Windows\system32\drivers\VSPE.sys [52064 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [8218304 2019-04-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 Ser2pl; C:\Windows\system32\DRIVERS\ser2pl64.sys [303000 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3481696 2015-06-30] (Sonix Technology CO., LTD -> Sonix Co. Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-13 17:55 - 2024-12-13 17:58 - 000019650 _____ C:\Users\jeanp\Desktop\FRST.txt
2024-12-13 17:54 - 2024-12-13 17:57 - 000000000 ____D C:\FRST
2024-12-13 17:52 - 2024-12-13 17:53 - 002402304 _____ (Farbar) C:\Users\jeanp\Desktop\FRST64.exe
2024-11-24 19:29 - 2024-11-24 19:29 - 000000000 ___HD C:\$WinREAgent
2024-11-16 10:53 - 2024-11-16 10:53 - 000000000 ____D C:\Program Files\Astropedia
2024-11-16 10:50 - 2024-11-16 10:50 - 000000000 ____D C:\Users\jeanp\Documents\Astropedia
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-13 18:01 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-12-13 17:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-13 17:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-12-13 17:54 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2024-12-13 17:50 - 2023-02-02 16:44 - 000000000 ____D C:\Program Files\CCleaner
2024-12-13 17:49 - 2023-02-01 19:43 - 000000000 __SHD C:\Users\jeanp\IntelGraphicsProfiles
2024-12-13 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-12 15:51 - 2023-02-01 19:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-12 15:43 - 2023-02-02 20:01 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2591250936-371830050-3308991799-1001
2024-12-12 15:43 - 2023-02-01 19:42 - 000003366 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2591250936-371830050-3308991799-1001
2024-12-12 15:43 - 2023-02-01 19:33 - 000002417 _____ C:\Users\jeanp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-02 18:33 - 2023-02-01 19:31 - 001770938 _____ C:\Windows\system32\PerfStringBackup.INI
2024-12-02 18:33 - 2019-12-07 15:49 - 000793022 _____ C:\Windows\system32\perfh00C.dat
2024-12-02 18:33 - 2019-12-07 15:49 - 000150152 _____ C:\Windows\system32\perfc00C.dat
2024-12-02 17:26 - 2024-01-04 17:39 - 000000000 ____D C:\Program Files\TeamViewer
2024-12-02 17:26 - 2023-02-01 19:20 - 001391304 _____ C:\Windows\system32\FNTCACHE.DAT
2024-12-02 17:26 - 2023-02-01 19:20 - 000008192 ___SH C:\DumpStack.log.tmp
2024-12-02 17:26 - 2023-02-01 19:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-12-02 17:25 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-12-02 11:27 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-11-30 11:51 - 2023-02-01 19:23 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-11-24 19:03 - 2023-02-01 19:21 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 19:03 - 2023-02-01 19:21 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-24 19:01 - 2023-02-02 16:55 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-24 19:01 - 2023-02-02 16:55 - 000000000 ____D C:\Windows\system32\MRT
2024-11-16 11:20 - 2023-02-01 21:38 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2024-11-16 11:20 - 2023-02-01 21:38 - 000000000 ____D C:\Users\jeanp\AppData\Roaming\Notepad++
2024-11-16 11:14 - 2023-02-02 10:23 - 000000000 ____D C:\Users\jeanp\Documents\JPaul
2024-11-16 11:06 - 2023-02-02 16:44 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-11-16 11:06 - 2023-02-02 16:44 - 000002816 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-11-16 11:06 - 2023-02-02 16:44 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-11-16 10:53 - 2023-02-02 17:11 - 000001002 _____ C:\Users\Public\Desktop\PreviSat.lnk
==================== Fichiers à la racine de certains dossiers ========
2023-02-01 22:48 - 2024-12-13 17:49 - 001395161 _____ () C:\Users\jeanp\AppData\Local\BTServer.log
2023-12-04 10:33 - 2023-12-04 10:33 - 000000456 _____ () C:\Users\jeanp\AppData\Local\PUTTY.RND
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par jeanp (administrateur) sur LENOVO-JP (LENOVO 80G0) (13-12-2024 17:55:48)
Exécuté depuis C:\Users\jeanp\Desktop\FRST64.exe
Profils chargés: jeanp
Plate-forme: Microsoft Windows 10 Famille Version 22H2 19045.5131 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe ->) (Realtek Semiconductor Corporation) [Fichier non signé] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe <6>
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <37>
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\jeanp\AppData\Local\Microsoft\OneDrive\24.221.1103.0003\Microsoft.SharePoint.exe
