cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02
Exécuté par Admin (administrateur) sur LENOVO-PC (LENOVO 20240) (18-10-2019 12:16:47)
Exécuté depuis C:\Users\Admin\Desktop
Profils chargés: Admin & (Profils disponibles: Marie & Admin & Invité)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Global Imaging OnLine\GXD5 Spooler\srvany.exe
() [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apache Software Foundation) [Fichier non signé] C:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe
(Apache Software Foundation) [Fichier non signé] C:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(CyberLink -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Global Imaging On Line) [Fichier non signé] C:\Program Files (x86)\Global Imaging OnLine\GXD5 AutoUpdater\GIOLAutoUpdate.exe
(Global Imaging On Line) [Fichier non signé] C:\Program Files (x86)\Global Imaging OnLine\GXD5 Spooler\DIAMSpooler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Lexmark International, Inc. -> ) C:\Windows\System32\lxeacoms.exe
(Lexmark International, Inc. -> ) C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe
(Lexmark International, Inc. -> ) C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\Admin\AppData\Roaming\ZHP\ZHPDiag3.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe
(Oracle America, Inc. -> ) C:\wamp64\bin\mysql\mysql5.7.26\bin\mysqld.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(The CefSharp Authors) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [Fichier non signé]
HKLM\...\Run: [lxeamon.exe] => C:\Program Files (x86)\Lexmark S300-S400 Series\lxeamon.exe [772712 2013-01-23] (Lexmark International, Inc. -> )
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark S300-S400 Series\ezprint.exe [150264 2013-01-23] (Lexmark International, Inc. -> )
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [McAfeeSafeConnect] => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [eRclient] => C:\Users\Marie\AppData\Roaming\eRclient\eRclient.exe [1269248 2014-08-13] (eRmail Company, s. r. o.) [Fichier non signé]
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [Mobile Partner] => C:\Program Files (x86)\Parametres SFR 3G\Parametres SFR 3G.exe [62816 2011-04-20] (HUAWEI Technologies Co., Ltd. -> )
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {1080a32e-b2ff-11e7-82c6-201a06facbb4} - "E:\setup.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {2fb4e016-c42c-11e8-82f4-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {2fb4e06a-c42c-11e8-82f4-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {9138c3b2-706e-11e8-82e6-201a06facbb4} - "H:\O16Setup.EXE"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {b35fe3fb-ecac-11e8-82fa-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121702346\...\MountPoints2: {eca95660-b466-11e5-825d-201a06facbb4} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [McAfeeSafeConnect] => C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [eRclient] => C:\Users\Marie\AppData\Roaming\eRclient\eRclient.exe [1269248 2014-08-13] (eRmail Company, s. r. o.) [Fichier non signé]
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [Mobile Partner] => C:\Program Files (x86)\Parametres SFR 3G\Parametres SFR 3G.exe [62816 2011-04-20] (HUAWEI Technologies Co., Ltd. -> )
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {1080a32e-b2ff-11e7-82c6-201a06facbb4} - "E:\setup.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {2fb4e016-c42c-11e8-82f4-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {2fb4e06a-c42c-11e8-82f4-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {9138c3b2-706e-11e8-82e6-201a06facbb4} - "H:\O16Setup.EXE"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {b35fe3fb-ecac-11e8-82fa-201a06facbb4} - "F:\AutoRun.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113122600\...\MountPoints2: {eca95660-b466-11e5-825d-201a06facbb4} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121704486\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113123975\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871536 2019-09-18] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\Software\...\AppCompatFlags\Custom\chrome.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\explorer.zza: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-16] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk [2018-05-26]
ShortcutTarget: WO Mic Client.lnk -> C:\Program Files (x86)\WOMic\WOMicClient.exe (Pas de fichier)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0A7D2716-C31C-4808-A62C-2E3C354E796C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {10029D0D-99DF-4AE3-AAF9-4B181DEE9E38} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3512B16C-0772-4BDD-8F36-739C6D2871DC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT-KB890830.exe [133315992 2018-06-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {3693DC31-8BE1-48B5-A045-D9E19C92D38C} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => c:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {56B788EB-3982-468B-A17D-C3ADDFF75E66} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe
Task: {6A4F48CB-627E-41F9-8F9F-A30C3737309A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-11] (Adobe Inc. -> Adobe)
Task: {75366D8A-BAE9-434F-AC02-EE8246F03766} - System32\Tasks\Defendemus - VPN Shield => C:\Program Files (x86)\Defendemus\VPN Shield\VpnShield.exe
Task: {7C3829E0-2585-438B-9ECB-121A048AB284} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-08-17] (LENOVO -> Lenovo)
Task: {7EA4D890-AB0F-4DE2-8CE8-F226D6588FB9} - System32\Tasks\Baidu LiveUpdate => F:\Baidu [Argument = WiFiHotspot\liveupdate.exe]
Task: {915BCAD4-307D-4DA4-B191-0315B4B4B18D} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
Task: {9242E9CA-B7E5-4045-A595-26D9E4BE993C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-09-18] (Garmin International, Inc. -> )
Task: {A8585647-A45D-4DFD-8DDB-420F401D0983} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-11] (Adobe Inc. -> Adobe)
Task: {AAB2C78E-0BB0-4CF8-AF3B-AA1101B9D72E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {B079C47D-4385-4C91-B6B9-62315C98EEC4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-04] (Google Inc -> Google Inc.)
