Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Exécuté par Cartron Marcelle (administrateur) sur MOUNA (Packard Bell EasyNote TJ72) (02-01-2021 20:32:42)
Exécuté depuis C:\Images\Desktop
Profils chargés: Cartron Marcelle
Platform: Windows 10 Home Version 20H2 19042.631 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.139.59\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [508472 2009-10-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetL] => C:\Windows\PLFSetL.exe
HKLM\...\Run: [SNUVCDSM] => C:\Windows\snuvcdsm.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [775560 2017-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [EPSON SX410 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.EXE [223232 2008-10-02] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [BingSvc] => C:\Users\Cartron Marcelle\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-04-10] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Uninstall 19.043.0304.0013\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Uninstall 19.043.0304.0013] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\19.043.0304.0013"
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON SX410 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFCE.DLL [108032 2008-08-08] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\WINDOWS\system32\hpinkstsa011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\WINDOWS\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk [2021-01-01]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3050A J611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CQ1CHCN05WK;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2016-06-18]
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {032DEAA0-8392-4977-8823-574AB74AAD65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {09D19B38-8D17-43BB-8D9A-872BBB394599} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {0BFF2AA2-F6A8-45D3-82F3-B32A39BCBEA1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {13484830-E40E-43ED-B035-A72DEDAA284E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {175F79BA-4693-4084-90F8-A0E3B0564E1D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {18A10A66-7223-42A4-927F-68E25A3472CF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1A6AD36B-BE82-4BDB-977B-294064A69F4C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {248BC439-D4A5-434F-8BB6-7BED09BCE821} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {24DF503D-C745-489A-8F75-998D93B4FFFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {29E4BD91-1E06-44E9-BE7B-ED5B15DAC577} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {2CEAB11E-460A-42A4-9591-92739A9CFD5B} - System32\Tasks\HP Photo Creations Communicator => C:\Users\Cartron Marcelle\AppData\Roaming\HP Photo Creations\Communicator.exe [186080 2017-05-21] (RocketLife -> )
Task: {35996892-DD2F-4A60-9CCA-F67D44715E93} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {35F921A4-FE2F-46A3-B82F-7B75DB843544} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3CBF2B65-1715-4B01-9F88-20521779182C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F65EC36-577B-479C-A968-0795F1C469A3} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {46FE613D-F574-4E45-A292-ED5D9EDAD7CD} - System32\Tasks\Driver Booster SkipUAC (Cartron Marcelle) => C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4AF59F62-1B53-4D3C-8F19-C6256912FBCD} - System32\Tasks\{3675E30E-AE34-4FAB-B4E6-C4A95D9C2AF2} => C:\Windows\system32\pcalua.exe -a "C:\Users\Cartron Marcelle\Downloads\WindowsPhone (1).exe" -d "C:\Users\Cartron Marcelle\Downloads"
Task: {4E8ADF82-145E-46CC-A345-CC6021D31A4B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {55F6EB11-D043-4D3F-8211-990C2D0067EB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {569A26D5-AE7A-41BA-BE49-5D8D990491D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {605FDFC3-B708-4E10-94A2-942C4F72CCD6} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {63D202C1-CCD2-4197-8A09-C3892AF41A58} - System32\Tasks\Opera scheduled Autoupdate 1592546743 => C:\Users\Cartron Marcelle\AppData\Local\Programs\Opera\launcher.exe
Task: {6520B711-9ABA-4E66-BAA7-7A055A80FAD7} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B4A36AB-1243-41C9-AFF1-2B9783625678} - System32\Tasks\{48AA2D55-EBBF-4443-85F5-7554A789C54B} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.18.85.109/fr/abandoninstall?page=tsBing
Task: {6C6D9D44-1411-46F1-90B9-5B4E46C8C231} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7104A901-A948-47A7-B788-A74D2C3A554F} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {75C441FC-2660-471F-A281-35AA498FEA44} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {769425FE-7B97-4161-8DF9-17AB03E7CF90} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {7D2B08AA-EC88-4160-A59C-4A378E56CE0C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {7D398B6C-1C05-4D0B-B7F6-B78A6754292E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8271C70A-66A1-4144-B6DC-B1505F9F5147} - System32\Tasks\{E4899083-C779-425B-92BB-559C0412F7DB} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.14.0.106/fr/abandoninstall?page=tsMain
Task: {872BF206-06C0-453D-9886-8AC9326641E0} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {8F046CA7-E678-4289-9FB2-2128506A9B4C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {91A671A6-64C1-4225-8046-B90F98A9A427} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {91B87FD4-C1E6-4AEB-AF17-03A9ADB57228} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {930D1B1F-3665-40EE-AAAC-601675312D56} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9410BA1D-F267-4EFA-B3B3-501CBC9ADE11} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {9490C1F7-CFC5-4156-B15B-C2C89DA2EFC9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9A4D04C9-88BF-4096-94B9-A050DBAF20E5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-10-26] (Avast Software s.r.o. -> Avast Software)
Task: {9A6BAB18-E5CB-45F3-9C45-1D2EAA96A2E7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {AFF20AB2-37CC-485F-A8C8-CA0178880B2B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {B04913D8-CDBD-4B18-B97E-3F5D1DE6C01F} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10219208 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B2DE675B-1747-46D2-8127-6EE0291D528F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C171ACDE-9591-432F-9CF0-229155D3AB8F} - System32\Tasks\AVAST Software\Avast settings backup
Task: {C310F1BE-B91F-4DE9-99F3-B848C54D2074} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D6B18C26-C934-4CB4-820A-546232DD3B28} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {E2D86794-8C2C-4AB0-BB0D-AE0CCBF18685} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E92FFD66-60A3-4FAB-AFE0-164A77992777} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {EB503365-D88D-4ACF-BE80-35F9631FB97C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {FAEAA3F8-AD79-42BF-916E-4ABAF7F475FD} - System32\Tasks\{FF9DF58F-B37B-49DA-A3B7-2676B9B1879B} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.18.85.109/fr/abandoninstall?page=tsBing
