Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Exécuté par Enseignant (administrateur) sur CD94-6H031115D7 (TOSHIBA HybridCD2017) (27-12-2020 13:30:17)
Exécuté depuis C:\Users\Enseignant\Desktop
Profils chargés: Enseignant
Platform: Windows 10 Pro Version 1703 15063.1387 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Absolute Software Corp. -> Absolute Software Corp) C:\ProgramData\CTES\Ctes.exe
(Absolute Software Corp. -> Absolute Software Corp) C:\ProgramData\CTES\ProviderHost.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\AbtSvcHost_.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\oleup.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe
(Absolute Software Corp. -> Absolute Software Corporation) C:\ProgramData\CTES\Components\SVC\CtesHostSvc.exe
(Absolute Software Corp. -> Absolute Software) C:\ProgramData\CTES\Components\HDP\CtHWiPrvService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(INDEX EDUCATION SASU -> Index Education) C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\IIS\RtI2SBgProc64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\IIS\RtkI2SAudioService64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGui64.exe [9446144 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtI2SBgProc] => C:\Program Files\Realtek\Audio\IIS\RtI2SBgProc64.exe [2734848 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1960075066-233862308-744847086-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1960075066-233862308-744847086-1002\...\Policies\Explorer: [NoChangeStartMenu] 1
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [225792 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116224 2017-05-29] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2017-03-19] (Microsoft Windows -> )
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\Users\Enseignant\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {14578FDB-27DF-4856-A889-17E2AAFDAC6B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {41A5DF36-5623-485B-8D5B-7F62E2A58DF3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {69F805E7-ABB4-4F2F-9DE6-9876D65A6D06} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-05-28] (Google Inc -> Google Inc.)
Task: {7B3316C7-935B-42A0-ABBE-DE3A2DA265FA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {819FA7A6-8A9F-4EFF-9982-B40DABB92A50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8492094F-B913-4C03-B03B-B3D15A258C26} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
Task: {9D50D5C7-D923-47DF-8BE6-7E30C1EE8150} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-25] (Avast Software s.r.o. -> Avast Software)
Task: {CBE27991-2E8F-4F39-B4D7-3CAAD5743F97} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE077096-CD7A-41D4-85A2-347B14987B2C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-05-28] (Google Inc -> Google Inc.)
Task: {E09FF441-E29E-47D4-BBFB-C747B7DAE9F7} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-14] (Adobe Inc. -> Adobe)
Task: {EA967444-9BD8-4C36-AB24-18B2E4AC42C9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
Task: {F146BA26-B16F-4905-8884-6EA932524444} - System32\Tasks\Activation => powershell.exe -executionpolicy remotesigned -file C:\Windows\System32\Sysprep\Apply_OEMKey.ps1
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{2e29b2a4-b91c-40ed-b2e2-ef45f5e75d74}: [DhcpNameServer] 192.168.55.1
Edge:
======
DownloadDir: C:\Users\Enseignant\Downloads
FireFox:
========
FF DefaultProfile: 3cogqj2i.default
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\www.kiwix.org\Kiwix\Profiles\29anb8px.default [2017-06-01]
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default [2020-12-27]
FF Homepage: Mozilla\Firefox\Profiles\3cogqj2i.default -> hxxps://www.google.com/
FF Extension: (Polski Language Pack) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2020-12-24]
FF Extension: (Polish Spellchecker Dictionary) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\pl@dictionaries.addons.mozilla.org.xpi [2020-12-24]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default [2020-12-26]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Docs) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-25]
CHR Extension: (Google Drive) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-25]
CHR Extension: (YouTube) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-25]
CHR Extension: (Adobe Acrobat) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-25]
CHR Extension: (Gmail) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AbtSvcHost; C:\Windows\SysWOW64\AbtSvcHost_.exe [84888 2015-10-09] (Absolute Software Corp. -> Absolute Software Corp.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [164568 2015-08-03] (Realtek Semiconductor Corp -> )
R2 Ctes Manager; C:\ProgramData\CTES\Ctes.exe [5084688 2020-12-14] (Absolute Software Corp. -> Absolute Software Corp)
R2 CtesHostSvc; C:\ProgramData\CTES\Components\SVC\CtesHostSvc.exe [1976336 2020-12-14] (Absolute Software Corp. -> Absolute Software Corporation)
R2 MajIndexEducationService; C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe [3326056 2020-07-21] (INDEX EDUCATION SASU -> Index Education)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
R2 oleup; C:\Windows\SysWOW64\oleup.exe [76304 2017-08-23] (Absolute Software Corp. -> Absolute Software Corp.)