Task: {BECBD43E-22CC-409B-9C87-31D886863E49} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2780400 2013-09-13] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {C06F97D0-5108-4978-9116-ACEC19F8FEAD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-04] (Google Inc -> Google Inc.)
Task: {C12F0ECF-EE07-49AE-A794-C471E35718E5} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe
Task: {C8854601-D033-4BDB-92B9-ABF89DBA6781} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_pepper.exe [1453112 2019-10-11] (Adobe Inc. -> Adobe)
Task: {C8C537B8-B05A-4AD0-9408-1E22B0E0F2E8} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe
Task: {D55D7DA7-E207-4127-9118-E74532A7BF23} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E263B32D-9E25-4E8B-BC54-9A3ED175162D} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => c:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {E30D2CBC-FFC5-4D67-8D39-C56C2611452F} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1549467494-1834298342-2751813202-1002 => C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {E60EA769-10E3-45E7-B079-94D380538CD9} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [136618864 2019-07-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {E95C2A14-96DE-4751-8681-30C9A89F4B44} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {E9A8D7E9-37D7-46CD-B512-1E4816245F1C} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{F5649711-0441-4113-BF8A-E308AEE82953}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121704486\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121704486\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10142019121704486\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113123975\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113123975\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1549467494-1834298342-2751813202-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-10162019113123975\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-11] (Adobe Inc. -> )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-09] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2019-10-18]
CHR Extension: (Slides) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-10]
CHR Extension: (Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-10]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-10]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-10]
CHR Extension: (Sheets) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-10]
CHR Extension: (Protection Web Avira) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-11]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-10]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-10]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [99328 2013-11-21] () [Fichier non signé]
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [239616 2013-12-15] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-11-21] (Advanced Micro Devices, Inc.) [Fichier non signé]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R2 GIOL Auto Updater; C:\Program Files (x86)\Global Imaging OnLine\GXD5 AutoUpdater\GIOLAutoUpdate.exe [345088 2016-01-27] (Global Imaging On Line) [Fichier non signé]
R2 GXD5 Spooler; C:\Program Files (x86)\Global Imaging OnLine\GXD5 Spooler\DIAMSpooler.exe [653312 2015-06-25] (Global Imaging On Line) [Fichier non signé]
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-02-06] (Huawei Technologies Co., Ltd. -> )
S2 lxeaCATSCustConnectService; C:\WINDOWS\system32\spool\DRIVERS\x64\3\\lxeaserv.exe [45736 2010-04-14] (Lexmark International, Inc. -> Lexmark International, Inc.)