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\Users\Cartron Marcelle\AppData\Roaming\HP Photo Creations\Communicator.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1058ABA8-EEBE-4035-862F-CC50657F4890}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge Profile: C:\Users\Cartron Marcelle\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-02]
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3664279960-4019310097-1218803099-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Cartron Marcelle\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (Visan Industries -> RocketLife, LLP)
Chrome:
=======
CHR Profile: C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default [2021-01-02]
CHR DownloadDir: E:\Images\Downloads
CHR NewTab: Default -> Not-active:"chrome-extension://bcdhacjdengeibbbhmdjodiecaiciehc/ntp1.html"
CHR DefaultSearchURL: Default -> hxxps://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&enableSearch=true&rdrct=no&redirect=CPC
CHR DefaultSearchKeyword: Default -> askwebs
CHR DefaultSuggestURL: Default -> hxxps://ss.search.ask.com/ss?li=ff&sstype=prefix&limit=10&hl=en&q={searchTerms}&enableSearch=true&rdrct=no
CHR Extension: (Slides) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-30]
CHR Extension: (Docs) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-30]
CHR Extension: (Google Drive) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (OnlineWorkSuite) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcdhacjdengeibbbhmdjodiecaiciehc [2020-12-31]
CHR Extension: (YouTube) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-30]
CHR Extension: (Avira Password Manager) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2020-12-30]
CHR Extension: (Avira Safe Shopping) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2020-12-30]
CHR Extension: (Sheets) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-30]
CHR Extension: (Skype) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2020-12-30]
CHR Extension: (AVG SafePrice | Comparaison, offres, coupons) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-12-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-30]
CHR Extension: (Ask Web Search) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\okmdknhejjiichkcppoppdaknekjekoa [2020-12-30]
CHR Extension: (Gmail) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-30]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
Opera:
=======
OPR DownloadDir:
OPR Extension: (Avira Browser Safety) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2020-06-19]
OPR Extension: (Avira Password Manager) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2020-06-19]
OPR Extension: (Free Avira Phantom VPN – Unblock Websites) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2020-06-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AdobeActiveFileMonitor7.0; c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [169312 2008-12-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [360328 2017-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [163840 2007-12-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [126464 2007-01-11] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2010-01-29] (Macrovision Corporation -> Macrovision Europe Ltd.) [Fichier non signé]
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [49464 2014-04-01] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64.sys [686080 2009-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-04-01] (Martin Malik - REALiX -> REALiX(tm))
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-01-02 19:51 - 2021-01-02 20:33 - 000000000 ____D C:\FRST
2021-01-02 19:05 - 2021-01-02 19:07 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3664279960-4019310097-1218803099-1000
2021-01-02 19:05 - 2021-01-02 19:07 - 000000000 ___RD C:\Users\Cartron Marcelle\OneDrive
2021-01-02 19:05 - 2021-01-02 19:07 - 000000000 ___RD C:\Users\Cartron Marcelle\OneDrive
2021-01-02 18:45 - 2021-01-02 18:45 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Comms
2021-01-02 18:22 - 2021-01-02 18:22 - 000000000 ___HD C:\$WinREAgent
2021-01-02 18:11 - 2021-01-02 18:55 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\PlaceholderTileLogoFolder
2021-01-02 16:19 - 2021-01-02 16:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Publishers
2021-01-02 16:15 - 2021-01-02 16:15 - 000000000 ___RD C:\Users\Cartron Marcelle\3D Objects
2021-01-02 16:15 - 2021-01-02 16:15 - 000000000 ___RD C:\Users\Cartron Marcelle\3D Objects
2021-01-02 16:13 - 2021-01-02 18:55 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Packages
2021-01-02 16:11 - 2021-01-02 16:13 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ConnectedDevicesPlatform
2021-01-02 16:11 - 2021-01-02 16:11 - 000000020 ___SH C:\Users\Cartron Marcelle\ntuser.ini
2021-01-02 16:11 - 2021-01-02 16:11 - 000000020 ___SH C:\Users\Cartron Marcelle\ntuser.ini
2021-01-02 16:07 - 2021-01-02 16:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3664279960-4019310097-1218803099-500
2021-01-02 16:06 - 2021-01-02 16:07 - 000004350 _____ C:\WINDOWS\system32\Tasks\AMD Updater
2021-01-02 16:06 - 2021-01-02 16:07 - 000003656 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2021-01-02 16:06 - 2021-01-02 16:07 - 000003614 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-02 16:06 - 2021-01-02 16:07 - 000003606 _____ C:\WINDOWS\system32\Tasks\HP Photo Creations Communicator
2021-01-02 16:06 - 2021-01-02 16:07 - 000003528 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2021-01-02 16:06 - 2021-01-02 16:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\{FF9DF58F-B37B-49DA-A3B7-2676B9B1879B}
2021-01-02 16:06 - 2021-01-02 16:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\{48AA2D55-EBBF-4443-85F5-7554A789C54B}
2021-01-02 16:06 - 2021-01-02 16:07 - 000003204 _____ C:\WINDOWS\system32\Tasks\{E4899083-C779-425B-92BB-559C0412F7DB}
2021-01-02 16:06 - 2021-01-02 16:07 - 000002906 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-02 16:06 - 2021-01-02 16:06 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-01-02 16:06 - 2021-01-02 16:06 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-01-02 16:06 - 2021-01-02 16:06 - 000004266 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1592546743
2021-01-02 16:06 - 2021-01-02 16:06 - 000003982 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-02 16:06 - 2021-01-02 16:06 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-01-02 16:06 - 2018-06-17 13:43 - 000002922 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Cartron Marcelle)