R2 rpchdp; C:\ProgramData\CTES\Components\HDP\CtHWiPrvService.exe [24592 2020-12-14] (Absolute Software Corp. -> Absolute Software)
R2 RtkI2SCodec; C:\Program Files\Realtek\Audio\IIS\RtkI2SAudioService64.exe [158464 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2018-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16832 2020-12-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469472 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216984 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326064 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
S3 BcmGnssBus; C:\Windows\System32\drivers\BcmGnssBus.sys [120472 2015-07-06] (Broadcom Corporation -> Broadcom Corporation)
R3 camera; C:\Windows\system32\DRIVERS\iacamera64.sys [942576 2016-03-11] (Intel(R) Intel_ICG -> Intel(R) Corporation)
R3 GoodixTouchDriver; C:\Windows\System32\drivers\GoodixTouchDriver.sys [242264 2016-09-06] (WDKTestCert wzm,131051712039785692 -> Windows (R) Win 7 DDK provider)
R3 iaisp; C:\Windows\System32\drivers\iaisp64.sys [38896 2016-03-11] (Intel(R) Intel_ICG -> Intel(R) Corporation)
R3 iaspie; C:\Windows\System32\drivers\iaspie.sys [62976 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 iauarte; C:\Windows\System32\drivers\iauarte.sys [103936 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 IntelBatteryManagement; C:\Windows\System32\drivers\IntelBatteryManagement.sys [113368 2016-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 IntelSST; C:\Windows\system32\drivers\isstrtc.sys [724488 2016-02-02] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220160 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
R3 ov5648; C:\Windows\System32\drivers\ov5648.sys [123112 2015-10-28] (WDKTestCert huizhou1,130864188504416365 -> Intel(R) Corporation)
R3 PMIC; C:\Windows\System32\drivers\PMIC.sys [100864 2015-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 rtii2sac64; C:\Windows\system32\DRIVERS\rtii2sac.sys [574208 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 RtkUart; C:\Windows\System32\drivers\RtkUart.sys [626944 2015-07-24] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtlWlans; C:\Windows\System32\drivers\rtwlans.sys [6687232 2017-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 unicam; C:\Windows\System32\drivers\ov2680.sys [121216 2016-09-18] (WDKTestCert huizhou1,130735866078346983 -> Intel(R) Corporation)
S3 usbser; C:\Windows\SysWOW64\drivers\usbser.sys [25600 2008-12-02] (Microsoft Corporation) [Fichier non signé]
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-20] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-27 13:29 - 2020-12-27 13:31 - 000021958 _____ C:\Users\Enseignant\Desktop\FRST.txt
2020-12-27 12:59 - 2020-12-27 12:59 - 000000000 ____D C:\Users\Enseignant\Desktop\FRST-OlderVersion
2020-12-27 12:58 - 2020-12-27 13:30 - 000000000 ____D C:\FRST
2020-12-27 12:58 - 2020-12-27 12:59 - 002286592 _____ (Farbar) C:\Users\Enseignant\Desktop\FRST64-2.1.exe
2020-12-27 12:02 - 2020-12-27 12:05 - 000000000 ____D C:\AdwCleaner
2020-12-26 23:54 - 2020-12-26 23:54 - 000001370 _____ C:\Users\Enseignant\Desktop\CPE - ANNEE 2020-2021.lnk
2020-12-26 23:53 - 2020-12-27 11:12 - 000000000 ____D C:\Users\Enseignant\CPE - ANNEE 2020-2021
2020-12-25 23:56 - 2020-12-25 23:56 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2020-12-25 23:56 - 2020-12-25 23:56 - 000000000 ____D C:\Users\Enseignant\AppData\Roaming\Avast Software
2020-12-25 23:54 - 2020-12-27 12:21 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-25 23:54 - 2020-12-25 23:54 - 000522480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000469472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000326064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000216984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000176384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000108928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000097360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000084496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000042424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000016832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-12-25 23:54 - 2020-12-25 23:54 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-25 23:54 - 2020-12-25 23:53 - 000851256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000340576 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-12-25 23:54 - 2020-12-25 23:53 - 000332880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000208672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000036792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-12-25 23:52 - 2020-12-27 12:23 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-25 23:52 - 2020-12-25 23:52 - 000000000 ____D C:\Program Files\Avast Software
2020-12-25 22:43 - 2020-12-25 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EDT Monoposte 2020
2020-12-25 00:12 - 2020-12-25 00:12 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-25 00:12 - 2020-12-25 00:12 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-12-25 00:12 - 2020-12-25 00:12 - 000000000 ____D C:\Program Files\Google
2020-12-25 00:00 - 2020-12-25 00:00 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-25 00:00 - 2020-12-25 00:00 - 000000000 ____D C:\Users\Enseignant\AppData\Local\mbam
2020-12-24 23:59 - 2020-12-24 23:59 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000220160 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-12-24 23:58 - 2020-12-24 23:58 - 000000000 ____D C:\Program Files\Malwarebytes
2020-12-24 22:41 - 2020-12-26 00:08 - 000000044 _____ C:\ProgramData\filelist.txt
2020-12-24 09:51 - 2020-12-24 09:51 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-12-23 21:35 - 2020-12-24 17:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-20 21:30 - 2020-12-24 22:38 - 000008420 _____ C:\Users\delcert.txt
2020-12-20 18:48 - 2020-12-20 18:59 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-12-20 18:24 - 2020-12-27 12:20 - 000022932 _____ C:\Windows\SysWOW64\rpcnetp.dll
2020-12-14 21:21 - 2020-12-14 21:22 - 000000000 ___SD C:\Windows\UpdateAssistantV2
2020-12-14 19:51 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\SysWOW64\locale.nls
2020-12-14 19:51 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\system32\locale.nls