R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [1052328 2010-04-14] (Lexmark International, Inc. -> )
R2 lxea_device; C:\WINDOWS\SysWOW64\lxeacoms.exe [598696 2010-04-14] (Lexmark International, Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NitroDriverReadSpool11; C:\Program Files\Nitro\Pro 11\NitroPDFDriverService11x64.exe [327368 2017-03-09] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 11\Nitro_UpdateService.exe [419016 2017-03-09] (Nitro Software, Inc. -> )
R2 nlsX86cc; C:\WINDOWS\SysWOW64\NLSSRV32.EXE [71880 2017-03-09] (Nitro Software, Inc. -> Nalpeiron Ltd.)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-01-24] (Even Balance, Inc. -> )
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] (CyberLink -> )
R3 wampapache64; c:\wamp64\bin\apache\apache2.4.39\bin\httpd.exe [29696 2019-03-28] (Apache Software Foundation) [Fichier non signé]
S3 wampmariadb64; c:\wamp64\bin\mariadb\mariadb10.3.14\bin\mysqld.exe [15813032 2019-04-01] (MariaDB Corporation Ab -> )
R3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.26\bin\mysqld.exe [39644480 2019-04-13] (Oracle America, Inc. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [17504 2013-02-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [13203456 2013-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [624128 2013-12-15] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (APPEX NETWORKS CORPORATION -> AppEx Networks Corporation)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [138240 2013-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R1 cfywlan1; C:\WINDOWS\system32\DRIVERS\cfywlan1.sys [36736 2017-04-02] (Connectify (Connectify, Inc.) -> Connectify)
R1 cnnctfy3; C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys [43872 2017-04-06] (Connectify (Connectify, Inc.) -> Connectify)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30352 2017-10-19] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2019-09-30] (Malwarebytes Corporation -> Malwarebytes)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [110592 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [77312 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\drivers\ew_juextctrl.sys [30720 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [56680 2017-07-16] (Beijing Kingsoft Security software Co.,Ltd -> Kingsoft Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116832 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
S3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbnet; C:\WINDOWS\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [36872 2016-05-31] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Apple, Inc.) [Fichier non signé]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

Error(1) reading file: "C:\Users\Marie\Downloads\NEHUDA "
2019-10-18 12:16 - 2019-10-18 12:20 - 000031905 _____ C:\Users\Admin\Desktop\FRST.txt
2019-10-18 12:14 - 2019-10-18 12:14 - 000001094 _____ C:\Users\Admin\Desktop\startup.txt
2019-10-18 12:07 - 2019-10-18 12:07 - 000003870 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-18 12:07 - 2019-10-18 12:07 - 000002810 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-10-18 12:07 - 2019-10-18 12:07 - 000000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-18 12:07 - 2019-10-18 12:07 - 000000845 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-18 12:07 - 2019-10-18 12:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-10-18 12:07 - 2019-10-18 12:07 - 000000000 ____D C:\Program Files\CCleaner
2019-10-18 12:05 - 2019-10-18 12:06 - 024578944 _____ (Piriform Software Ltd) C:\Users\Admin\Downloads\ccsetup563.exe
2019-10-17 15:51 - 2019-10-17 15:51 - 000052361 _____ C:\Users\Admin\Downloads\react-component-menu-v8.0.0-alpha.2-0-ge12721b.zip
2019-10-17 15:50 - 2019-10-17 15:53 - 000001464 _____ C:\Users\Public\Desktop\Wampserver64.lnk
2019-10-17 15:50 - 2019-10-17 15:53 - 000001464 _____ C:\ProgramData\Desktop\Wampserver64.lnk
2019-10-17 15:50 - 2019-10-17 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wampserver64
2019-10-17 15:40 - 2019-10-17 15:42 - 000000000 ___DC C:\wamp64
2019-10-17 12:09 - 2019-10-17 12:17 - 300646888 _____ (Dominique Ottello aka Otomatic ) C:\Users\Admin\Downloads\wampserver3.1.9_x64.exe
2019-10-16 22:30 - 2019-10-16 22:30 - 009952000 _____ (Dominique Ottello aka Otomatic ) C:\Users\Admin\Downloads\Non confirmé 911859.crdownload
2019-10-16 18:23 - 2019-10-16 18:23 - 020856472 _____ (Piriform Software Ltd) C:\Users\Admin\Downloads\ccsetup563_slim.exe