2021-01-02 16:06 - 2014-10-09 14:10 - 000003228 _____ C:\WINDOWS\system32\Tasks\{3675E30E-AE34-4FAB-B4E6-C4A95D9C2AF2}
2021-01-02 16:06 - 2010-03-27 11:05 - 000003572 _____ C:\WINDOWS\system32\Tasks\CreateChoiceProcessTask
2021-01-02 15:47 - 2021-01-02 19:07 - 000002485 _____ C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-02 15:47 - 2021-01-02 19:05 - 000000000 ____D C:\Users\Cartron Marcelle
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage réseau
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage réseau
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage d'impression
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage d'impression
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Modèles
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Modèles
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Mes documents
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Mes documents
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Menu Démarrer
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Menu Démarrer
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\AppData\Local\Historique
2021-01-02 15:46 - 2021-01-02 16:05 - 001974610 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-02 15:23 - 2021-01-02 15:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-02 15:21 - 2021-01-02 16:08 - 000000000 ____D C:\Windows.old
2021-01-02 15:04 - 2021-01-02 15:04 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2021-01-02 14:58 - 2021-01-02 14:58 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\system32\msmq
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files\MSBuild
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\inetpub
2021-01-02 12:35 - 2021-01-02 16:08 - 000000000 ___DC C:\WINDOWS\Panther
2021-01-02 11:56 - 2021-01-02 12:34 - 000000000 ____D C:\ESD
2021-01-02 11:53 - 2021-01-02 11:53 - 000000000 ___HD C:\$Windows.~WS
2020-12-30 18:25 - 2020-12-31 11:05 - 000000135 _____ C:\Users\Cartron
2020-12-28 08:24 - 2020-12-28 08:24 - 000118640 _____ C:\Users\Cartron Marcelle\AppData\Local\GDIPFONTCACHEV1.DAT
2020-12-27 21:06 - 2020-12-28 08:18 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\CrashDumps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-01-02 20:21 - 2020-06-13 09:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-02 19:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-02 19:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-02 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-01-02 18:55 - 2020-11-19 00:32 - 000000000 ____D C:\ProgramData\Packages
2021-01-02 18:55 - 2020-11-19 00:32 - 000000000 ____D C:\ProgramData\Packages
2021-01-02 18:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-02 18:25 - 2020-06-13 09:25 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\TeamViewer
2021-01-02 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-02 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-02 18:07 - 2020-11-18 23:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-02 16:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-02 16:33 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\OCR
2021-01-02 16:29 - 2013-11-10 13:26 - 000000000 ____D C:\Program Files\CCleaner
2021-01-02 16:19 - 2020-11-19 00:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-02 16:19 - 2020-11-19 00:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-02 16:15 - 2020-11-19 00:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-02 16:15 - 2020-11-19 00:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-02 16:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-02 16:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-02 16:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-02 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2021-01-02 16:06 - 2020-11-19 00:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-02 16:05 - 2019-12-07 15:49 - 000867566 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-02 16:05 - 2019-12-07 15:49 - 000183324 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-02 16:04 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-01-02 16:04 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-01-02 16:00 - 2020-11-19 00:31 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-02 16:00 - 2020-11-19 00:31 - 000002292 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-02 15:54 - 2020-06-13 11:51 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-02 15:54 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-02 15:54 - 2017-05-20 07:32 - 000000000 ___RD C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2021-01-02 15:49 - 2015-11-23 07:24 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2021-01-02 15:46 - 2017-03-22 08:18 - 001880084 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-01-02 15:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-02 15:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-02 15:33 - 2010-01-29 03:05 - 000000000 ____D C:\Program Files\Apoint2K
2021-01-02 15:26 - 2020-11-18 23:28 - 000484456 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-02 15:22 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2021-01-02 15:22 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-01-02 15:22 - 2017-03-21 08:40 - 000000000 ____D C:\WINDOWS\system32\SPReview
2021-01-02 15:22 - 2014-11-17 06:09 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2021-01-02 15:22 - 2014-11-17 06:09 - 000000000 ____D C:\WINDOWS\system32\vbox
2021-01-02 15:22 - 2010-03-27 12:01 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
2021-01-02 15:22 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-01-02 15:21 - 2020-06-18 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-01-02 15:21 - 2020-06-13 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-02 15:21 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-01-02 15:21 - 2017-05-21 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-01-02 15:21 - 2017-03-21 08:35 - 000000000 ____D C:\WINDOWS\system32\EventProviders
2021-01-02 15:21 - 2017-03-19 19:33 - 000000000 ____D C:\WINDOWS\fr
2021-01-02 15:21 - 2017-03-19 19:18 - 000000000 ____D C:\Program Files\Windows Live
2021-01-02 15:21 - 2017-03-19 18:37 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2021-01-02 15:21 - 2016-06-18 16:41 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.1
2021-01-02 15:21 - 2014-04-27 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-01-02 15:21 - 2013-12-14 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2021-01-02 15:21 - 2013-11-10 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-01-02 15:21 - 2013-11-10 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PE-DESIGN Ver7