2020-12-14 19:51 - 2018-04-26 20:33 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2020-12-14 19:51 - 2018-03-02 07:36 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2020-12-14 19:51 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2020-12-14 19:51 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2020-12-14 19:51 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2020-12-14 19:51 - 2017-09-29 08:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2020-12-14 19:50 - 2018-07-18 00:50 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2020-12-14 19:50 - 2018-06-08 06:19 - 000753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2020-12-14 19:50 - 2018-03-18 22:02 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2020-12-14 19:50 - 2018-03-02 07:43 - 000494080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2020-12-14 19:50 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2020-12-14 19:49 - 2018-05-21 11:52 - 001859584 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2020-12-14 19:48 - 2020-12-27 12:44 - 000000000 ____D C:\ProgramData\IndexEducation
2020-12-14 19:48 - 2020-12-25 22:43 - 000000000 ____D C:\Program Files\Index Education
2020-12-14 19:48 - 2020-12-14 19:48 - 000002286 _____ C:\Users\Public\Desktop\Client PRONOTE 2020.lnk
2020-12-14 19:48 - 2020-12-14 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PRONOTE Réseau 2020
2020-12-14 19:48 - 2020-12-14 19:48 - 000000000 ____D C:\Program Files (x86)\Index Education
2020-12-14 19:44 - 2018-03-02 10:46 - 000037376 _____ C:\Windows\system32\SpectrumSyncClient.dll
2020-12-14 19:44 - 2018-03-02 07:49 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2020-12-14 19:44 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-12-14 19:44 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2020-12-14 19:42 - 2018-08-10 00:49 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2020-12-14 19:42 - 2018-08-09 01:24 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2020-12-14 19:42 - 2018-07-18 00:49 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-12-14 19:42 - 2018-06-08 06:30 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2020-12-14 19:42 - 2018-06-08 06:19 - 000508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2020-12-14 19:42 - 2018-05-24 22:28 - 002447360 _____ C:\Windows\system32\Windows.Mirage.dll
2020-12-14 19:40 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-12-14 19:40 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-12-14 19:40 - 2017-09-01 06:55 - 000031932 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2020-12-14 19:39 - 2018-04-26 20:33 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2020-12-14 19:39 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2020-12-14 19:38 - 2018-08-30 06:03 - 001397712 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-12-14 19:38 - 2018-08-30 06:03 - 001066128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-12-14 19:38 - 2018-06-08 06:31 - 002079744 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-12-14 19:38 - 2018-06-08 06:19 - 002011648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-12-14 19:37 - 2020-12-14 19:37 - 000000000 ____D C:\Program Files (x86)\Absolute Software
2020-12-14 19:36 - 2018-03-18 22:07 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2020-12-14 19:35 - 2017-09-29 08:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2020-12-14 19:34 - 2018-08-30 05:56 - 000035296 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2020-12-14 19:34 - 2018-06-08 06:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2020-12-14 19:34 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-12-14 19:34 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2020-12-14 19:33 - 2018-09-27 15:54 - 000125015 ____R C:\Windows\system32\CaptureCountdown.hcp
2020-12-14 19:33 - 2018-09-27 15:54 - 000119017 ____R C:\Windows\system32\CaptureBrackets.hcp
2020-12-14 19:33 - 2018-09-27 15:54 - 000017806 ____R C:\Windows\system32\CaptureToast.hcp
2020-12-14 19:33 - 2018-06-08 06:32 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2020-12-14 19:33 - 2018-06-08 06:25 - 000971264 _____ C:\Windows\system32\autochk.exe
2020-12-14 19:32 - 2018-09-27 06:13 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2020-12-14 19:32 - 2018-08-30 06:01 - 001018784 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-12-14 19:32 - 2018-06-08 06:36 - 000778240 _____ C:\Windows\system32\MBR2GPT.EXE
2020-12-14 19:32 - 2018-03-02 14:37 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-27 12:56 - 2017-05-30 18:50 - 000000000 ____D C:\Users\Enseignant\AppData\LocalLow\Mozilla
2020-12-27 12:52 - 2020-07-10 17:54 - 000000000 ____D C:\Program Files\CCleaner
2020-12-27 12:48 - 2017-05-29 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-12-27 12:48 - 2017-05-29 14:57 - 000000000 ____D C:\Program Files\7-Zip
2020-12-27 12:28 - 2017-05-10 02:45 - 005533910 _____ C:\Windows\system32\PerfStringBackup.INI
2020-12-27 12:28 - 2017-05-05 08:25 - 002737216 _____ C:\Windows\system32\perfh00C.dat
2020-12-27 12:28 - 2017-05-05 08:25 - 000714960 _____ C:\Windows\system32\perfc00C.dat
2020-12-27 12:22 - 2020-07-10 13:08 - 000000000 ____D C:\ProgramData\CTES
2020-12-27 12:21 - 2020-07-10 07:36 - 000022932 _____ C:\Windows\system32\rpcnetp.exe
2020-12-27 12:20 - 2020-07-10 07:38 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-12-27 12:20 - 2020-07-10 07:36 - 000022932 _____ C:\Windows\SysWOW64\rpcnetp.exe
2020-12-27 12:20 - 2017-08-23 13:42 - 000078032 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll
2020-12-27 12:20 - 2017-08-23 13:40 - 000076304 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\oleup.dll
2020-12-27 12:20 - 2017-06-23 13:39 - 000033768 _____ C:\Windows\system32\wpbbin.exe
2020-12-27 12:20 - 2017-05-29 20:28 - 000000000 __SHD C:\Users\Enseignant\IntelGraphicsProfiles
2020-12-27 12:20 - 2017-05-10 02:35 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-27 12:20 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
2020-12-27 12:20 - 2017-03-18 12:40 - 001048576 _____ C:\Windows\system32\config\BBI
2020-12-26 23:55 - 2017-05-29 20:28 - 000000000 ____D C:\Users\Enseignant
2020-12-26 23:39 - 2017-07-18 12:14 - 000000114 __RSH C:\ProgramData\3002.xml
2020-12-26 23:18 - 2017-07-05 14:23 - 000001179 _____ C:\Users\Enseignant\Desktop\Mozilla Firefox.lnk
2020-12-26 23:16 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
2020-12-25 23:54 - 2017-03-18 22:03 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-12-25 22:43 - 2017-05-10 03:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-12-25 00:17 - 2017-05-29 20:29 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Google
2020-12-25 00:06 - 2020-06-22 11:40 - 000000000 ____D C:\Program Files (x86)\ARPlugin 2.3 (FREE) SketchUp
2020-12-24 23:03 - 2017-05-30 19:20 - 000000000 ____D C:\Users\Enseignant\AppData\Roaming\vlc