2019-10-16 17:16 - 2019-10-16 17:16 - 000000000 ____D C:\Users\Admin\Desktop\javascript
2019-10-16 17:15 - 2019-10-16 17:15 - 000000000 ____D C:\Users\Admin\Desktop\php
2019-10-16 16:56 - 2019-10-16 16:56 - 000000020 ___SH C:\Users\Invité\ntuser.ini
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Voisinage réseau
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Voisinage d'impression
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Modèles
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Mes documents
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Menu Démarrer
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Documents\Mes vidéos
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Documents\Mes images
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\Documents\Ma musique
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 _SHDL C:\Users\Invité\AppData\Local\Historique
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 ____D C:\Users\Invité\AppData\Local\Packages
2019-10-16 16:56 - 2019-10-16 16:56 - 000000000 ____D C:\Users\Invité
2019-10-16 16:56 - 2017-09-05 14:19 - 000002301 _____ C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2019-10-16 16:56 - 2014-03-18 19:52 - 000000000 ____D C:\Users\Invité\AppData\Roaming\Macromedia
2019-10-16 16:56 - 2014-02-22 06:37 - 000000369 _____ C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-10-16 16:56 - 2014-02-22 06:37 - 000000369 _____ C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-10-16 16:56 - 2013-02-04 08:18 - 000000189 _____ C:\Users\Invité\Desktop\Lenovo Telephony Start Now.url
2019-10-16 14:25 - 2019-10-16 14:25 - 000001269 _____ C:\Users\Admin\Desktop\Devserver 17.lnk
2019-10-16 13:40 - 2019-10-16 13:40 - 000174056 _____ C:\Users\Admin\Downloads\ipn-code-samples-cb738c43db13aecb437d2db801fa08ef2ec85911.zip
2019-10-16 13:30 - 2019-10-17 15:46 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Notepad++
2019-10-16 13:30 - 2019-10-16 13:32 - 063817843 _____ (Laurent Abbal ) C:\Users\Admin\Downloads\EasyPHP-Devserver-17.0-setup.exe
2019-10-16 13:30 - 2019-10-16 13:30 - 000001058 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2019-10-16 13:30 - 2019-10-16 13:30 - 000000000 ____D C:\Program Files (x86)\Notepad++
2019-10-16 13:24 - 2019-10-16 13:24 - 003700512 _____ (Don HO don.h@free.fr) C:\Users\Admin\Downloads\notepad_7-8-0_fr_9567_32.exe
2019-10-16 11:41 - 2019-10-16 11:41 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Adobe
2019-10-15 21:50 - 2019-10-15 22:03 - 000000624 _____ C:\Users\Admin\Desktop\Nouveau document texte.txt
2019-10-15 18:46 - 2019-10-15 18:46 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Google
2019-10-13 16:10 - 2019-10-13 16:10 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-10-13 16:08 - 2019-10-13 16:08 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-10-13 16:08 - 2019-10-13 16:08 - 000116832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-10-13 16:06 - 2019-10-13 16:06 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-10-13 16:01 - 2019-10-13 16:01 - 000000000 ____D C:\Users\Admin\Desktop\FRST-OlderVersion
2019-10-12 15:29 - 2019-10-12 15:29 - 000000000 ____D C:\Users\Marie\AppData\Local\mbamtray
2019-10-11 22:27 - 2019-10-11 22:29 - 002960050 _____ C:\Users\Admin\Downloads\LandscapeImages-screenshot198.zip
2019-10-11 21:13 - 2019-10-11 21:27 - 000000000 ____D C:\Users\Admin\Desktop\guilde
2019-10-11 20:51 - 2019-10-18 12:15 - 000000879 _____ C:\Users\Admin\Desktop\ZHPDiag.lnk
2019-10-11 17:37 - 2019-10-11 17:37 - 000000000 ____D C:\Users\Admin\AppData\Local\Garmin
2019-10-11 17:37 - 2019-10-11 17:37 - 000000000 ____D C:\Users\Admin\AppData\Local\CEF
2019-10-11 17:25 - 2019-10-11 17:26 - 003254656 _____ (Nicolas Coolman) C:\Users\Admin\Desktop\ZHPDiag3.exe
2019-10-11 17:19 - 2019-10-18 12:20 - 000000000 ____D C:\Users\Admin\AppData\Local\ZHP
2019-10-11 17:19 - 2019-10-11 17:19 - 000000889 _____ C:\Users\Admin\Desktop\ZHPCleaner.lnk
2019-10-11 17:18 - 2019-10-11 17:18 - 003335552 _____ (Nicolas Coolman) C:\Users\Admin\Downloads\ZHPCleaner.exe
2019-10-11 17:15 - 2019-10-11 17:26 - 000000000 ___DC C:\AdwCleaner
2019-10-11 17:14 - 2019-10-11 17:14 - 007622344 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_7.4.1.exe
2019-10-11 17:14 - 2019-10-11 17:14 - 007622344 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_7.4.1 (1).exe
2019-10-11 14:47 - 2019-10-15 18:31 - 000000000 ____D C:\Users\Admin\Documents\Fiesta