2021-01-02 15:21 - 2010-04-26 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
2021-01-02 15:21 - 2010-04-26 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-01-02 15:21 - 2010-03-26 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2021-01-02 15:21 - 2010-01-29 03:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2021-01-02 15:21 - 2010-01-29 03:18 - 000000000 ____D C:\Program Files (x86)\Windows Live
2021-01-02 15:21 - 2010-01-29 03:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2021-01-02 15:21 - 2010-01-29 03:03 - 000000000 ____D C:\Program Files\CONEXANT
2021-01-02 15:21 - 2009-10-30 05:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell GameZone
2021-01-02 15:21 - 2009-10-30 02:38 - 000000000 ___RD C:\Users\Public\Recorded TV
2021-01-02 15:21 - 2009-10-30 02:38 - 000000000 ___RD C:\Users\Public\Recorded TV
2021-01-02 15:21 - 2009-10-30 02:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support
2021-01-02 15:21 - 2009-10-30 02:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2021-01-02 15:21 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-01-02 15:21 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-01-02 15:20 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME
2021-01-02 15:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\schemas
2021-01-02 15:04 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files\Windows Sidebar
2021-01-02 15:04 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2021-01-02 15:04 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2021-01-02 15:04 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\DVD Maker
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-02 14:44 - 2020-11-19 03:50 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2021-01-02 14:44 - 2020-11-19 03:50 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2021-01-02 14:44 - 2019-12-07 10:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2021-01-02 14:44 - 2019-12-07 10:10 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2021-01-02 14:44 - 2019-12-07 10:10 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2021-01-02 14:43 - 2020-11-19 03:51 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2021-01-02 14:43 - 2020-11-19 03:51 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2021-01-02 14:43 - 2020-11-19 03:51 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2021-01-02 14:43 - 2020-11-19 03:50 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 001421824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2021-01-02 14:43 - 2019-12-07 10:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2021-01-02 14:43 - 2019-12-07 10:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2021-01-02 13:12 - 2009-07-14 05:45 - 000029360 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-02 13:12 - 2009-07-14 05:45 - 000029360 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-02 12:52 - 2015-11-23 07:24 - 000000468 _____ C:\WINDOWS\Tasks\HP Photo Creations Communicator.job
2021-01-02 11:53 - 2020-06-12 17:27 - 000000000 ____D C:\Téléchargements
2021-01-01 15:48 - 2020-06-12 08:45 - 000007617 _____ C:\Users\Cartron Marcelle\AppData\Local\Resmon.ResmonCfg
2020-12-31 11:05 - 2020-06-02 07:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\ZHP
2020-12-30 18:43 - 2020-06-02 07:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ZHP
2020-12-28 23:20 - 2013-12-14 12:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-28 23:20 - 2010-03-27 11:44 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-12-28 08:23 - 2020-06-19 06:46 - 000000000 ____D C:\Program Files (x86)\Avira
2020-12-28 08:17 - 2018-06-21 16:35 - 000000000 ____D C:\ProgramData\AVG
2020-12-28 08:17 - 2018-06-21 16:35 - 000000000 ____D C:\ProgramData\AVG
2020-12-28 08:07 - 2018-06-21 16:57 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\AVG
2020-12-28 07:58 - 2020-06-19 06:45 - 000000000 ____D C:\ProgramData\Avira
2020-12-28 07:58 - 2020-06-19 06:45 - 000000000 ____D C:\ProgramData\Avira
2020-12-28 07:58 - 2017-03-08 08:07 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-28 07:58 - 2017-03-08 08:07 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-28 00:26 - 2010-06-21 14:04 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ElevatedDiagnostics
==================== Fichiers à la racine de certains dossiers ========
2009-10-30 05:25 - 2008-06-11 16:12 - 000776614 _____ () C:\Program Files (x86)\Common Files\packardbell.ico
2010-03-27 11:41 - 2019-06-10 09:37 - 000043304 _____ () C:\Users\Cartron Marcelle\AppData\Roaming\wklnhst.dat
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT5A7E.tmp
2009-04-17 19:07 - 2009-04-17 19:07 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT6519.tmp
2009-04-17 19:07 - 2009-04-17 19:07 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT6AE4.tmp
2020-06-12 08:45 - 2021-01-01 15:48 - 000007617 _____ () C:\Users\Cartron Marcelle\AppData\Local\Resmon.ResmonCfg
2009-04-15 17:23 - 2009-04-15 17:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{1975D19F-7F83-4108-85ED-B1F2CDE3D2DA}
2016-07-26 16:15 - 2016-07-26 16:15 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{19F0A109-6E19-4199-B510-C7123C654437}
2009-04-15 17:23 - 2009-04-15 17:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{517D5559-29F2-49CF-BCA8-A169166038F4}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{599D021E-34A3-4ADD-AB03-ED5F4D729BD6}
2015-03-17 10:22 - 2015-03-17 10:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{778024ED-D84F-4956-B922-5933D8B358FC}
2018-06-09 07:24 - 2018-06-09 07:24 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{95F1FDE3-1632-43A5-ACB3-B033A7EC9299}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{96FB6AA9-9374-47DB-A6A6-25DEC4E048CA}
2018-06-09 07:24 - 2018-06-09 07:24 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{BE6A5690-30D1-4265-964F-B56F5815C158}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{E255C23D-0A76-4632-915F-433B41C2DE12}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================
Exécuté par Cartron Marcelle (administrateur) sur MOUNA (Packard Bell EasyNote TJ72) (02-01-2021 20:32:42)
Exécuté depuis C:\Images\Desktop
Profils chargés: Cartron Marcelle
Platform: Windows 10 Home Version 20H2 19042.631 (X64) Langue: Français (France)
Navigateur par défaut: Chrome
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
(Dritek System Inc. -> Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.139.59\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(OpenOffice.org) [Fichier non signé] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.53.77.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [508472 2009-10-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [295936 2009-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.)