2020-12-24 22:37 - 2017-05-28 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-12-24 22:37 - 2017-05-28 20:02 - 000000000 ____D C:\Program Files (x86)\Java
2020-12-24 22:36 - 2017-05-28 20:03 - 000165032 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2020-12-24 22:11 - 2020-07-10 17:28 - 000007132 _____ C:\Users\addcert.txt
2020-12-24 17:59 - 2017-05-29 20:29 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Packages
2020-12-24 17:34 - 2017-05-29 17:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-24 09:51 - 2017-05-29 17:13 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-12-23 22:54 - 2017-05-10 02:35 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-12-20 23:18 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
2020-12-20 23:05 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
2020-12-20 23:03 - 2020-09-11 15:19 - 000000000 ____D C:\Users\Enseignant\AppData\Local\ElevatedDiagnostics
2020-12-20 21:56 - 2017-05-29 14:54 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-12-20 21:55 - 2017-05-29 14:54 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-20 21:39 - 2017-05-30 19:02 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Adobe
2020-12-20 21:29 - 2017-06-01 17:53 - 000000626 __RSH C:\Users\Enseignant\ntuser.pol
2020-12-20 18:50 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 18:49 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
2020-12-20 18:47 - 2017-03-18 22:03 - 000000000 ___RD C:\Program Files\Windows Defender
2020-12-20 18:30 - 2017-05-10 02:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-12-20 18:27 - 2020-07-10 17:54 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-20 18:24 - 2017-05-28 19:26 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2020-12-20 18:24 - 2017-05-28 19:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2020-12-20 18:24 - 2017-05-10 02:35 - 000327568 _____ C:\Windows\system32\FNTCACHE.DAT
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinMetadata
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\setup
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\migwiz
2020-12-14 21:21 - 2017-05-05 08:25 - 000000000 ____D C:\Windows\system32\fr
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 ____D C:\Windows\HoloShell
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\PrintDialog
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\appraiser
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\ShellExperiences
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Provisioning
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 21:21 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Dism
2020-12-14 21:21 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\servicing
2020-12-14 21:18 - 2017-03-18 22:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2020-12-14 21:18 - 2017-03-18 22:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2020-12-14 21:09 - 2017-05-28 19:26 - 000000000 ____D C:\Windows\system32\MRT
2020-12-14 20:33 - 2017-05-28 19:26 - 133736600 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-12-14 20:24 - 2017-05-28 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2020-12-14 19:45 - 2020-07-10 13:08 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-14 19:26 - 2017-05-28 19:31 - 000003588 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-14 19:26 - 2017-05-28 19:31 - 000003464 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-14 19:24 - 2020-07-10 13:03 - 000004764 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-12-14 19:24 - 2017-05-28 19:31 - 000795000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-12-14 19:24 - 2017-05-28 19:16 - 000004594 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-14 19:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-12-14 19:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers ========
2017-05-29 15:00 - 2017-05-29 16:05 - 000000412 _____ () C:\Program Files (x86)\Common Files\eInstruction.ini
2017-05-29 14:44 - 2003-03-21 11:45 - 000250544 _____ (KeyWorks Software) C:\Program Files (x86)\Common Files\keyhelp.ocx
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2020-12-20 23:03
==================== Fin de FRST.txt ========================
Exécuté par Enseignant (administrateur) sur CD94-6H031115D7 (TOSHIBA HybridCD2017) (27-12-2020 13:30:17)
Exécuté depuis C:\Users\Enseignant\Desktop
Profils chargés: Enseignant
Platform: Windows 10 Pro Version 1703 15063.1387 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Absolute Software Corp. -> Absolute Software Corp) C:\ProgramData\CTES\Ctes.exe
(Absolute Software Corp. -> Absolute Software Corp) C:\ProgramData\CTES\ProviderHost.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\AbtSvcHost_.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\oleup.exe
(Absolute Software Corp. -> Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe
(Absolute Software Corp. -> Absolute Software Corporation) C:\ProgramData\CTES\Components\SVC\CtesHostSvc.exe
(Absolute Software Corp. -> Absolute Software) C:\ProgramData\CTES\Components\HDP\CtHWiPrvService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(INDEX EDUCATION SASU -> Index Education) C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\IIS\RtI2SBgProc64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\IIS\RtkI2SAudioService64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGui64.exe [9446144 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtI2SBgProc] => C:\Program Files\Realtek\Audio\IIS\RtI2SBgProc64.exe [2734848 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1960075066-233862308-744847086-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1960075066-233862308-744847086-1002\...\Policies\Explorer: [NoChangeStartMenu] 1
HKLM\...\Print\Monitors\IppMon: C:\Windows\system32\IPPMon.dll [225792 2017-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116224 2017-05-29] (pdfforge GmbH) [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-25] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> C:\Windows\system32\hvsigpext.dll [2017-03-19] (Microsoft Windows -> )
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Policies: C:\Users\Enseignant\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {14578FDB-27DF-4856-A889-17E2AAFDAC6B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {41A5DF36-5623-485B-8D5B-7F62E2A58DF3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {69F805E7-ABB4-4F2F-9DE6-9876D65A6D06} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-05-28] (Google Inc -> Google Inc.)