(services.exe ->) () [Fichier non signé] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.224.11211.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.224.11211.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5071_none_7e3c4e707c6a2679\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [216064 2014-01-06] (Realtek Semiconductor Corporation) [Fichier non signé]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKU\S-1-5-21-2591250936-371830050-3308991799-1001\...\Run: [MicrosoftEdgeAutoLaunch_03C472D19A9947FDD45D1E8A9FD0C55D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3911232 2024-12-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2591250936-371830050-3308991799-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.4.0\GoogleDriveFS.exe --startup_mode (Pas de fichier)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP D711 Status Monitor: C:\Windows\system32\hpinkstsD711LM.dll [393352 2017-03-26] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [44288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\Windows\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.140\Installer\chrmstp.exe [2024-12-13] (Google LLC -> Google LLC)
Startup: C:\Users\jeanp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2023-04-04]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon Inc. -> Canon INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2023-02-02]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Lancement rapide de SOLIDWORKS 2015.lnk [2023-02-02]
ShortcutTarget: Lancement rapide de SOLIDWORKS 2015.lnk -> C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [Fichier non signé]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Téléchargement en arrière-plan de SOLIDWORKS.lnk [2023-02-02]
ShortcutTarget: Téléchargement en arrière-plan de SOLIDWORKS.lnk -> C:\Program Files (x86)\Common Files\Gestionnaire d'installation SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
==================== Tâches planifiées (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {3A32FA49-485C-40EE-AF9A-9E25625C2C24} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.)
Task: {28C42487-945F-4E95-B297-41497B43808F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {131536AB-D2AC-4F85-86AD-0E92A68F8411} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "94505151-c303-43b3-878b-e3c1d9951119" --version "6.30.11385" --silent
Task: {EFC46A2F-3C9D-49CB-9B12-B9C3FF9B235D} - System32\Tasks\CCleanerSkipUAC - jeanp => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {BF01934B-1563-4569-B8B5-477347ED103F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{5C4D3E29-B3B7-46E7-9AC9-7A90929D6C1F} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {09753CC9-5F18-403B-AEF7-0E77225C2C37} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3C41BF5C-9F49-4526-AF72-8EB8F1EDADB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7EA62283-6556-46DF-8982-959790018482} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3566CC86-1D5A-46F7-BA55-0DA405059F18} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {324F307A-996A-41D9-9B44-F04DEF42A168} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}: [DhcpDomain] home
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}\C496675626F687D223144303F5537484A7: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{64d99521-0fdf-499c-a765-39d2e90e5741}\C496675626F687D223144303F5537484A7: [DhcpDomain] home
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}: [DhcpDomain] home
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\057535D2543333548343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\4505D2C496E6B6F554874756E6465627: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\C496675626F687D244436343: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a0710d1b-7d36-466d-8bdf-79d3cdb1e090}\C496675626F687D244436343: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-16]
Edge Extension: (Google Docs hors connexion) - C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\jeanp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-03]
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-03-16]
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-12-13]
CHR Notifications: Profile 1 -> hxxps://drive.google.com; hxxps://www.instagram.com
CHR HomePage: Profile 1 -> hxxp://www.google.com/
CHR StartupUrls: Profile 1 -> "chrome://newtab/"
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-12-12]
CHR Extension: (Mailto: for Gmail™) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dgkkmcknielgdhebimdnfahpipajcpjn [2024-09-02]
CHR Extension: (Open in VLC™ media player) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihpiinojhnfhpdmmacgmpoonphhimkaj [2024-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-01]
CHR Profile: C:\Users\jeanp\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-11]