HKLM\...\Run: [PLFSetL] => C:\Windows\PLFSetL.exe
HKLM\...\Run: [SNUVCDSM] => C:\Windows\snuvcdsm.exe
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1094736 2009-11-02] (Dritek System Inc. -> Dritek System Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [775560 2017-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [EPSON SX410 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.EXE [223232 2008-10-02] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [BingSvc] => C:\Users\Cartron Marcelle\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2016-04-10] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Uninstall 19.043.0304.0013\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64"
HKU\S-1-5-21-3664279960-4019310097-1218803099-1000\...\RunOnce: [Uninstall 19.043.0304.0013] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cartron Marcelle\AppData\Local\Microsoft\OneDrive\19.043.0304.0013"
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON SX410 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFCE.DLL [108032 2008-08-08] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\HP a011 Status Monitor: C:\WINDOWS\system32\hpinkstsa011LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3050A J611 series): C:\WINDOWS\system32\HPDiscoPMa011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lwn7: C:\WINDOWS\system32\hpz3lwn7.dll [36352 2009-07-14] (Microsoft Windows -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-27] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk [2021-01-01]
ShortcutAndArgument: Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 3050A J611 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN2CQ1CHCN05WK;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2016-06-18]
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe () [Fichier non signé]
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {032DEAA0-8392-4977-8823-574AB74AAD65} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {09D19B38-8D17-43BB-8D9A-872BBB394599} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {0BFF2AA2-F6A8-45D3-82F3-B32A39BCBEA1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {13484830-E40E-43ED-B035-A72DEDAA284E} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {175F79BA-4693-4084-90F8-A0E3B0564E1D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {18A10A66-7223-42A4-927F-68E25A3472CF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1A6AD36B-BE82-4BDB-977B-294064A69F4C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {248BC439-D4A5-434F-8BB6-7BED09BCE821} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {24DF503D-C745-489A-8F75-998D93B4FFFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {29E4BD91-1E06-44E9-BE7B-ED5B15DAC577} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {2CEAB11E-460A-42A4-9591-92739A9CFD5B} - System32\Tasks\HP Photo Creations Communicator => C:\Users\Cartron Marcelle\AppData\Roaming\HP Photo Creations\Communicator.exe [186080 2017-05-21] (RocketLife -> )
Task: {35996892-DD2F-4A60-9CCA-F67D44715E93} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
Task: {35F921A4-FE2F-46A3-B82F-7B75DB843544} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3CBF2B65-1715-4B01-9F88-20521779182C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F65EC36-577B-479C-A968-0795F1C469A3} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {46FE613D-F574-4E45-A292-ED5D9EDAD7CD} - System32\Tasks\Driver Booster SkipUAC (Cartron Marcelle) => C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4AF59F62-1B53-4D3C-8F19-C6256912FBCD} - System32\Tasks\{3675E30E-AE34-4FAB-B4E6-C4A95D9C2AF2} => C:\Windows\system32\pcalua.exe -a "C:\Users\Cartron Marcelle\Downloads\WindowsPhone (1).exe" -d "C:\Users\Cartron Marcelle\Downloads"
Task: {4E8ADF82-145E-46CC-A345-CC6021D31A4B} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {55F6EB11-D043-4D3F-8211-990C2D0067EB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {569A26D5-AE7A-41BA-BE49-5D8D990491D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {605FDFC3-B708-4E10-94A2-942C4F72CCD6} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {63D202C1-CCD2-4197-8A09-C3892AF41A58} - System32\Tasks\Opera scheduled Autoupdate 1592546743 => C:\Users\Cartron Marcelle\AppData\Local\Programs\Opera\launcher.exe
Task: {6520B711-9ABA-4E66-BAA7-7A055A80FAD7} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B4A36AB-1243-41C9-AFF1-2B9783625678} - System32\Tasks\{48AA2D55-EBBF-4443-85F5-7554A789C54B} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.18.85.109/fr/abandoninstall?page=tsBing
Task: {6C6D9D44-1411-46F1-90B9-5B4E46C8C231} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7104A901-A948-47A7-B788-A74D2C3A554F} - \Microsoft\Windows\Setup\EOSNotify2 -> Pas de fichier <==== ATTENTION
Task: {75C441FC-2660-471F-A281-35AA498FEA44} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {769425FE-7B97-4161-8DF9-17AB03E7CF90} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {7D2B08AA-EC88-4160-A59C-4A378E56CE0C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {7D398B6C-1C05-4D0B-B7F6-B78A6754292E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8271C70A-66A1-4144-B6DC-B1505F9F5147} - System32\Tasks\{E4899083-C779-425B-92BB-559C0412F7DB} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.14.0.106/fr/abandoninstall?page=tsMain
Task: {872BF206-06C0-453D-9886-8AC9326641E0} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {8F046CA7-E678-4289-9FB2-2128506A9B4C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {91A671A6-64C1-4225-8046-B90F98A9A427} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {91B87FD4-C1E6-4AEB-AF17-03A9ADB57228} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {930D1B1F-3665-40EE-AAAC-601675312D56} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9410BA1D-F267-4EFA-B3B3-501CBC9ADE11} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {9490C1F7-CFC5-4156-B15B-C2C89DA2EFC9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9A4D04C9-88BF-4096-94B9-A050DBAF20E5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-10-26] (Avast Software s.r.o. -> Avast Software)
Task: {9A6BAB18-E5CB-45F3-9C45-1D2EAA96A2E7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {AFF20AB2-37CC-485F-A8C8-CA0178880B2B} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {B04913D8-CDBD-4B18-B97E-3F5D1DE6C01F} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [10219208 2016-02-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B2DE675B-1747-46D2-8127-6EE0291D528F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C171ACDE-9591-432F-9CF0-229155D3AB8F} - System32\Tasks\AVAST Software\Avast settings backup
Task: {C310F1BE-B91F-4DE9-99F3-B848C54D2074} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D6B18C26-C934-4CB4-820A-546232DD3B28} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {E2D86794-8C2C-4AB0-BB0D-AE0CCBF18685} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E92FFD66-60A3-4FAB-AFE0-164A77992777} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