2019-10-11 14:42 - 2019-10-11 14:42 - 000000000 ____D C:\Users\Admin\AppData\Roaming\FiestaOnline
2019-10-11 12:58 - 2019-10-11 12:58 - 000002297 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Menu Démarrer.lnk
2019-10-11 12:56 - 2019-10-11 12:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2019-10-11 12:13 - 2019-10-11 12:13 - 000000000 ____D C:\Users\Admin\AppData\Local\mbam
2019-10-11 12:12 - 2019-10-11 12:12 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray
2019-10-11 12:11 - 2019-10-13 12:57 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-10-11 12:10 - 2019-10-11 12:10 - 000001894 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-11 12:10 - 2019-10-11 12:10 - 000001894 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-10-11 12:10 - 2019-10-11 12:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-11 12:09 - 2019-10-11 12:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-11 12:09 - 2019-10-11 12:09 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-11 12:09 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-10-11 11:55 - 2019-10-16 11:41 - 000000000 ____D C:\Users\Admin\AppData\Local\Adobe
2019-10-11 11:53 - 2019-10-11 11:54 - 066567320 _____ (Malwarebytes ) C:\Users\Admin\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12841 (1).exe
2019-10-11 11:53 - 2019-10-11 11:53 - 000001061 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-10-11 11:53 - 2019-10-11 11:53 - 000001061 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk
2019-10-11 11:53 - 2019-10-11 11:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-10-11 11:53 - 2019-10-11 11:53 - 000000000 ____D C:\Program Files\VS Revo Group
2019-10-11 11:52 - 2019-10-11 11:52 - 007411912 _____ (VS Revo Group ) C:\Users\Admin\Downloads\revosetup.exe
2019-10-11 11:52 - 2019-10-11 11:52 - 007411912 _____ (VS Revo Group ) C:\Users\Admin\Downloads\revosetup (1).exe
2019-10-11 11:51 - 2019-10-11 11:55 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LSC
2019-10-11 11:49 - 2019-10-11 11:50 - 066567320 _____ (Malwarebytes ) C:\Users\Admin\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.12841.exe
2019-10-10 20:15 - 2019-10-10 20:46 - 000061168 _____ C:\Users\Admin\Downloads\Addition.txt
2019-10-10 20:04 - 2019-10-10 20:46 - 000037978 _____ C:\Users\Admin\Downloads\FRST.txt
2019-10-10 20:01 - 2019-10-18 12:18 - 000000000 ___DC C:\FRST
2019-10-10 19:55 - 2019-10-13 16:01 - 001616384 ____C (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2019-10-10 15:19 - 2019-10-10 15:25 - 000000000 ___DC C:\KVRT_Data
2019-10-10 15:11 - 2019-10-18 12:22 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ZHP
2019-10-10 15:09 - 2019-10-10 15:23 - 611366912 _____ C:\Users\Admin\Desktop\krd.iso
2019-10-10 15:07 - 2019-10-10 15:13 - 169758504 _____ (AO Kaspersky Lab) C:\Users\Admin\Desktop\KVRT.exe
2019-10-10 14:25 - 2019-10-17 16:41 - 000003600 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1549467494-1834298342-2751813202-1007
2019-10-10 14:16 - 2019-10-16 11:41 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2019-10-10 14:16 - 2019-10-16 11:41 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2019-10-10 14:16 - 2019-10-11 11:55 - 000000000 ____D C:\Users\Admin\AppData\Local\Google
2019-10-10 14:16 - 2019-10-10 14:58 - 000002288 _____ C:\Users\Admin\Desktop\Google Chrome.lnk
2019-10-10 14:16 - 2019-10-10 14:16 - 000001473 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2019-10-10 14:16 - 2019-10-10 14:16 - 000000020 ___SH C:\Users\Admin\ntuser.ini
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Voisinage réseau
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Voisinage d'impression
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Modèles
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Mes documents
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Menu Démarrer
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Documents\Mes vidéos
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Documents\Mes images
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\Documents\Ma musique
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Historique
2019-10-10 14:16 - 2019-10-10 14:16 - 000000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2019-10-10 14:15 - 2019-10-13 13:45 - 000000000 ____D C:\Users\Admin
2019-10-10 14:15 - 2017-09-05 14:19 - 000002301 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2019-10-10 14:15 - 2014-03-18 19:52 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Macromedia