CHR HKU\S-1-5-21-2591250936-371830050-3308991799-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2591250936-371830050-3308991799-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [84992 2014-01-22] () [Fichier non signé]
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2024-11-04] (HP Inc. -> HP Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-02-02] (SolidWorks) [Fichier non signé]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22388024 2024-06-13] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 EterlogicVirtualSerialDriver; C:\Windows\system32\drivers\VSPE.sys [52064 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-03] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [8218304 2019-04-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 Ser2pl; C:\Windows\system32\DRIVERS\ser2pl64.sys [303000 2021-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [3481696 2015-06-30] (Sonix Technology CO., LTD -> Sonix Co. Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-13 17:55 - 2024-12-13 17:58 - 000019650 _____ C:\Users\jeanp\Desktop\FRST.txt
2024-12-13 17:54 - 2024-12-13 17:57 - 000000000 ____D C:\FRST
2024-12-13 17:52 - 2024-12-13 17:53 - 002402304 _____ (Farbar) C:\Users\jeanp\Desktop\FRST64.exe
2024-11-24 19:29 - 2024-11-24 19:29 - 000000000 ___HD C:\$WinREAgent
2024-11-16 10:53 - 2024-11-16 10:53 - 000000000 ____D C:\Program Files\Astropedia
2024-11-16 10:50 - 2024-11-16 10:50 - 000000000 ____D C:\Users\jeanp\Documents\Astropedia
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2024-12-13 18:01 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-12-13 17:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-13 17:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-12-13 17:54 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2024-12-13 17:50 - 2023-02-02 16:44 - 000000000 ____D C:\Program Files\CCleaner
2024-12-13 17:49 - 2023-02-01 19:43 - 000000000 __SHD C:\Users\jeanp\IntelGraphicsProfiles
2024-12-13 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-12 15:51 - 2023-02-01 19:21 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-12 15:43 - 2023-02-02 20:01 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2591250936-371830050-3308991799-1001
2024-12-12 15:43 - 2023-02-01 19:42 - 000003366 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2591250936-371830050-3308991799-1001
2024-12-12 15:43 - 2023-02-01 19:33 - 000002417 _____ C:\Users\jeanp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-02 18:33 - 2023-02-01 19:31 - 001770938 _____ C:\Windows\system32\PerfStringBackup.INI
2024-12-02 18:33 - 2019-12-07 15:49 - 000793022 _____ C:\Windows\system32\perfh00C.dat
2024-12-02 18:33 - 2019-12-07 15:49 - 000150152 _____ C:\Windows\system32\perfc00C.dat
2024-12-02 17:26 - 2024-01-04 17:39 - 000000000 ____D C:\Program Files\TeamViewer
2024-12-02 17:26 - 2023-02-01 19:20 - 001391304 _____ C:\Windows\system32\FNTCACHE.DAT
2024-12-02 17:26 - 2023-02-01 19:20 - 000008192 ___SH C:\DumpStack.log.tmp
2024-12-02 17:26 - 2023-02-01 19:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-12-02 17:25 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2024-12-02 17:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-12-02 11:27 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-11-30 11:51 - 2023-02-01 19:23 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-11-24 19:03 - 2023-02-01 19:21 - 000003690 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 19:03 - 2023-02-01 19:21 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-24 19:01 - 2023-02-02 16:55 - 202035632 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-11-24 19:01 - 2023-02-02 16:55 - 000000000 ____D C:\Windows\system32\MRT
2024-11-16 11:20 - 2023-02-01 21:38 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2024-11-16 11:20 - 2023-02-01 21:38 - 000000000 ____D C:\Users\jeanp\AppData\Roaming\Notepad++
2024-11-16 11:14 - 2023-02-02 10:23 - 000000000 ____D C:\Users\jeanp\Documents\JPaul
2024-11-16 11:06 - 2023-02-02 16:44 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-11-16 11:06 - 2023-02-02 16:44 - 000002816 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-11-16 11:06 - 2023-02-02 16:44 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-11-16 10:53 - 2023-02-02 17:11 - 000001002 _____ C:\Users\Public\Desktop\PreviSat.lnk
==================== Fichiers à la racine de certains dossiers ========
2023-02-01 22:48 - 2024-12-13 17:49 - 001395161 _____ () C:\Users\jeanp\AppData\Local\BTServer.log
2023-12-04 10:33 - 2023-12-04 10:33 - 000000456 _____ () C:\Users\jeanp\AppData\Local\PUTTY.RND
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================