Task: {EB503365-D88D-4ACF-BE80-35F9631FB97C} - \Microsoft\Windows\Setup\EOSNotify -> Pas de fichier <==== ATTENTION
Task: {FAEAA3F8-AD79-42BF-916E-4ABAF7F475FD} - System32\Tasks\{FF9DF58F-B37B-49DA-A3B7-2676B9B1879B} => "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.18.85.109/fr/abandoninstall?page=tsBing
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\Users\Cartron Marcelle\AppData\Roaming\HP Photo Creations\Communicator.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1058ABA8-EEBE-4035-862F-CC50657F4890}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge Profile: C:\Users\Cartron Marcelle\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-02]
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3664279960-4019310097-1218803099-1000: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Cartron Marcelle\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (Visan Industries -> RocketLife, LLP)
Chrome:
=======
CHR Profile: C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default [2021-01-02]
CHR DownloadDir: E:\Images\Downloads
CHR NewTab: Default -> Not-active:"chrome-extension://bcdhacjdengeibbbhmdjodiecaiciehc/ntp1.html"
CHR DefaultSearchURL: Default -> hxxps://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&enableSearch=true&rdrct=no&redirect=CPC
CHR DefaultSearchKeyword: Default -> askwebs
CHR DefaultSuggestURL: Default -> hxxps://ss.search.ask.com/ss?li=ff&sstype=prefix&limit=10&hl=en&q={searchTerms}&enableSearch=true&rdrct=no
CHR Extension: (Slides) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-30]
CHR Extension: (Docs) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-30]
CHR Extension: (Google Drive) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-30]
CHR Extension: (OnlineWorkSuite) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcdhacjdengeibbbhmdjodiecaiciehc [2020-12-31]
CHR Extension: (YouTube) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-30]
CHR Extension: (Avira Password Manager) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2020-12-30]
CHR Extension: (Avira Safe Shopping) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2020-12-30]
CHR Extension: (Sheets) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-30]
CHR Extension: (Google Docs hors connexion) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-30]
CHR Extension: (Skype) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2020-12-30]
CHR Extension: (AVG SafePrice | Comparaison, offres, coupons) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-12-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-30]
CHR Extension: (Ask Web Search) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\okmdknhejjiichkcppoppdaknekjekoa [2020-12-30]
CHR Extension: (Gmail) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cartron Marcelle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-30]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
Opera:
=======
OPR DownloadDir:
OPR Extension: (Avira Browser Safety) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2020-06-19]
OPR Extension: (Avira Password Manager) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2020-06-19]
OPR Extension: (Free Avira Phantom VPN – Unblock Websites) - C:\Users\Cartron Marcelle\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2020-06-19]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AdobeActiveFileMonitor7.0; c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [169312 2008-12-08] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [360328 2017-01-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-14] (AVAST Software s.r.o. -> AVAST Software)
S2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [163840 2007-12-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [126464 2007-01-11] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2010-01-29] (Macrovision Corporation -> Macrovision Europe Ltd.) [Fichier non signé]
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [49464 2014-04-01] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12757520 2020-12-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64.sys [686080 2009-08-11] (Microsoft Windows Hardware Compatibility Publisher -> Conexant Systems Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-04-01] (Martin Malik - REALiX -> REALiX(tm))
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-01-02 19:51 - 2021-01-02 20:33 - 000000000 ____D C:\FRST
2021-01-02 19:05 - 2021-01-02 19:07 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3664279960-4019310097-1218803099-1000
2021-01-02 19:05 - 2021-01-02 19:07 - 000000000 ___RD C:\Users\Cartron Marcelle\OneDrive
2021-01-02 19:05 - 2021-01-02 19:07 - 000000000 ___RD C:\Users\Cartron Marcelle\OneDrive
2021-01-02 18:45 - 2021-01-02 18:45 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Comms
2021-01-02 18:22 - 2021-01-02 18:22 - 000000000 ___HD C:\$WinREAgent
2021-01-02 18:11 - 2021-01-02 18:55 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\PlaceholderTileLogoFolder
2021-01-02 16:19 - 2021-01-02 16:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Publishers
2021-01-02 16:15 - 2021-01-02 16:15 - 000000000 ___RD C:\Users\Cartron Marcelle\3D Objects
2021-01-02 16:15 - 2021-01-02 16:15 - 000000000 ___RD C:\Users\Cartron Marcelle\3D Objects
2021-01-02 16:13 - 2021-01-02 18:55 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\Packages
2021-01-02 16:11 - 2021-01-02 16:13 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ConnectedDevicesPlatform
2021-01-02 16:11 - 2021-01-02 16:11 - 000000020 ___SH C:\Users\Cartron Marcelle\ntuser.ini
2021-01-02 16:11 - 2021-01-02 16:11 - 000000020 ___SH C:\Users\Cartron Marcelle\ntuser.ini
2021-01-02 16:07 - 2021-01-02 16:07 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3664279960-4019310097-1218803099-500
2021-01-02 16:06 - 2021-01-02 16:07 - 000004350 _____ C:\WINDOWS\system32\Tasks\AMD Updater
2021-01-02 16:06 - 2021-01-02 16:07 - 000003656 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineUA
2021-01-02 16:06 - 2021-01-02 16:07 - 000003614 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-02 16:06 - 2021-01-02 16:07 - 000003606 _____ C:\WINDOWS\system32\Tasks\HP Photo Creations Communicator
2021-01-02 16:06 - 2021-01-02 16:07 - 000003528 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskMachineCore
2021-01-02 16:06 - 2021-01-02 16:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\{FF9DF58F-B37B-49DA-A3B7-2676B9B1879B}
2021-01-02 16:06 - 2021-01-02 16:07 - 000003206 _____ C:\WINDOWS\system32\Tasks\{48AA2D55-EBBF-4443-85F5-7554A789C54B}
2021-01-02 16:06 - 2021-01-02 16:07 - 000003204 _____ C:\WINDOWS\system32\Tasks\{E4899083-C779-425B-92BB-559C0412F7DB}
2021-01-02 16:06 - 2021-01-02 16:07 - 000002906 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-02 16:06 - 2021-01-02 16:06 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2021-01-02 16:06 - 2021-01-02 16:06 - 000007623 _____ C:\WINDOWS\diagerr.xml
2021-01-02 16:06 - 2021-01-02 16:06 - 000004266 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1592546743
2021-01-02 16:06 - 2021-01-02 16:06 - 000003982 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-02 16:06 - 2021-01-02 16:06 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2021-01-02 16:06 - 2021-01-02 16:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-01-02 16:06 - 2018-06-17 13:43 - 000002922 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Cartron Marcelle)
2021-01-02 16:06 - 2014-10-09 14:10 - 000003228 _____ C:\WINDOWS\system32\Tasks\{3675E30E-AE34-4FAB-B4E6-C4A95D9C2AF2}
2021-01-02 16:06 - 2010-03-27 11:05 - 000003572 _____ C:\WINDOWS\system32\Tasks\CreateChoiceProcessTask
2021-01-02 15:47 - 2021-01-02 19:07 - 000002485 _____ C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-02 15:47 - 2021-01-02 19:05 - 000000000 ____D C:\Users\Cartron Marcelle
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage réseau
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage réseau
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage d'impression
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Voisinage d'impression
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Modèles
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Modèles
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Mes documents
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Mes documents
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Menu Démarrer
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\Menu Démarrer
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2021-01-02 15:47 - 2021-01-02 15:47 - 000000000 _SHDL C:\Users\Cartron Marcelle\AppData\Local\Historique
2021-01-02 15:46 - 2021-01-02 16:05 - 001974610 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-02 15:23 - 2021-01-02 15:55 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-02 15:21 - 2021-01-02 16:08 - 000000000 ____D C:\Windows.old
2021-01-02 15:04 - 2021-01-02 15:04 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2021-01-02 14:58 - 2021-01-02 14:58 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\system32\msmq
2021-01-02 14:45 - 2021-01-02 14:45 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files\MSBuild
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-01-02 14:44 - 2021-01-02 14:44 - 000000000 ____D C:\inetpub
2021-01-02 12:35 - 2021-01-02 16:08 - 000000000 ___DC C:\WINDOWS\Panther
2021-01-02 11:56 - 2021-01-02 12:34 - 000000000 ____D C:\ESD
2021-01-02 11:53 - 2021-01-02 11:53 - 000000000 ___HD C:\$Windows.~WS
2020-12-30 18:25 - 2020-12-31 11:05 - 000000135 _____ C:\Users\Cartron
2020-12-28 08:24 - 2020-12-28 08:24 - 000118640 _____ C:\Users\Cartron Marcelle\AppData\Local\GDIPFONTCACHEV1.DAT
2020-12-27 21:06 - 2020-12-28 08:18 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\CrashDumps
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-01-02 20:21 - 2020-06-13 09:23 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-02 19:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-02 19:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-02 18:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-01-02 18:55 - 2020-11-19 00:32 - 000000000 ____D C:\ProgramData\Packages
2021-01-02 18:55 - 2020-11-19 00:32 - 000000000 ____D C:\ProgramData\Packages
2021-01-02 18:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-02 18:25 - 2020-06-13 09:25 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\TeamViewer
2021-01-02 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-02 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-02 18:07 - 2020-11-18 23:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-02 16:34 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-02 16:33 - 2019-12-07 15:51 - 000000000 ____D C:\WINDOWS\OCR
2021-01-02 16:29 - 2013-11-10 13:26 - 000000000 ____D C:\Program Files\CCleaner
2021-01-02 16:19 - 2020-11-19 00:31 - 000003634 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-02 16:19 - 2020-11-19 00:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-02 16:15 - 2020-11-19 00:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-02 16:15 - 2020-11-19 00:32 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-02 16:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-02 16:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-01-02 16:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-02 16:07 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2021-01-02 16:06 - 2020-11-19 00:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-02 16:05 - 2019-12-07 15:49 - 000867566 _____ C:\WINDOWS\system32\perfh00C.dat
2021-01-02 16:05 - 2019-12-07 15:49 - 000183324 _____ C:\WINDOWS\system32\perfc00C.dat
2021-01-02 16:04 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-01-02 16:04 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2021-01-02 16:00 - 2020-11-19 00:31 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-02 16:00 - 2020-11-19 00:31 - 000002292 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-02 15:54 - 2020-06-13 11:51 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-02 15:54 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-02 15:54 - 2017-05-20 07:32 - 000000000 ___RD C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2021-01-02 15:49 - 2015-11-23 07:24 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2021-01-02 15:46 - 2017-03-22 08:18 - 001880084 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-01-02 15:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-02 15:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-02 15:33 - 2010-01-29 03:05 - 000000000 ____D C:\Program Files\Apoint2K
2021-01-02 15:26 - 2020-11-18 23:28 - 000484456 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-02 15:22 - 2019-12-07 15:49 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2021-01-02 15:22 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-01-02 15:22 - 2017-03-21 08:40 - 000000000 ____D C:\WINDOWS\system32\SPReview
2021-01-02 15:22 - 2014-11-17 06:09 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2021-01-02 15:22 - 2014-11-17 06:09 - 000000000 ____D C:\WINDOWS\system32\vbox
2021-01-02 15:22 - 2010-03-27 12:01 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
2021-01-02 15:22 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-01-02 15:21 - 2020-06-18 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-01-02 15:21 - 2020-06-13 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-02 15:21 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-02 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-01-02 15:21 - 2017-05-21 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-01-02 15:21 - 2017-03-21 08:35 - 000000000 ____D C:\WINDOWS\system32\EventProviders
2021-01-02 15:21 - 2017-03-19 19:33 - 000000000 ____D C:\WINDOWS\fr
2021-01-02 15:21 - 2017-03-19 19:18 - 000000000 ____D C:\Program Files\Windows Live
2021-01-02 15:21 - 2017-03-19 18:37 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2021-01-02 15:21 - 2016-06-18 16:41 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.1
2021-01-02 15:21 - 2014-04-27 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-01-02 15:21 - 2013-12-14 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2021-01-02 15:21 - 2013-11-10 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-01-02 15:21 - 2013-11-10 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PE-DESIGN Ver7
2021-01-02 15:21 - 2010-04-26 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 6.0 Sprint
2021-01-02 15:21 - 2010-04-26 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2021-01-02 15:21 - 2010-03-26 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2021-01-02 15:21 - 2010-01-29 03:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2021-01-02 15:21 - 2010-01-29 03:18 - 000000000 ____D C:\Program Files (x86)\Windows Live
2021-01-02 15:21 - 2010-01-29 03:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Launch Manager
2021-01-02 15:21 - 2010-01-29 03:03 - 000000000 ____D C:\Program Files\CONEXANT
2021-01-02 15:21 - 2009-10-30 05:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell GameZone
2021-01-02 15:21 - 2009-10-30 02:38 - 000000000 ___RD C:\Users\Public\Recorded TV
2021-01-02 15:21 - 2009-10-30 02:38 - 000000000 ___RD C:\Users\Public\Recorded TV
2021-01-02 15:21 - 2009-10-30 02:10 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support
2021-01-02 15:21 - 2009-10-30 02:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2021-01-02 15:21 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-01-02 15:21 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-01-02 15:20 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-02 15:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME
2021-01-02 15:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\schemas
2021-01-02 15:04 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files\Windows Sidebar
2021-01-02 15:04 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2021-01-02 15:04 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2021-01-02 15:04 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\DVD Maker
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-01-02 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-02 14:44 - 2020-11-19 03:50 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2021-01-02 14:44 - 2020-11-19 03:50 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2021-01-02 14:44 - 2019-12-07 10:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2021-01-02 14:44 - 2019-12-07 10:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2021-01-02 14:44 - 2019-12-07 10:10 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2021-01-02 14:44 - 2019-12-07 10:10 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2021-01-02 14:44 - 2019-12-07 10:10 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2021-01-02 14:43 - 2020-11-19 03:51 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2021-01-02 14:43 - 2020-11-19 03:51 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2021-01-02 14:43 - 2020-11-19 03:51 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2021-01-02 14:43 - 2020-11-19 03:50 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 001421824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2021-01-02 14:43 - 2019-12-07 10:10 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2021-01-02 14:43 - 2019-12-07 10:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2021-01-02 14:43 - 2019-12-07 10:10 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2021-01-02 14:43 - 2019-12-07 10:10 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2021-01-02 13:12 - 2009-07-14 05:45 - 000029360 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-02 13:12 - 2009-07-14 05:45 - 000029360 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-02 12:52 - 2015-11-23 07:24 - 000000468 _____ C:\WINDOWS\Tasks\HP Photo Creations Communicator.job
2021-01-02 11:53 - 2020-06-12 17:27 - 000000000 ____D C:\Téléchargements
2021-01-01 15:48 - 2020-06-12 08:45 - 000007617 _____ C:\Users\Cartron Marcelle\AppData\Local\Resmon.ResmonCfg
2020-12-31 11:05 - 2020-06-02 07:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Roaming\ZHP
2020-12-30 18:43 - 2020-06-02 07:19 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ZHP
2020-12-28 23:20 - 2013-12-14 12:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-28 23:20 - 2010-03-27 11:44 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-12-28 08:23 - 2020-06-19 06:46 - 000000000 ____D C:\Program Files (x86)\Avira
2020-12-28 08:17 - 2018-06-21 16:35 - 000000000 ____D C:\ProgramData\AVG
2020-12-28 08:17 - 2018-06-21 16:35 - 000000000 ____D C:\ProgramData\AVG
2020-12-28 08:07 - 2018-06-21 16:57 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\AVG
2020-12-28 07:58 - 2020-06-19 06:45 - 000000000 ____D C:\ProgramData\Avira
2020-12-28 07:58 - 2020-06-19 06:45 - 000000000 ____D C:\ProgramData\Avira
2020-12-28 07:58 - 2017-03-08 08:07 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-28 07:58 - 2017-03-08 08:07 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-28 00:26 - 2010-06-21 14:04 - 000000000 ____D C:\Users\Cartron Marcelle\AppData\Local\ElevatedDiagnostics
==================== Fichiers à la racine de certains dossiers ========
2009-10-30 05:25 - 2008-06-11 16:12 - 000776614 _____ () C:\Program Files (x86)\Common Files\packardbell.ico
2010-03-27 11:41 - 2019-06-10 09:37 - 000043304 _____ () C:\Users\Cartron Marcelle\AppData\Roaming\wklnhst.dat
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT5A7E.tmp
2009-04-17 19:07 - 2009-04-17 19:07 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT6519.tmp
2009-04-17 19:07 - 2009-04-17 19:07 - 000000000 ____H () C:\Users\Cartron Marcelle\AppData\Local\BIT6AE4.tmp
2020-06-12 08:45 - 2021-01-01 15:48 - 000007617 _____ () C:\Users\Cartron Marcelle\AppData\Local\Resmon.ResmonCfg
2009-04-15 17:23 - 2009-04-15 17:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{1975D19F-7F83-4108-85ED-B1F2CDE3D2DA}
2016-07-26 16:15 - 2016-07-26 16:15 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{19F0A109-6E19-4199-B510-C7123C654437}
2009-04-15 17:23 - 2009-04-15 17:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{517D5559-29F2-49CF-BCA8-A169166038F4}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{599D021E-34A3-4ADD-AB03-ED5F4D729BD6}
2015-03-17 10:22 - 2015-03-17 10:23 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{778024ED-D84F-4956-B922-5933D8B358FC}
2018-06-09 07:24 - 2018-06-09 07:24 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{95F1FDE3-1632-43A5-ACB3-B033A7EC9299}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{96FB6AA9-9374-47DB-A6A6-25DEC4E048CA}
2018-06-09 07:24 - 2018-06-09 07:24 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{BE6A5690-30D1-4265-964F-B56F5815C158}
2009-04-17 19:06 - 2009-04-17 19:06 - 000000000 _____ () C:\Users\Cartron Marcelle\AppData\Local\{E255C23D-0A76-4632-915F-433B41C2DE12}
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================