Task: {7B3316C7-935B-42A0-ABBE-DE3A2DA265FA} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-23] (Mozilla Corporation -> Mozilla Foundation)
Task: {819FA7A6-8A9F-4EFF-9982-B40DABB92A50} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8492094F-B913-4C03-B03B-B3D15A258C26} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
Task: {9D50D5C7-D923-47DF-8BE6-7E30C1EE8150} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-12-25] (Avast Software s.r.o. -> Avast Software)
Task: {CBE27991-2E8F-4F39-B4D7-3CAAD5743F97} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CE077096-CD7A-41D4-85A2-347B14987B2C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-05-28] (Google Inc -> Google Inc.)
Task: {E09FF441-E29E-47D4-BBFB-C747B7DAE9F7} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-14] (Adobe Inc. -> Adobe)
Task: {EA967444-9BD8-4C36-AB24-18B2E4AC42C9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
Task: {F146BA26-B16F-4905-8884-6EA932524444} - System32\Tasks\Activation => powershell.exe -executionpolicy remotesigned -file C:\Windows\System32\Sysprep\Apply_OEMKey.ps1
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{2e29b2a4-b91c-40ed-b2e2-ef45f5e75d74}: [DhcpNameServer] 192.168.55.1
Edge:
======
DownloadDir: C:\Users\Enseignant\Downloads
FireFox:
========
FF DefaultProfile: 3cogqj2i.default
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\www.kiwix.org\Kiwix\Profiles\29anb8px.default [2017-06-01]
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default [2020-12-27]
FF Homepage: Mozilla\Firefox\Profiles\3cogqj2i.default -> hxxps://www.google.com/
FF Extension: (Polski Language Pack) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2020-12-24]
FF Extension: (Polish Spellchecker Dictionary) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\pl@dictionaries.addons.mozilla.org.xpi [2020-12-24]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\3cogqj2i.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-20]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files (x86)\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default [2020-12-26]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Docs) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-25]
CHR Extension: (Google Drive) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-25]
CHR Extension: (YouTube) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-30]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-12-25]
CHR Extension: (Adobe Acrobat) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-25]
CHR Extension: (Gmail) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AbtSvcHost; C:\Windows\SysWOW64\AbtSvcHost_.exe [84888 2015-10-09] (Absolute Software Corp. -> Absolute Software Corp.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-14] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [164568 2015-08-03] (Realtek Semiconductor Corp -> )
R2 Ctes Manager; C:\ProgramData\CTES\Ctes.exe [5084688 2020-12-14] (Absolute Software Corp. -> Absolute Software Corp)
R2 CtesHostSvc; C:\ProgramData\CTES\Components\SVC\CtesHostSvc.exe [1976336 2020-12-14] (Absolute Software Corp. -> Absolute Software Corporation)
R2 MajIndexEducationService; C:\Program Files (x86)\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe [3326056 2020-07-21] (INDEX EDUCATION SASU -> Index Education)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
R2 oleup; C:\Windows\SysWOW64\oleup.exe [76304 2017-08-23] (Absolute Software Corp. -> Absolute Software Corp.)
R2 rpchdp; C:\ProgramData\CTES\Components\HDP\CtHWiPrvService.exe [24592 2020-12-14] (Absolute Software Corp. -> Absolute Software)
R2 RtkI2SCodec; C:\Program Files\Realtek\Audio\IIS\RtkI2SAudioService64.exe [158464 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2018-06-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-20] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16832 2020-12-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469472 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [216984 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326064 2020-12-25] (Avast Software s.r.o. -> AVAST Software)
S3 BcmGnssBus; C:\Windows\System32\drivers\BcmGnssBus.sys [120472 2015-07-06] (Broadcom Corporation -> Broadcom Corporation)
R3 camera; C:\Windows\system32\DRIVERS\iacamera64.sys [942576 2016-03-11] (Intel(R) Intel_ICG -> Intel(R) Corporation)
R3 GoodixTouchDriver; C:\Windows\System32\drivers\GoodixTouchDriver.sys [242264 2016-09-06] (WDKTestCert wzm,131051712039785692 -> Windows (R) Win 7 DDK provider)
R3 iaisp; C:\Windows\System32\drivers\iaisp64.sys [38896 2016-03-11] (Intel(R) Intel_ICG -> Intel(R) Corporation)
R3 iaspie; C:\Windows\System32\drivers\iaspie.sys [62976 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 iauarte; C:\Windows\System32\drivers\iauarte.sys [103936 2015-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 IntelBatteryManagement; C:\Windows\System32\drivers\IntelBatteryManagement.sys [113368 2016-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 IntelSST; C:\Windows\system32\drivers\isstrtc.sys [724488 2016-02-02] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220160 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-12-24] (Malwarebytes Inc -> Malwarebytes)
R3 ov5648; C:\Windows\System32\drivers\ov5648.sys [123112 2015-10-28] (WDKTestCert huizhou1,130864188504416365 -> Intel(R) Corporation)
R3 PMIC; C:\Windows\System32\drivers\PMIC.sys [100864 2015-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
R3 rtii2sac64; C:\Windows\system32\DRIVERS\rtii2sac.sys [574208 2016-02-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 RtkUart; C:\Windows\System32\drivers\RtkUart.sys [626944 2015-07-24] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RtlWlans; C:\Windows\System32\drivers\rtwlans.sys [6687232 2017-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 unicam; C:\Windows\System32\drivers\ov2680.sys [121216 2016-09-18] (WDKTestCert huizhou1,130735866078346983 -> Intel(R) Corporation)
S3 usbser; C:\Windows\SysWOW64\drivers\usbser.sys [25600 2008-12-02] (Microsoft Corporation) [Fichier non signé]
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [48536 2020-12-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [429296 2020-12-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-20] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-27 13:29 - 2020-12-27 13:31 - 000021958 _____ C:\Users\Enseignant\Desktop\FRST.txt
2020-12-27 12:59 - 2020-12-27 12:59 - 000000000 ____D C:\Users\Enseignant\Desktop\FRST-OlderVersion
2020-12-27 12:58 - 2020-12-27 13:30 - 000000000 ____D C:\FRST
2020-12-27 12:58 - 2020-12-27 12:59 - 002286592 _____ (Farbar) C:\Users\Enseignant\Desktop\FRST64-2.1.exe
2020-12-27 12:02 - 2020-12-27 12:05 - 000000000 ____D C:\AdwCleaner
2020-12-26 23:54 - 2020-12-26 23:54 - 000001370 _____ C:\Users\Enseignant\Desktop\CPE - ANNEE 2020-2021.lnk
2020-12-26 23:53 - 2020-12-27 11:12 - 000000000 ____D C:\Users\Enseignant\CPE - ANNEE 2020-2021
2020-12-25 23:56 - 2020-12-25 23:56 - 000002167 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2020-12-25 23:56 - 2020-12-25 23:56 - 000000000 ____D C:\Users\Enseignant\AppData\Roaming\Avast Software
2020-12-25 23:54 - 2020-12-27 12:21 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-12-25 23:54 - 2020-12-25 23:54 - 000522480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000469472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000326064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000216984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000176384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000108928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000097360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000084496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000042424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000016832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-12-25 23:54 - 2020-12-25 23:54 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-12-25 23:54 - 2020-12-25 23:54 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-12-25 23:54 - 2020-12-25 23:53 - 000851256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000340576 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-12-25 23:54 - 2020-12-25 23:53 - 000332880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000208672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-12-25 23:54 - 2020-12-25 23:53 - 000036792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-12-25 23:52 - 2020-12-27 12:23 - 000000000 ____D C:\ProgramData\Avast Software
2020-12-25 23:52 - 2020-12-25 23:52 - 000000000 ____D C:\Program Files\Avast Software
2020-12-25 22:43 - 2020-12-25 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EDT Monoposte 2020
2020-12-25 00:12 - 2020-12-25 00:12 - 000002324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-25 00:12 - 2020-12-25 00:12 - 000002283 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-12-25 00:12 - 2020-12-25 00:12 - 000000000 ____D C:\Program Files\Google
2020-12-25 00:00 - 2020-12-25 00:00 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-25 00:00 - 2020-12-25 00:00 - 000000000 ____D C:\Users\Enseignant\AppData\Local\mbam
2020-12-24 23:59 - 2020-12-24 23:59 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000220160 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-12-24 23:59 - 2020-12-24 23:59 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-12-24 23:58 - 2020-12-24 23:58 - 000000000 ____D C:\Program Files\Malwarebytes
2020-12-24 22:41 - 2020-12-26 00:08 - 000000044 _____ C:\ProgramData\filelist.txt
2020-12-24 09:51 - 2020-12-24 09:51 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-12-23 21:35 - 2020-12-24 17:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-20 21:30 - 2020-12-24 22:38 - 000008420 _____ C:\Users\delcert.txt
2020-12-20 18:48 - 2020-12-20 18:59 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-12-20 18:24 - 2020-12-27 12:20 - 000022932 _____ C:\Windows\SysWOW64\rpcnetp.dll
2020-12-14 21:21 - 2020-12-14 21:22 - 000000000 ___SD C:\Windows\UpdateAssistantV2
2020-12-14 19:51 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\SysWOW64\locale.nls
2020-12-14 19:51 - 2018-07-31 22:24 - 000804272 _____ C:\Windows\system32\locale.nls
2020-12-14 19:51 - 2018-04-26 20:33 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2020-12-14 19:51 - 2018-03-02 07:36 - 000411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2020-12-14 19:51 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2020-12-14 19:51 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2020-12-14 19:51 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2020-12-14 19:51 - 2017-09-29 08:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2020-12-14 19:50 - 2018-07-18 00:50 - 000432128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2020-12-14 19:50 - 2018-06-08 06:19 - 000753664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2020-12-14 19:50 - 2018-03-18 22:02 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2020-12-14 19:50 - 2018-03-02 07:43 - 000494080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2020-12-14 19:50 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscript.ocx
2020-12-14 19:49 - 2018-05-21 11:52 - 001859584 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2020-12-14 19:48 - 2020-12-27 12:44 - 000000000 ____D C:\ProgramData\IndexEducation
2020-12-14 19:48 - 2020-12-25 22:43 - 000000000 ____D C:\Program Files\Index Education
2020-12-14 19:48 - 2020-12-14 19:48 - 000002286 _____ C:\Users\Public\Desktop\Client PRONOTE 2020.lnk
2020-12-14 19:48 - 2020-12-14 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PRONOTE Réseau 2020
2020-12-14 19:48 - 2020-12-14 19:48 - 000000000 ____D C:\Program Files (x86)\Index Education
2020-12-14 19:44 - 2018-03-02 10:46 - 000037376 _____ C:\Windows\system32\SpectrumSyncClient.dll
2020-12-14 19:44 - 2018-03-02 07:49 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2020-12-14 19:44 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2020-12-14 19:44 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2020-12-14 19:42 - 2018-08-10 00:49 - 004876800 _____ (Gracenote, Inc.) C:\Windows\system32\gnsdk_fp.dll
2020-12-14 19:42 - 2018-08-09 01:24 - 004171264 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll
2020-12-14 19:42 - 2018-07-18 00:49 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-12-14 19:42 - 2018-06-08 06:30 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2020-12-14 19:42 - 2018-06-08 06:19 - 000508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2020-12-14 19:42 - 2018-05-24 22:28 - 002447360 _____ C:\Windows\system32\Windows.Mirage.dll
2020-12-14 19:40 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2020-12-14 19:40 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2020-12-14 19:40 - 2017-09-01 06:55 - 000031932 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2020-12-14 19:39 - 2018-04-26 20:33 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2020-12-14 19:39 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2020-12-14 19:38 - 2018-08-30 06:03 - 001397712 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-12-14 19:38 - 2018-08-30 06:03 - 001066128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-12-14 19:38 - 2018-06-08 06:31 - 002079744 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-12-14 19:38 - 2018-06-08 06:19 - 002011648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-12-14 19:37 - 2020-12-14 19:37 - 000000000 ____D C:\Program Files (x86)\Absolute Software
2020-12-14 19:36 - 2018-03-18 22:07 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2020-12-14 19:35 - 2017-09-29 08:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2020-12-14 19:34 - 2018-08-30 05:56 - 000035296 _____ C:\Windows\system32\SyncAppvPublishingServer.exe
2020-12-14 19:34 - 2018-06-08 06:32 - 000540160 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2020-12-14 19:34 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2020-12-14 19:34 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2020-12-14 19:33 - 2018-09-27 15:54 - 000125015 ____R C:\Windows\system32\CaptureCountdown.hcp
2020-12-14 19:33 - 2018-09-27 15:54 - 000119017 ____R C:\Windows\system32\CaptureBrackets.hcp
2020-12-14 19:33 - 2018-09-27 15:54 - 000017806 ____R C:\Windows\system32\CaptureToast.hcp
2020-12-14 19:33 - 2018-06-08 06:32 - 000819712 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2020-12-14 19:33 - 2018-06-08 06:25 - 000971264 _____ C:\Windows\system32\autochk.exe
2020-12-14 19:32 - 2018-09-27 06:13 - 000967168 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2020-12-14 19:32 - 2018-08-30 06:01 - 001018784 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-12-14 19:32 - 2018-06-08 06:36 - 000778240 _____ C:\Windows\system32\MBR2GPT.EXE
2020-12-14 19:32 - 2018-03-02 14:37 - 000459776 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2020-12-27 12:56 - 2017-05-30 18:50 - 000000000 ____D C:\Users\Enseignant\AppData\LocalLow\Mozilla
2020-12-27 12:52 - 2020-07-10 17:54 - 000000000 ____D C:\Program Files\CCleaner
2020-12-27 12:48 - 2017-05-29 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-12-27 12:48 - 2017-05-29 14:57 - 000000000 ____D C:\Program Files\7-Zip
2020-12-27 12:28 - 2017-05-10 02:45 - 005533910 _____ C:\Windows\system32\PerfStringBackup.INI
2020-12-27 12:28 - 2017-05-05 08:25 - 002737216 _____ C:\Windows\system32\perfh00C.dat
2020-12-27 12:28 - 2017-05-05 08:25 - 000714960 _____ C:\Windows\system32\perfc00C.dat
2020-12-27 12:22 - 2020-07-10 13:08 - 000000000 ____D C:\ProgramData\CTES
2020-12-27 12:21 - 2020-07-10 07:36 - 000022932 _____ C:\Windows\system32\rpcnetp.exe
2020-12-27 12:20 - 2020-07-10 07:38 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-12-27 12:20 - 2020-07-10 07:36 - 000022932 _____ C:\Windows\SysWOW64\rpcnetp.exe
2020-12-27 12:20 - 2017-08-23 13:42 - 000078032 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll
2020-12-27 12:20 - 2017-08-23 13:40 - 000076304 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\oleup.dll
2020-12-27 12:20 - 2017-06-23 13:39 - 000033768 _____ C:\Windows\system32\wpbbin.exe
2020-12-27 12:20 - 2017-05-29 20:28 - 000000000 __SHD C:\Users\Enseignant\IntelGraphicsProfiles
2020-12-27 12:20 - 2017-05-10 02:35 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-27 12:20 - 2017-03-18 22:01 - 000000000 ____D C:\Windows\INF
2020-12-27 12:20 - 2017-03-18 12:40 - 001048576 _____ C:\Windows\system32\config\BBI
2020-12-26 23:55 - 2017-05-29 20:28 - 000000000 ____D C:\Users\Enseignant
2020-12-26 23:39 - 2017-07-18 12:14 - 000000114 __RSH C:\ProgramData\3002.xml
2020-12-26 23:18 - 2017-07-05 14:23 - 000001179 _____ C:\Users\Enseignant\Desktop\Mozilla Firefox.lnk
2020-12-26 23:16 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\AppReadiness
2020-12-25 23:54 - 2017-03-18 22:03 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-12-25 22:43 - 2017-05-10 03:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-12-25 00:17 - 2017-05-29 20:29 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Google
2020-12-25 00:06 - 2020-06-22 11:40 - 000000000 ____D C:\Program Files (x86)\ARPlugin 2.3 (FREE) SketchUp
2020-12-24 23:03 - 2017-05-30 19:20 - 000000000 ____D C:\Users\Enseignant\AppData\Roaming\vlc
2020-12-24 22:37 - 2017-05-28 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-12-24 22:37 - 2017-05-28 20:02 - 000000000 ____D C:\Program Files (x86)\Java
2020-12-24 22:36 - 2017-05-28 20:03 - 000165032 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2020-12-24 22:11 - 2020-07-10 17:28 - 000007132 _____ C:\Users\addcert.txt
2020-12-24 17:59 - 2017-05-29 20:29 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Packages
2020-12-24 17:34 - 2017-05-29 17:13 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-24 09:51 - 2017-05-29 17:13 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-12-23 22:54 - 2017-05-10 02:35 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-12-20 23:18 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\LiveKernelReports
2020-12-20 23:05 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\rescache
2020-12-20 23:03 - 2020-09-11 15:19 - 000000000 ____D C:\Users\Enseignant\AppData\Local\ElevatedDiagnostics
2020-12-20 21:56 - 2017-05-29 14:54 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-12-20 21:55 - 2017-05-29 14:54 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-20 21:39 - 2017-05-30 19:02 - 000000000 ____D C:\Users\Enseignant\AppData\Local\Adobe
2020-12-20 21:29 - 2017-06-01 17:53 - 000000626 __RSH C:\Users\Enseignant\ntuser.pol
2020-12-20 18:50 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-20 18:49 - 2017-03-18 21:51 - 000000000 ____D C:\Windows\CbsTemp
2020-12-20 18:47 - 2017-03-18 22:03 - 000000000 ___RD C:\Program Files\Windows Defender
2020-12-20 18:30 - 2017-05-10 02:51 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-12-20 18:27 - 2020-07-10 17:54 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-20 18:24 - 2017-05-28 19:26 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2020-12-20 18:24 - 2017-05-28 19:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2020-12-20 18:24 - 2017-05-10 02:35 - 000327568 _____ C:\Windows\system32\FNTCACHE.DAT
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinMetadata
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\setup
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\oobe
2020-12-14 21:22 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\migwiz
2020-12-14 21:21 - 2017-05-05 08:25 - 000000000 ____D C:\Windows\system32\fr
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 ____D C:\Windows\HoloShell
2020-12-14 21:21 - 2017-03-19 03:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\F12
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\PrintDialog
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\appraiser
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\ShellExperiences
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\Provisioning
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-12-14 21:21 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-14 21:21 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\system32\Dism
2020-12-14 21:21 - 2017-03-18 12:40 - 000000000 ____D C:\Windows\servicing
2020-12-14 21:18 - 2017-03-18 22:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2020-12-14 21:18 - 2017-03-18 22:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2020-12-14 21:09 - 2017-05-28 19:26 - 000000000 ____D C:\Windows\system32\MRT
2020-12-14 20:33 - 2017-05-28 19:26 - 133736600 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-12-14 20:24 - 2017-05-28 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2020-12-14 19:45 - 2020-07-10 13:08 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-14 19:26 - 2017-05-28 19:31 - 000003588 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-14 19:26 - 2017-05-28 19:31 - 000003464 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-14 19:24 - 2020-07-10 13:03 - 000004764 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-12-14 19:24 - 2017-05-28 19:31 - 000795000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-12-14 19:24 - 2017-05-28 19:16 - 000004594 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-14 19:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-12-14 19:23 - 2017-03-18 22:03 - 000000000 ____D C:\Windows\system32\Macromed
==================== Fichiers à la racine de certains dossiers ========
2017-05-29 15:00 - 2017-05-29 16:05 - 000000412 _____ () C:\Program Files (x86)\Common Files\eInstruction.ini
2017-05-29 14:44 - 2003-03-21 11:45 - 000250544 _____ (KeyWorks Software) C:\Program Files (x86)\Common Files\keyhelp.ocx
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
LastRegBack: 2020-12-20 23:03
==================== Fin de FRST.txt ========================