2019-10-10 14:15 - 2014-02-22 06:37 - 000000369 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2019-10-10 14:15 - 2014-02-22 06:37 - 000000369 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2019-10-10 11:32 - 2019-10-10 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gamigo
2019-10-09 19:59 - 2019-10-13 17:06 - 000000000 ____D C:\Users\Marie\Desktop\jeremy
2019-10-05 14:37 - 2019-10-05 14:37 - 000083034 _____ C:\Users\Marie\Downloads\EquipementCCPEnLigne (2).pdf
2019-10-04 16:02 - 2019-10-04 16:02 - 001151544 _____ (Google LLC) C:\Users\Marie\Downloads\ChromeSetup.exe
2019-09-26 17:35 - 2019-10-10 14:29 - 000000000 ____D C:\Users\Marie\Desktop\Mozilla Firefox
2019-09-19 16:25 - 2019-09-19 16:25 - 000538082 _____ C:\Users\Marie\Downloads\carte grise 001.pdf
2019-09-18 09:48 - 2019-09-18 09:48 - 000000092 _____ C:\Users\Marie\Downloads\freedommp3.ram

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-10-18 12:12 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-10-18 11:29 - 2014-03-19 03:31 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2019-10-18 11:29 - 2014-03-19 03:31 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2019-10-18 11:29 - 2013-10-07 20:27 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-16 22:08 - 2015-12-03 18:28 - 000000000 ____D C:\Users\Marie\AppData\Local\Adobe
2019-10-16 22:01 - 2015-12-03 17:50 - 000003598 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1549467494-1834298342-2751813202-1002
2019-10-16 16:56 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-16 11:40 - 2015-12-04 11:01 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-15 18:51 - 2018-11-14 15:40 - 000004476 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-15 18:46 - 2018-11-14 15:39 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-15 12:15 - 2015-12-03 20:44 - 000003940 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{38DF0780-45F0-4793-9B1A-0AB1F2388185}
2019-10-13 16:06 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-13 16:05 - 2013-08-22 15:25 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2019-10-12 21:05 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-12 15:34 - 2017-09-06 08:35 - 000003176 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1549467494-1834298342-2751813202-1002
2019-10-12 15:34 - 2017-09-05 14:19 - 000002391 _____ C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk
2019-10-11 17:31 - 2014-03-18 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2019-10-11 17:31 - 2014-03-18 19:53 - 000000000 ____D C:\Program Files\Lenovo
2019-10-11 17:31 - 2014-03-18 19:27 - 000000000 ____D C:\Program Files (x86)\Lenovo
2019-10-11 13:54 - 2018-08-25 12:58 - 000000000 ____D C:\ProgramData\Innova
2019-10-11 13:52 - 2018-08-23 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Innova Co. SARL
2019-10-11 12:58 - 2014-03-18 20:05 - 000000000 ____D C:\ProgramData\Office2013
2019-10-11 12:56 - 2018-09-15 22:36 - 000000000 ____D C:\Program Files (x86)\Garmin
2019-10-11 12:56 - 2014-03-18 19:16 - 000000000 ____D C:\ProgramData\Package Cache
2019-10-11 12:55 - 2018-09-15 22:36 - 000003556 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2019-10-11 12:41 - 2015-12-03 20:23 - 000004460 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2019-10-11 12:40 - 2018-10-02 15:59 - 000004648 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-10-11 12:40 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-10-11 12:39 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-10-11 12:18 - 2018-10-02 16:41 - 000004636 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-10-11 12:04 - 2018-09-15 22:38 - 000000000 ____D C:\ProgramData\Garmin
2019-10-10 14:30 - 2016-11-19 13:31 - 000000000 ____D C:\Users\Marie\AppData\LocalLow\Mozilla
2019-10-10 14:20 - 2015-12-03 17:45 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2019-10-09 22:26 - 2015-12-04 10:55 - 000003504 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-09 22:26 - 2015-12-04 10:55 - 000003376 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-09 22:25 - 2015-12-04 10:52 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-09 15:59 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-10-09 11:14 - 2013-08-22 17:20 - 000000000 ____D C:\WINDOWS\CbsTemp

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2016-05-30 11:02
==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité